11-24-2017 03:05 AM - edited 07-05-2021 07:54 AM
Hi there guys,
So I'm having next month a installation of a secondary controller into a non SSO environment, which is what it is going to be.
The thing is I can't find any document related to setup SSO in a production environment, only on greenfield setup, which I've done in the past.
Can anyone help me figuring out what's necessary to deploy the second node on a running environment.
Thank you
Solved! Go to Solution.
11-24-2017 03:13 AM
Hi @rbncarvalho
You need an HA-SKU WLC or a WLC with at least with 50 AP license same hardware and software version.
Ethernet cable connected between two RP ports.
The best guide I know is this:
https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/7-5/High_Availability_DG.html
-If I helped you somehow, please, rate it as useful.-
11-24-2017 03:38 AM - edited 11-24-2017 03:40 AM
Ok then Falvio was correct. I thought the other way.
Either you setup in Greenfiled or in Production, Procedure is same.
So here is the posts to Implement HA AP/Client SSO:
Regards
Dont forget to rate helpful posts
11-24-2017 03:13 AM
Hi @rbncarvalho
You need an HA-SKU WLC or a WLC with at least with 50 AP license same hardware and software version.
Ethernet cable connected between two RP ports.
The best guide I know is this:
https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/7-5/High_Availability_DG.html
-If I helped you somehow, please, rate it as useful.-
11-24-2017 03:37 AM
Thanks mate,
Do the active controller need anything else besides the redundancy config?
The secondary was bought as a HA-SKU so it should be fine, my doubts are regarding putting this solution in place in a production environment, the standby should mirror the config on the active and join the cluster am I right?
Thanks
11-24-2017 03:29 AM
If its a non SSO then you just need to configure the secondary WLC same as Primary except the change in IP address(Its called N+1 HA).
Check this posts and do the implementaion of secondary node in N+1 HA.
https://rscciew.wordpress.com/2014/06/07/n1-high-availability-configuration-on-cisco-2504wlc/
Regards
Dont forget to arte helpful posts
11-24-2017 03:35 AM
Hi mate,
The goal is to start being a SSO solution, but we have a running WLC, which will be the active, and the new one the standby.
Thank you
11-24-2017 03:38 AM - edited 11-24-2017 03:40 AM
Ok then Falvio was correct. I thought the other way.
Either you setup in Greenfiled or in Production, Procedure is same.
So here is the posts to Implement HA AP/Client SSO:
Regards
Dont forget to rate helpful posts
11-24-2017 03:40 AM
Like I said, you can buy a HA-SKU which is a cheaper hardware and is meant to be the standby WLC. If you already have an second WLC you can spare, then, it need to have at least 50 AP license.
Further more, you just need to setup both WLC. The configuration is pretty straitforward and you can find everything on the link I shared. If you find some difficult while running this, just put here any specific doubt.
-If I helped you somehow, please, rate it as useful.-
11-24-2017 03:43 AM
Thank both you guys,
My doubts we're mostly concerning this being a production environment, as I've never done it this was before.
But if anything arises, I'll let you guys know.
Thank you very much
11-24-2017 03:57 AM
Just keep in mind that there will be outage on the network. When you finish configuring on both WLC and change the SSO to active, both WLC will reboot and join in a HA group. Do it in a time windown. Consider 1 hours as a comfortable time window.
Then, you are going to lose communication with the secondary WLC via web interface. Only SSH will be possible. Have a console cable with you and avoid doing that remotely unless you have a guy on the DC.
-If I helped you somehow, please, rate it as useful.-
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide