08-18-2022 12:56 PM - edited 09-06-2022 11:56 PM
Hello there,
in my homelab I play with a Catalyst 9120AIX and EWC 17.7.
I configured a WLAN on VLAN1 and configured a Policy Profile. Under "Advanced" I entered a DHCP server IP adress from which the client should receive an IP address.
The client cannot connect to the WLAN and get the message "invalid passwort" even if the password is definitely correct ("12345678").
On one occasion (I have to admit I have no idea what was different) I had a connect but there was no IP from DHCP server. A wired client got an IP. I configured the DHCP server address in the Policy Profile but without success.
WLANs wit internal DHCP server and different VLANs are working properly.
I'm grateful for any hints.
Regards,
Joerg
08-19-2022 04:56 AM
17.7 is not a stable code, consider downgrading to either 17.6.3 or 17.3.5.
Then what authentication have you enabled under the WLAN profile? Do you have FT enabled? Do you have PMF enabled? If yes disable both options and try. Can you sanitize and paste the wlan, policy, flex profiles. It is not recommended configuring DHCP server IP under the policy profile. You can refer the below document from Cisco for better configuration guidelines
https://www.cisco.com/c/en/us/td/docs/wireless/controller/ewc/17-6/config-guide/ewc_cg_17_6.html
Connecting switchport must be trunk with native vlan set as the management VLAN. All EWC AP's behave similar to Flexconnect AP's (only local switching)
08-19-2022 08:47 AM - edited 08-19-2022 08:48 AM
"I configured the DHCP server address in the Policy Profile"
Why? If the DHCP server is on the local VLAN there's no need to do DHCP relay. Or is your DHCP server remote? And if it is then does the AP have a route to get to it?
Agreed with Leo - fall back to 17.6.3 (soon 17.6.4) or try 17.9.1 which is the next extended support release (which I have my home 9120 EWC running on now).
09-06-2022 12:41 AM
Hi there and sorry for the delayed reply. Real life (aka 19month old kid) messes with my spare time
"Why? If the DHCP server is on the local VLAN there's no need to do DHCP relay. Or is your DHCP server remote? And if it is then does the AP have a route to get to it?"
Because it didn't worked in first place with no DHCP server entry...
I now switched to C9800 17.9.1 and have similar problems. This seems to hint that I have a general config problem.
What did I do:
Especially since the setup for the WLANs and VLAN 20 and 100 are identical, I have no idea what is missing.
I appreciate ANY hints and help.
Thanks in advance,
Joerg
09-06-2022 11:56 PM
Hi all,
thanks for your hints,
I just deleted the whole VM and setup a clean installation. Now it works nearly without glitch.
Thanks again
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide