Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1610
Views
0
Helpful
2
Replies

Cisco WLC 9800L GUI Login Issue

Go to solution
viv42
Level 1
Level 1

‎06-05-2023 06:57 AM

Hi Team,

I have an on-prem Cisco WLC 9800-L Controller. I configured all the parameters properly. Now I am able to get the Console CLI login as well as the GUI login via SP port.

But I am not able to log in through GUI when using Wireless management IP.

I tried below,

ip http server

ip http secure-server

ip http authentication local

ip http secure-trustpoint CISCO_IDEVID_SUDI

ip http client source-int "wireless mgm int"

Also, tried to create new user.

Still, no luck.

note:- This WLC 9800 is newly deployed, after initial configuration all was working fine I can able to log in through GUI, but suddenly when I tried to log in through GUI using Wireless management IP I am getting the wrong username password which was working previously.

 

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rich R
VIP
VIP

‎06-06-2023 03:20 PM

- Refer to best practice guide below
- Remember SP is a separate managment VRF - different routing table.  All your config must reflect that.  The routing in the default VRF needs to be able to reach the same things as the management VRF.
- Check your config at https://cway.cisco.com/wireless-config-analyzer/ using output of "show tech wireless"
- Run a packet capture on the "wireless mgm int" to see whether your packets arrive there and whether the WLC responds and take it from there.

Note that ip http client source-int "wireless mgm int" only applies to http/https connections originated/initiated by the WLC - for example connecting to Smart Licensing.

------------------------------
Please click Helpful if this post helped you and Select as Solution (drop down menu at top right of this reply) if this answered your query.
------------------------------
TAC recommended codes for AireOS WLC's   and   TAC recommended codes for 9800 WLC's
Best Practices for AireOS WLC's,   Best Practices for 9800 WLC's   and   Cisco Wireless compatibility matrix
Check your 9800 WLC config with Wireless Config Analyzer using "show tech wireless" output or "config paging disable" then "show run-config" output on AireOS and use Wireless Debug Analyzer to analyze your WLC client debugs
Field Notice: FN63942 APs and WLCs Fail to Create CAPWAP Connections Due to Certificate Expiration
Field Notice: FN72424 Later Versions of WiFi 6 APs Fail to Join WLC - Software Upgrade Required
Field Notice: FN72524 IOS APs stuck in downloading state after 4 Dec 2022 due to Certificate Expired
- Fixed in 8.10.196.0, latest 9800 releases, 8.5.182.12 (8.5.182.13 for 3504) and 8.5.182.109 (IRCM, 8.5.182.111 for 3504)
Field Notice: FN70479 AP Fails to Join or Joins with 1 Radio due to Country Mismatch, RMA needed
How to avoid boot loop due to corrupted image on Wave 2 and Catalyst 11ax Access Points (CSCvx32806)
Field Notice: FN74035 - Wave2 APs DFS May Not Detect Radar After Channel Availability Check Time
Leo's list of bugs affecting 2800/3800/4800/1560 APs
Default AP console baud rate from 17.12.x is 115200 - introduced by CSCwe88390

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Rich R
VIP
VIP

‎06-06-2023 03:20 PM

- Refer to best practice guide below
- Remember SP is a separate managment VRF - different routing table.  All your config must reflect that.  The routing in the default VRF needs to be able to reach the same things as the management VRF.
- Check your config at https://cway.cisco.com/wireless-config-analyzer/ using output of "show tech wireless"
- Run a packet capture on the "wireless mgm int" to see whether your packets arrive there and whether the WLC responds and take it from there.

Note that ip http client source-int "wireless mgm int" only applies to http/https connections originated/initiated by the WLC - for example connecting to Smart Licensing.

------------------------------
Please click Helpful if this post helped you and Select as Solution (drop down menu at top right of this reply) if this answered your query.
------------------------------
TAC recommended codes for AireOS WLC's   and   TAC recommended codes for 9800 WLC's
Best Practices for AireOS WLC's,   Best Practices for 9800 WLC's   and   Cisco Wireless compatibility matrix
Check your 9800 WLC config with Wireless Config Analyzer using "show tech wireless" output or "config paging disable" then "show run-config" output on AireOS and use Wireless Debug Analyzer to analyze your WLC client debugs
Field Notice: FN63942 APs and WLCs Fail to Create CAPWAP Connections Due to Certificate Expiration
Field Notice: FN72424 Later Versions of WiFi 6 APs Fail to Join WLC - Software Upgrade Required
Field Notice: FN72524 IOS APs stuck in downloading state after 4 Dec 2022 due to Certificate Expired
- Fixed in 8.10.196.0, latest 9800 releases, 8.5.182.12 (8.5.182.13 for 3504) and 8.5.182.109 (IRCM, 8.5.182.111 for 3504)
Field Notice: FN70479 AP Fails to Join or Joins with 1 Radio due to Country Mismatch, RMA needed
How to avoid boot loop due to corrupted image on Wave 2 and Catalyst 11ax Access Points (CSCvx32806)
Field Notice: FN74035 - Wave2 APs DFS May Not Detect Radar After Channel Availability Check Time
Leo's list of bugs affecting 2800/3800/4800/1560 APs
Default AP console baud rate from 17.12.x is 115200 - introduced by CSCwe88390
0 Helpful

Go to solution
viv42
Level 1
Level 1

‎06-09-2023 09:36 PM

Hi Rich R,

Thank you for the quick support. 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card