08-29-2017 01:16 PM - edited 07-05-2021 07:35 AM
Just curious if anyone know or can point me in the right direction to the reasons why the controller would admin down it's management port.
I added a second Controller to my enviroment and created a mobilty group for the two and for some reason the new controller keeps admin downing it's management port. I see the snmp traps, stating that it's down, but i can't find any indication as to why it shut the port down.
Any help would be appriciated.
Thanks
Solved! Go to Solution.
09-13-2017 10:36 AM - edited 09-13-2017 10:37 AM
I figured out the problem and wanted to post it here, hopefully it'll help out the next person.
The problem was that our NAC didn't have the system object ID of the new 5520 in it's database (if you want to call it that) and since it' didn't reconize that ID it would fail some sorta authorization process (Still working on figuring out the process) and when it failed, the NAC would send a SNMP trap to disable the interface in which the failed authorization came from, That being the Management Port.
It was able to "Admin-Disable" the port on the controller because the NAC and the WLC were configured for SNMPv3 with read/write rights.
Hope this helps
Edit, I forgot to mention that i had updated the WLC to the current cisco recommended version, before i figured this out.
08-29-2017 02:45 PM
08-29-2017 02:48 PM
Aw shoot, i forgot to list that. im running current Cisco recomended version 8.2.151
08-29-2017 03:10 PM
08-29-2017 03:27 PM
08-29-2017 03:35 PM
08-29-2017 03:38 PM
No they are not.
08-29-2017 05:15 PM
09-13-2017 10:36 AM - edited 09-13-2017 10:37 AM
I figured out the problem and wanted to post it here, hopefully it'll help out the next person.
The problem was that our NAC didn't have the system object ID of the new 5520 in it's database (if you want to call it that) and since it' didn't reconize that ID it would fail some sorta authorization process (Still working on figuring out the process) and when it failed, the NAC would send a SNMP trap to disable the interface in which the failed authorization came from, That being the Management Port.
It was able to "Admin-Disable" the port on the controller because the NAC and the WLC were configured for SNMPv3 with read/write rights.
Hope this helps
Edit, I forgot to mention that i had updated the WLC to the current cisco recommended version, before i figured this out.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: