User is using local RADIUS servers at each of their many campuses (for local dynamic VLAN assignment), while using a single set of controllers at the core of their network.
A pair of 5508 controller in their central data center with 3602i APs around the various campuses. Also using FlexConnect groups to locally authenticate and switch the users.
Right now, the config is working great as far as authentication and local switching goes. The problem user experiencing is that none of the authenticated usernames are being passed back to the controller and ultimately NCS.
The problem user experiencing is that none of the authenticated usernames are being passed back to the controller and ultimately Cisco Prime Network Control System (NCS). This makes the tracking and troubleshooting of users difficult.
Experts believe this is normal, since the ap is the authenticator and traffic does not pass back to the WLC, so the WLC does not have that information unlike if the WLAN was centrally switched and the WLC was the authenticator.
if learn client ip enabled under the flexconnect section then we can see the client's ip when AP is on connected mode, also it grabs other info like snr and rssi using the capwap control channel, however the username info is part of radius transaction that goes off of capwap control channel and doesn't hit the controller when local auth is enabled on WLAN's advanced tab or local authentication on AP itself. However, it is always possible to send the username to wlc from AP once the AP have the info when AP on connected mode.It is a valid ask work with your AM to get this addressed.
We're having a heck of a time getting our Carrier Infinity Thermostats (SYSTXCCITC01-B) connected to our Cisco wireless network. The network is rock sold (running vWLC version 8.5.151 and the access points are either 2802i's or 3802i's). ...
Hi,I am trying to run the WLAN poller tool against WLC 5520. User authentication is via ACS. I am using AAA credentials for the poller tool to authenticate for WLC and AP. But when I run the tool, i see error message that the WLC failed to respond.Is ther...
Hi all,It is my guess that one can the Service Port IP address.. when ever, without causing/needing a reboot.. Yes or No?I have a standalone LAB unit that I changed the SP ip on and the GUI (on mgnt ip) dropped out.. unit still pinged..W...
We have a Cisco 3504 WLC anchor controller that provides anchoring to several remote foreign controllers for certain WLAN's. This anchor is a single point of failure, and we are looking at options for providing redundancy in the event of a controlle...
Hello everybody, I have some questions about Band Select, MAC address randomization and Probe Request/Response. Please, feel free to contribute and add your own questions to this discussion. 1) How is Band Select feature impacted by MAC add...