Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2227
Views
5
Helpful
8
Replies

Cisco 2504 - gui not accessible

Go to solution
r1127hyduk
Level 4
Level 4

‎01-23-2023 08:52 AM

Hello All,

I'm looking for any insight as to why a browser connection to a Cisco 2504 WLC (Gui) may not be working.  Could this be browser related - Edge and Firefox were tried, WLC code related, certificate expiry related or?  Connection was local from inside the network to WLC so no firewalls or NAT were in play.

For a successful try, I do have a similar 2504 WLC system where connectivity works just fine via browser and CLI.  The IOS code is the same on both systems.

Labels:
0 Helpful
3 Accepted Solutions

Accepted Solutions

Go to solution
IP_Cartel
Level 1
Level 1

‎01-23-2023 09:46 AM - edited ‎01-23-2023 09:46 AM

console or ssh into the WLC and sync the date + time, then retry over https.

View solution in original post

0 Helpful

Go to solution
r1127hyduk
Level 4
Level 4
In response to r1127hyduk

‎01-23-2023 12:44 PM

 

Additional information - the system is working, however the GUI is not reachable .... if time sync and date are adjusted, what risk is there to lose connectivity to AP's (since users are able to access the network at this time - and for a long time --- years.  Gui just stopped working this week)?

View solution in original post

0 Helpful

Go to solution
r1127hyduk
Level 4
Level 4

‎02-22-2023 03:55 PM

This is confirmed as a Browser issue -- IE version worked from a system that is 5 years old (IE10.x).  Edge did not work and neither did Chrome.

View solution in original post

0 Helpful
8 Replies 8

Go to solution
r1127hyduk
Level 4
Level 4

‎01-23-2023 08:57 AM

WLC uses an unsupported protocol .... ERR_SSL_Version_or_Cipher_Match .... what would this message have to do with the issue?  and how to fix?

0 Helpful

Go to solution
r1127hyduk
Level 4
Level 4
In response to r1127hyduk

‎01-23-2023 12:44 PM

 

Additional information - the system is working, however the GUI is not reachable .... if time sync and date are adjusted, what risk is there to lose connectivity to AP's (since users are able to access the network at this time - and for a long time --- years.  Gui just stopped working this week)?

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to r1127hyduk

‎01-23-2023 01:01 PM

If this was operational and you do not have any operational issues with services, if this is only issue with GUI, the most cause of the handshake issue, get an old browser and test it ( try pale moon and see of that works).

Make sure the browser supports TLS 1.1 / 1.2 so on.

personally, I do not believe this is anything to do with NTP as per the error you posted.

when you get maintenance window, reboot WLC and test it (other option)

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
IP_Cartel
Level 1
Level 1

‎01-23-2023 09:46 AM - edited ‎01-23-2023 09:46 AM

console or ssh into the WLC and sync the date + time, then retry over https.

0 Helpful

Go to solution
Rich R
VIP
VIP

‎01-27-2023 09:14 AM

Have you tried regenerating the WLC certificate? (assuming you're using self-signed cert).

Also compare the Secure Web settings on the 2 WLCs (Security -> Web Auth -> Secure Web).

------------------------------
Please click Helpful if this post helped you and Select as Solution (drop down menu at top right of this reply) if this answered your query.
------------------------------
TAC recommended codes for AireOS WLC's   and   TAC recommended codes for 9800 WLC's
Best Practices for AireOS WLC's,   Best Practices for 9800 WLC's   and   Cisco Wireless compatibility matrix
Check your 9800 WLC config with Wireless Config Analyzer using "show tech wireless" output or "config paging disable" then "show run-config" output on AireOS and use Wireless Debug Analyzer to analyze your WLC client debugs
Field Notice: FN63942 APs and WLCs Fail to Create CAPWAP Connections Due to Certificate Expiration
Field Notice: FN72424 Later Versions of WiFi 6 APs Fail to Join WLC - Software Upgrade Required
Field Notice: FN72524 IOS APs stuck in downloading state after 4 Dec 2022 due to Certificate Expired
- Fixed in 8.10.196.0, latest 9800 releases, 8.5.182.12 (8.5.182.13 for 3504) and 8.5.182.109 (IRCM, 8.5.182.111 for 3504)
Field Notice: FN70479 AP Fails to Join or Joins with 1 Radio due to Country Mismatch, RMA needed
How to avoid boot loop due to corrupted image on Wave 2 and Catalyst 11ax Access Points (CSCvx32806)
Field Notice: FN74035 - Wave2 APs DFS May Not Detect Radar After Channel Availability Check Time
Leo's list of bugs affecting 2800/3800/4800/1560 APs
Default AP console baud rate from 17.12.x is 115200 - introduced by CSCwe88390
0 Helpful

Go to solution
r1127hyduk
Level 4
Level 4

‎02-22-2023 03:55 PM

This is confirmed as a Browser issue -- IE version worked from a system that is 5 years old (IE10.x).  Edge did not work and neither did Chrome.

0 Helpful

Go to solution
Rich R
VIP
VIP

‎02-23-2023 02:43 AM

You never mentioned what version of code you were using but also useful to make sure you're using latest available version of code (also see links below for TAC recommended releases)

Firefox 68.12.0esr works reliably for us on 8.0, 8.5 and 8.10 releases.

Note that if you switch between http and https on the GUI that's more or less guaranteed to cause problems - you need to clear all history and cookies and restart browser if you do that.  Then stick to using one or the other - never both.

------------------------------
Please click Helpful if this post helped you and Select as Solution (drop down menu at top right of this reply) if this answered your query.
------------------------------
TAC recommended codes for AireOS WLC's   and   TAC recommended codes for 9800 WLC's
Best Practices for AireOS WLC's,   Best Practices for 9800 WLC's   and   Cisco Wireless compatibility matrix
Check your 9800 WLC config with Wireless Config Analyzer using "show tech wireless" output or "config paging disable" then "show run-config" output on AireOS and use Wireless Debug Analyzer to analyze your WLC client debugs
Field Notice: FN63942 APs and WLCs Fail to Create CAPWAP Connections Due to Certificate Expiration
Field Notice: FN72424 Later Versions of WiFi 6 APs Fail to Join WLC - Software Upgrade Required
Field Notice: FN72524 IOS APs stuck in downloading state after 4 Dec 2022 due to Certificate Expired
- Fixed in 8.10.196.0, latest 9800 releases, 8.5.182.12 (8.5.182.13 for 3504) and 8.5.182.109 (IRCM, 8.5.182.111 for 3504)
Field Notice: FN70479 AP Fails to Join or Joins with 1 Radio due to Country Mismatch, RMA needed
How to avoid boot loop due to corrupted image on Wave 2 and Catalyst 11ax Access Points (CSCvx32806)
Field Notice: FN74035 - Wave2 APs DFS May Not Detect Radar After Channel Availability Check Time
Leo's list of bugs affecting 2800/3800/4800/1560 APs
Default AP console baud rate from 17.12.x is 115200 - introduced by CSCwe88390
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card