- To me  that looks normal  ; the question comes down to : why use such a design and not simply use another VLAN.
    Also check if the 9800-40 agrees with this by validating the configuration using CLI show tech wireless (not show tech)
   and feed the output from that into Wireless Config Analyzer
               If WirelessAnalyzer does not agree then you must change the design

 M.

It doesn't sound right to me (although I've never tried using the same vlan on both) but some questions...
Is the "local breakout" WLAN local switching, local authentication and local DHCP (ie central disabled for all)?

And how have you defined the VLAN for the flexconnect "local breakout" WLAN?
Have you simply entered the VLAN ID (VLAN number - this does not require VLAN definition in Flex Profile), or have you defined the VLAN name in the Flex Profile (the only place flex VLANs can be defined) and then used that name, or have you tried to use the VLAN name which you defined for the central VLAN (you should NOT do this)?
If using Flex Profile VLAN definition I would make sure to use a different name to the central VLAN to ensure that the controller doesn't confuse them but I've never tried that.

Thank you all for your answers. to provide a bit of context. hereby the configuration parts:

wireless profile policy tunneled-vlan
wireless profile policy XXXX
description XXX-tunneled
dhcp-tlv-caching
http-tlv-caching
idle-timeout 1800
radius-profiling
session-timeout 0
vlan 320

!

wireless profile policy XXX_Flex_vl320
no central association
no central dhcp
no central switching
description "xxxx flexconnect vlan 320"
dhcp-tlv-caching
http-tlv-caching
radius-profiling
vlan 320

Thanks, I removed this from the policy. However the mac addressess didn't disappear. Even when I delete the vlan on our WLC, the mac addresses stay in the mac address table. Even after clearing it.

WLC#sh vl id 320
VLAN id 320 not found in current VLAN database

WLC#sh mac add vlan 320
VLAN MAC Address Type AgeIdx InPkt Interface
-------------------------------------------------------------
320 aaaa.bbbb.cccc.ddd1 WlClient 0 85 WLCLIENT-IF-0x00a0006e6d
320 aaaa.bbbb.cccc.ddd2 WlClient 0 85 WLCLIENT-IF-0x00a0006070
320 aaaa.bbbb.cccc.ddd3 WlClient 0 85 WLCLIENT-IF-0x00a0006786
320 aaaa.bbbb.cccc.ddd4 WlClient 0 85 WLCLIENT-IF-0x00a0006dc3
320 aaaa.bbbb.cccc.ddd5 WlClient 0 85 WLCLIENT-IF-0x00a00070a4

I reported a bug at Cisco. I tested some more and also for other vlans this is the case. I'll hope they will fix this.

The response from Cisco is indeed that the mac addresses for flexconnect clients are stored in the mac address table for management purposes.

For me not really a solution, because I don't want our mac address tables to be filled with mac addresses which don't belong there. But it is what it is..