12-22-2020 10:18 PM - edited 07-05-2021 12:56 PM
hi,
I have recently installed 9800cl version 17.3.2a using ova. i am now trying to enable smart licensing. when i installed previous versions (16.x), licensing was showing options to register via gui. this time i am not seeing this option. also show version and show license all (attached file) doesn't show evaluation period.
vWLC#sh ver | incl Smart
Smart Licensing Status: Registration Not Applicable/Not Applicable
12-22-2020 10:21 PM
01-03-2021 08:43 PM
hi
i followed procedure mentioned in the link "No CSLU - Product instance direct-connect using trust token". I can ping smartreceiver.cisco.com. time is synched. i can also ping using hostname,
# sh run | incl license smart
license smart url default
license smart url smart https://smartreceiver.cisco.com/licservice/license
license smart transport smart
still i am getting following log message when i enter license smart trust idtoken command
Jan 4 04:07:44.924: %SMART_LIC-3-COMM_FAILED: Communications failure with the Cisco Smart Software Manager (CSSM) : No detailed information given. i have also sorted out hostname/domain issue using ip host command on wlc.
2021-01-04 09:35:12.758 AEST SAEVT_COMM_FAIL error="Unable to resolve server hostname/domain name"
2021-01-04 14:52:43.171 AEST SAEVT_COMM_FAIL error="No detailed information given"
2021-01-04 15:16:53.791 AEST SAEVT_CONFIG_PERSISTED
2021-01-04 15:16:58.431 AEST SAEVT_COMM_FAIL error="No detailed information given"
01-03-2021 11:46 PM
- Further check the failure reason with show license all
; and use this checklist -> https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/smart-licensing/qsg/b_Smart_Licensing_QuickStart/b_Smart_Licensing_QuickStart_chapter_01001.html?dtid=osscdc000283#id_92458
M.
09-13-2021 04:49 PM
Anyone get this solved ? I'm with the same issue:
T: %CRYPTO_ENGINE-5-KEY_DELETED: A key named SLA-KeyPair has been removed from key storage
Sep 13 19:59:55.822 BRT: %CRYPTO_ENGINE-5-KEY_ADDITION: A key named SLA-KeyPair has been generated or imported by crypto-engine
Sep 13 19:59:55.967 BRT: %PKI-6-CONFIGAUTOSAVE: Running configuration saved to NVRAM
Sep 13 20:00:16.807 BRT: %SMART_LIC-3-COMM_FAILED: Communications failure with the Cisco Smart Software Manager (CSSM) : No detailed information given
09-13-2021 04:51 PM
I used the configuration below but no sucess:
Device direclty to the CSSM
Device(config)# license smart transport smart
Device(config)# license smart url default
Device(config)# exit
Device# copy running-config startup-config
Device# license smart trust idtoken xxxxxxxxxxxx all force
sh ver | incl Smart
https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst9500/software/release/17-3/configuration_guide/sys_mgmt/b_173_sys_mgmt_9500_cg/sl_using_policy.html#Cisco_Concept.dita_851fd9c1-1733-452f-94dd-de496074abfc
https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst9500/software/release/17-3/configuration_guide/sys_mgmt/b_173_sys_mgmt_9500_cg/sl_using_policy.html#Cisco_Task.dita_cb38a44e-58aa-43f4-bbed-1b9ce17bdabd
The error:
T: %CRYPTO_ENGINE-5-KEY_DELETED: A key named SLA-KeyPair has been removed from key storage
Sep 13 19:59:55.822 BRT: %CRYPTO_ENGINE-5-KEY_ADDITION: A key named SLA-KeyPair has been generated or imported by crypto-engine
Sep 13 19:59:55.967 BRT: %PKI-6-CONFIGAUTOSAVE: Running configuration saved to NVRAM
Sep 13 20:00:16.807 BRT: %SMART_LIC-3-COMM_FAILED: Communications failure with the Cisco Smart Software Manager (CSSM) : No detailed information given
09-14-2021 07:32 AM
Do you happen to have IPv6 enabled? I think tools.cisco.com is currently unreachable by it.
09-14-2021 07:34 AM
No, I do not using ipv6
09-14-2021 07:44 AM
01-04-2021 12:11 AM
hi,
i am getting following log message. show license all doesnt show failure reason. i changed config to call-home and checked both call-home config with and without vrf. currently 9800vwlc is configured with mgmt-intf vrf (gig1)
Jan 4 08:06:45.344: %CALL_HOME-5-SL_MESSAGE_FAILED: Fail to send out Smart Licensing message to: https://tools.cisco.com/its/service/oddce/services/DDCEService (ERR 205 : Request Aborted)
BH-Gina-L1-vWLC#
Jan 4 08:06:45.344: %SMART_LIC-3-COMM_FAILED: Communications failure with the Cisco Smart Software Manager (CSSM) : Fail to send out Call Home HTTP message.
i can ping to tools.cisco.com and also telnet using ip and port 80 and 443 but not name
vWLC#telnet 72.163.4.38 80
Trying 72.163.4.38, 80 ... Open
^C
vWLC#telnet 72.163.4.38 443
Trying 72.163.4.38, 443 ... Open
^C
vWLC#telnet tools.cisco.com 443
Trying 2001:420:1201:5::A, 443 ...
% Destination unreachable; gateway or host down
01-04-2021 12:42 AM
>vWLC#telnet tools.cisco.com 443
Trying 2001:420:1201:5::A, 443 ...
% Destination unreachable; gateway or host down
- Check if you have any (local) firewalling-restrictions , preventing this
M.
09-14-2021 07:33 AM
12-02-2021 06:58 PM
your device does not use the right ip to reach the CISCO Smart license server. You have to enable the right IP address to go out towards the internet with the command http source-interface loopback0 (or an int vlan enabled to internet)
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide