Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
1577
Views
15
Helpful
3
Replies

WLC 5508s (SSO v8.5) mgmt interface operations

Go to solution
lcaruso
Level 6
Level 6

‎09-09-2020 12:40 PM - edited ‎07-05-2021 12:29 PM

Hello,

Due to organizational readdressing requirements, we need to move all of our APs out of the current WLC management vlan. Unfortunately, I cannot simple edit the interface because of redundancy SSO mode enabled. Is there a way to have more than one management interface defined or any other option?

Thank you.

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to Michael Combs

‎09-09-2020 04:10 PM

Now just to add... depending on how comfortable you are with AireOS, what you can do is the following.
Remove one of the controllers and leave the other, this will keep the network up and running. Then you take the controller you removed and connect it to an isolated vlan or switch to allow you to make changes to the management interface, you also want to remove any SSO configurations on that. Then you can place the configured controller on the new subnet. You can then move the aps to that newly configured controller by changing the high availability on the access points. Once the aps have joined, you can remove the other controller and either default it and setup the basic configuration then enable SSO or change the up address and remove SSO. Then connect it to the new management network and the pair the two back into SSO.
You probably want to remove the controller that has the licenses first and set that up again as the primary.
Hope that makes sense.
-Scott
*** Please rate helpful posts ***

View solution in original post

3 Replies 3

Go to solution
Michael Combs
Cisco Employee
Cisco Employee

‎09-09-2020 01:46 PM

Hi there,

 

You are correct, as management or redundancy management interface related details cannot be easily changed on-the-fly once HA-SSO is formed. You will want to scheduled a maintenance window as you will need to disabled HA-SSO, let both WLCs reboot, change the management and redundancy management details, re-enable SSO, then let the WLCs reboot once more as they will then re-form SSO upon powering up.

 

You can find some additional details here:

 

https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/8-7/High_Availability_DG.html#pgfId-202217

 

Hope that helps!

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to Michael Combs

‎09-09-2020 04:10 PM

Now just to add... depending on how comfortable you are with AireOS, what you can do is the following.
Remove one of the controllers and leave the other, this will keep the network up and running. Then you take the controller you removed and connect it to an isolated vlan or switch to allow you to make changes to the management interface, you also want to remove any SSO configurations on that. Then you can place the configured controller on the new subnet. You can then move the aps to that newly configured controller by changing the high availability on the access points. Once the aps have joined, you can remove the other controller and either default it and setup the basic configuration then enable SSO or change the up address and remove SSO. Then connect it to the new management network and the pair the two back into SSO.
You probably want to remove the controller that has the licenses first and set that up again as the primary.
Hope that makes sense.
-Scott
*** Please rate helpful posts ***

Go to solution
Sandeep Choudhary
VIP Alumni
VIP Alumni

‎09-09-2020 10:33 PM

you'll need to break HA and make the necessary changes and enable HA back.

 

Regards

Dont forget to rate helpful posts

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card
Top