cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
718
Views
0
Helpful
4
Replies

Problem with WDS, WLSE & authentication

gauthraj
Level 1
Level 1

Hello,

I try to understand WDS. I have got a WLSE 2.9 and some AP 1210 12.3(2)JA.

I first configured one AP to WDS device and other to infrastructure APs. It worked without too much troubles, then I wanted to try with 2 WDS devices (to have an election) and the second one never works.

First one WDS device:

wlccp ap username xxx password 7 xxx

wlccp authentication-server infrastructure method_GroupWLSE

wlccp wds priority 254 interface BVI1

wlccp wnm ip address 10.1.10.252

Second one :

wlccp ap username xxx password 7 xxx

wlccp authentication-server infrastructure method_GroupWLSE

wlccp wds priority 216 interface BVI1

wlccp wnm ip address 10.1.10.252

Infrastructure APs:

wlccp ap username xxxx password xxxx

wlccp ap wds ip address 10.1.10.13

with

10.1.10.252 -> WLSE

10.1.10.13 -> first WDS device

on WLSE, WLCCP credential WDSuser/xxx

With this configuration, on WLSE, I've got all those APs registered with 10.1.10.13 for WDS parent and "show wlccp wnm status" results :

WNM IP Address : 10.1.10.252 Status : SECURITY KEYS SETUP for first WDS device (10.1.10.13)

and

WNM IP Address : 10.1.10.252 Status : NOT AUTHENTICATED for the second one (10.1.10.199) and I've got a fault on WLSE : "AP registered with an Unmanaged WDS 0.0.0.0"

All AP are reacheable by SNMP from WLSE, all login/pass are on ACS radius..

I don't really understand why it doesn't work and how WDS really runs.

If someone could help me..

THANKS

Regards

4 Replies 4

jasony15
Level 1
Level 1

I believe it is normal for the backup WDS's to show NOT AUTHENTICATED. When it becomes the active WDS, it should change to SECURITY KEYS SETUP. You can test this by lowering the priority on the primary WDS to less than 216.

For the "AP registered with an Unmanaged WDS 0.0.0.0" message, I would verify both WDS's are managed in the WLSE. If so, then try clearing the fault and see if it comes back.

Gustavo Novais
Level 1
Level 1

Hello,

You can try to remove the line "wlccp ap wds ip address 10.1.10.13".

This specifies the AP's to register specifically to that WDS device, and for what I understood you want it to register to the one that has higher priority.

Nevertheless, in case the configured device doesn't respond, the AP still should listen to WDS advertisements and fallback to the second WDS device.

You can read about it on

http://www.cisco.com/en/US/products/hw/wireless/ps4570/products_configuration_guide_chapter09186a0080208a6e.html#wp1036619

Good Luck.

Thank you

I restart all the config from blank ones and now it works fine. I don't really understand why it didn't work the first time...

Hello

only the WDS-AP and the WDS-AP-AP-Backup should point to the wlse with the cmd "wlccp wnm ip adress XXXX".

Trun off the primary WDS-AP and you will see all infra-AP will authenticate at the second WDS-AP.

Review Cisco Networking for a $25 gift card