cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1358
Views
10
Helpful
8
Replies

Add a High Availability node to a production WLC

rbncarvalho
Level 1
Level 1

Hi there guys,

 

So I'm having next month a installation of a secondary controller into a non SSO environment, which is what it is going to be.

 

The thing is I can't find any document related to setup SSO in a production environment, only on greenfield setup, which I've done in the past.

 

Can anyone help me figuring out what's necessary to deploy the second node on a running environment.

 

Thank you

Best Regards,
Please rate helpful posts,

Ruben Carvalho CCIE#57952
2 Accepted Solutions

Accepted Solutions

Hi @rbncarvalho

 

You need an HA-SKU WLC or a WLC with at least with 50 AP license same hardware and software version.

 Ethernet cable connected between two RP ports.

The best guide I know is this:

 

https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/7-5/High_Availability_DG.html

 

-If I helped you somehow, please, rate it as useful.-

View solution in original post

Ok then Falvio was correct. I thought the other way.

 Either you setup in Greenfiled or in Production, Procedure is same.

So here is the posts to Implement HA AP/Client SSO:

 

https://networkguy.de/?p=558

https://networkguy.de/?p=928

 

Regards

Dont forget to rate helpful posts

View solution in original post

8 Replies 8

Hi @rbncarvalho

 

You need an HA-SKU WLC or a WLC with at least with 50 AP license same hardware and software version.

 Ethernet cable connected between two RP ports.

The best guide I know is this:

 

https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/7-5/High_Availability_DG.html

 

-If I helped you somehow, please, rate it as useful.-

Thanks mate, 

 

Do the active controller need anything else besides the redundancy config?

 

The secondary was bought as a HA-SKU so it should be fine, my doubts are regarding putting this solution in place in a production environment, the standby should mirror the config on the active and join the cluster am I right?

 

Thanks

Best Regards,
Please rate helpful posts,

Ruben Carvalho CCIE#57952

Sandeep Choudhary
VIP Alumni
VIP Alumni

If its a non SSO then you just need to configure the secondary WLC same as Primary except the change in IP address(Its called N+1 HA).

Check this posts and do the implementaion of secondary node in N+1 HA.

https://rscciew.wordpress.com/2014/06/07/n1-high-availability-configuration-on-cisco-2504wlc/

 

Regards

Dont forget to arte helpful posts

 

 

Hi mate, 

 

The goal is to start being a SSO solution, but we have a running WLC, which will be the active, and the new one the standby.

 

Thank you

Best Regards,
Please rate helpful posts,

Ruben Carvalho CCIE#57952

Ok then Falvio was correct. I thought the other way.

 Either you setup in Greenfiled or in Production, Procedure is same.

So here is the posts to Implement HA AP/Client SSO:

 

https://networkguy.de/?p=558

https://networkguy.de/?p=928

 

Regards

Dont forget to rate helpful posts

Like I said, you can buy a HA-SKU  which is a cheaper hardware and is meant to be the standby WLC. If you already have an second WLC you can spare, then, it need to have at least 50 AP license.

 Further more, you just need to setup both WLC. The configuration is pretty straitforward and you can find everything on the link I shared. If you find some difficult while running this, just put here any specific doubt.

 

 

-If I helped you somehow, please, rate it as useful.-

Thank both you guys, 

 

My doubts we're mostly concerning this being a production environment, as I've never done it this was before.

But if anything arises, I'll let you guys know.

 

Thank you very much

Best Regards,
Please rate helpful posts,

Ruben Carvalho CCIE#57952

Just keep in mind that there will be outage on the network. When you finish configuring on both WLC and change the SSO to active, both WLC will reboot and join in a HA group. Do it in a time windown. Consider 1 hours as a comfortable time window.

 

 Then, you are going to lose communication with the secondary WLC via web interface. Only SSH will be possible. Have a console cable with you and avoid doing that remotely unless you have a guy on the DC.

   

 

-If I helped you somehow, please, rate it as useful.-

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: