2504 controller and RADIUS security problem

Similar Messages

• 5 wireless controller and roaming security

  i want to connect 5 wlan controller to core switch with 470 ap . client must roaming and dont have disconnect. what security must configured

  Stephen,
  I dropped these questions in the Ask the Expert forum, but they are relevant here:
  Our intention is to use the Mobility Group to distribute AP connections among many controllers on several campuses for redundancy in the event of catastrophic failure. With this in mind, several questions arise as to how this can be achieved:
  1. What is the formula by which an AP, once it has a list of candidate controllers to join, chooses a specific controller? We understand it has something to do with the number of APs and clients a controller is managing, but what are the quantitative criteria/tiebreakers in the AP decision process? What are the relative/absolute values?
  2. If we use DHCP Option 43 to point to the APs to a Master Controller, and subsequently re-assign via the controller GUI the APs Primary, Secondary, and Tertiary controllers, will the APs automatically join the Primary, or do they have to be rebooted? And if rebooted, will these WLC assignments override the DHCP Option 43 if not changed?
  3. In the above setup, will the AP stop searching for available controllers if the Pri/Sec/Ter WLC assignments fail? Can other, unassigned controllers in the Mobility Group provide a connection for an AP? Or is N + 1 + 1 the limit?
  4. Assuming the AP tries them in sequential order, can we place all WLCs in a Mobility Group inside Option 43, or is it limited to 3 entries like the controller-based assignment?
  Thanks for any assistance,

• Fire fox keeps blocking my allowed sites from changing pages and causing security problems on those sites How do I stop it from do so

  Every time I get on my banking site Fire Fox blocks me from changing pages from the sign in page to the account page. It blocks it and I can not sign in to my account. It is an allowed site

  hello SalvdrnG24, this sounds like an issue caused by malware on your machine. please perform these steps:
  # [[Reset Firefox – easily fix most problems|reset firefox]] (this will keep your bookmarks and passwords)
  # afterwards go to firefox > addons > extensions and in case there are still extensions listed there, disable them.
  # finally run a full scan of your system with different security tools like the [http://www.malwarebytes.org/products/malwarebytes_free free version of malwarebytes] and [http://www.bleepingcomputer.com/download/adwcleaner/ adwcleaner].
  [[Troubleshoot Firefox issues caused by malware]]

• I need an instrument driver for Neocera LTC-21 Temperature Controller and am having problems sending the IDN? string to the same instrument.

  Hi,
  When I use the instrument wizard in LabVIEW 5.0, to indentify a device (Neocera LTC-21 Temperature Controller), I receieve the following error:
  Error.
  There was an error sending this string.
  VISA error code returned was:
  -1073807339
  Error -1073807339 occured at VISA Read.
  Possible reasons:
  VISA: (Hex 0xBFFF0015) Timeout expired before operation completed.
  Although, the manual for this instrument states that the response should be a string of characters in the form of "Neocera Model LTC-21 version".
  Also, I do not have a driver for this instrument, inspite of checking on the NI Instrument
  Divers Network and the company website(www.Neocera.com).
  I would truely appreciate if someone can help me.
  Thanks,
  Kunal.

  I could not find any drivers for that instrument. You may just have to make your own. As for getting the device to respond, there are a couple of things you can do. If you are using GPIB: First, you might want to just reset the device by turning it on and off. If there are other instruments on the same bus, make sure 2/3 of them have their power on. Try communicating with it through IBIC. Here is a page that will help.
  http://www.ni.com/support/gpib/max/ibic.htm
  IBIC communicates with the GPIB on a very base driver level and you set everything manually step by step, so you can see where the break down is. Also make sure you are entering the "*IDN?" and all other commands correctly. Check the device manual to see what commands it should respond to and if there ar
  e any special settings you might need. If you are doing serial communication, you may want to check to see if you need a null modem cable for it to function. There also may be a dip switch on the device that switches between serial and GPIB communication.

• Big and strange security problem

  Hi,
  we have installed oracle 10g R2 on a Win 2003 server. We have created 3 Databases. We have created PWDFILE on windows for each. But in sqlplus we can connect sys as sysdba with any password (I mean you do not need to know the exact password you can enter any word).
  And we have this parameter setting for all :
  SQL> show parameter remote
  NAME                                 TYPE        VALUE
  remote_login_passwordfile            string      EXCLUSIVEWhat is the problem ? And what would be the solution ?
  Thank you.

  Justin,
  We have two servers S1 and S2
  - You have two databases, D1 which runs on S1, and D2 which runs on S2 ? No, on S1 3 DB and on S2 6 DB.
  - You have two users, U1 which creates a session on S1 and U2 which creates a session on S2 ? Yes.
  - U1 is in the ORA_DBA group on S1 and U2 is in the ORA_DBA group on S2 ? Yes.
  - The sqlnet.ora file on both S1 and S2 lists NTS as an authentication service ? Yes.
  - Operating system authentication is permitted for U1 on S1 connecting to D1 but not for U2 on S2 connecting to D2? For both we have :
  SQL> show parameter remote
  NAME                                 TYPE        VALUE
  remote_archive_enable                string      true
  remote_dependencies_mode             string      TIMESTAMP
  remote_listener                      string
  remote_login_passwordfile            string      EXCLUSIVE
  remote_os_authent                    boolean     FALSE
  remote_os_roles                      boolean     FALSE
  SQL>Thank you.

• Wlan Controller and NOKIA e66 problem

  Hi all I want to ask some questions: I'mexperiencing these serious problem: when i place a voip call with E66 the voice is seriously chopped.
  With 7921 the voice is ok.
  I'm using: WLC 4402 (vers 4.2.207.0) nokia Call Connector 1.60 on nokia e66, UCM 6.1. I used the same configuration of the WLAN of 7921 as QoS and other specification.
  The encryption is WPA (I tried with CCKM+tkip+LEAP as the 7921 work but i have also LEAP authentication problem but is not the most important thing now).
  I don't know what to do.
  Can somebody help me?
  Thanks for your support

  Hi,
  I upgraded to PR3 only my personal Phone and i made the tests with my e66.
  I disabled the 802.11b network.
  The problem is very evident when i place a call nokia<->7921.
  calls nokia<->other cisco phone (non wifi) is acceptable but not very good.
  If I make a call using nokia<->PSTN lines is ok (It is quite like other phone).
  If I disable CAC the situation is the same
  I don't know if it is a roaming problem or other problems.
  Thanks

• I can view same page as https and http, security problem, help!

  I can view the same page with either https or http. Obviously I want the http not to be available. How do I do this? thanks

  I can view the same page with either https or http. Obviously I want the http not to be available. How do I do this? thanks

• Config storage confusion 2504 controller with CAP702I

  HI all,
  I've been tasked with the rollout of the above mentioned hardware, and I've managed to get so far, but it seems I cannot do a 'copy running-config startup-config' on the CAP702I Aironet access points.
  ive got then registered with the controller and radios turned on but the problem is that it the power is cycled the radios turn off, I can SSH into each AP and manually turn them on and it works all fine except I shouldn't need to do that.
  If anyone could give me a clue as to how to change the ap config to either store the config with radios enabled on restart on the device itself or guide me through storing the config on the 2504 controller and pointing to it on the ap devices for their startup, it would be much appreciated.

  So simply wireless clients are not getting ip address from the DHCP scope defined for them on AD DHCP server.
  few  facts about DHCP handling on WLC:
  - With DHCP proxy enabled , the controller acts as relay agent.
  Simply you configure primary or may be secondary DHCP server under the interface config.
  When the client starts the DHCP process the controller will rekay the clients DHCP packets
  in unicast form.
  - With DHCP proxy disabled , the controller will not intervene at all, and the client traffic will be sent
  as broadcast. If the DHCP server is on different VLAN , you have to configure relay agent under the gateway
  of the client vlan so that it can reach the DHCP server.
  Please make sure to rate correct answer

• Hosts having connection issue, 2504 controller

  Hello,
  We have a Cisco 2504 controller and approximately 35 AP's.
  Some of the AP's are located directly above each other (on another floor).
  When I run a basic annalyzer, it appears that there is some adjacent AP traffic, the controller has some of the close AP's with the same channel, so there is some RF interferance.
  The AP's currently are all setup for "G" and majority of the AP's are 1200 series, most of them are 1242's.
  Should and can the AP's be set with static channels so that there is no adjacent signals?
  If so where in the controller can that be done?
  Any help would be truly appreciated, we are a school with an iPad program, so the amount of connects is quite high as well as the availability to have internet acces.
  Thank you for anytype of help you can provide.
  jim

  If you don't want the WLC to control the RF using RRM, you can manually set each ap and its radio statically. On the wireless tab, click on either 802.11an or 802.11bgn and the all the way to the right of the ap, there is a blue triangle. Hover the mouse over that and click configure, there you can set the channel and power leave for that radio on that ap. You will have to do each radio and ap. Hope this helps.
  Sent from Cisco Technical Support iPad App

• 2504 controller + 2602 APs = wireless clients connectivity problems

  Hello, everybody!
  I have a connectivity problems of wireless clients. The symptoms are:
  1) Some clients receive 169.254.x.x., instead a correct DHCP addresses, less in a minute connection drops, and in controller's "Monitor" > "Clients" tab these clients are marked as "Excluded".
  2) Most of the clients receive the correct addresses from DHCP (192.168.2.x), but also loose connection soon.
  3) Wireless clients with correct addresses can't ping each other, gateway and an address of the controller's dynamic interface (all of them are in same subnet).
  4) And the most suspicious problem is that some machines are unable to connect to APs after several attemps to do that. I mean, I configure controller and change some options, trying to understand, whether they were applied or not and constantly connect and disconnet certain PC to the SSID. After five or ten attempts I can't connect to the SSID. During these attempts, the others PCs stay connected, without interruptions, and they could be reconnected again. It's like some kind of port security works, but I'm not sure...
  Do you have any ideas which options should I configure?
  My configuration:
  I have three interfaces on the controller: virtual, management (default) and dynamic (it is set to the WLAN)
  I have one SSID, WPA/WPA2, AES/TKIP, authentication PSK.
  My clients are a/b/g/n, all are permitted on the controller. No custom security policies were applied.
  All the devices are in a single room: controller, one AP and different clients: desktop, notebooks, iPad, Nokia Lumia, etc.
  I have an internal DHCP Server on the controller and it works perfectly well.
  I can provide all the screenshots required from web-interface of the controller...
  Many thanks in advance for all ideas that you have about these problems...

  Hi, there!
  The problem was solved.
  1) APIPA address receives only single machine with Win8 - I think there are some firewall issues
  2) Other devices have been loosing connection because they were mobile devices, like iPad and Lumia. If you keep working with it, it doesn't drop the connection
  3) The dynamic interface address and gateway address were inaccessible because i had not used an appropriate port on the controller. =)))) Firstly, it was just a guess, but it proved.
  Now, everything works with WPA2, AES, PSK...
  It is a very good day!)
  The only question remains: why I can't connect machines, which have a static IP? During the controller initialization, I said "yes" for permitting static IPs...
  Guys, many thanks for your help!

• Hi i got a new airport express for christmas and i set it up as per instructions ,i even give a static ip and wpa2 security ..the problem is is when i come to want to use it it says its not on my network and a orange triangle shows .when i reboot it works

  hi i got a new airport express for christmas and i set it up as per instructions ,i even give a static ip and wpa2 security ..the problem is is when i come to want to use it it says its not on my network and a orange triangle shows .when i reboot it works..then if i leave it a while and try iy agian its disapeared of my network...i have a bt hub 3 ....any help please ..im not sure if itsa faulty express

  I really don't have an answer for that one. I guess that while trying to get things working correctly, I would use the most basic monitor I had which in your case would be the Eizon using the Thunderbolt port and adaptor.
  When you boot into Safe Mode the startup is quite slow, but you should get the Apple logo and then the spinning gear below it (release the SHIFT key when it appears.) Then after a little more time you should see a gray progress bar appear below the spinning gear. When that disappears the computer will startup to a login screen.

• Opening and closing a frame from an applet security problem

  can I open a frame or a window from an applet and close the frame by using
  System.exit(0) for the frame or will it throw a security problem.

  I am using system.exit(0) to exit the JVM.
  dispose()
  Releases all of the native screen resources used by this Window, its subcomponents, and all of its owned children. That is, the resources for these Components will be destroyed, any memory they consume will be returned to the OS, and they will be marked as undisplayable.
  If this frame have to be close and open again don't use dispose.
  there is no check whether a frame is active? what you can do is set the the new frame to null (frame = null) and also when you dispose it, this will let you know if the frame is active or not.
  Noah

• HT204053 i want to change my icloud id on my iPhone, but it won't let me now that i have upgraded.  I no longer have the password and the problem is It is using an old id which the email isn't valid and the security question does not think my birthday is

  I want to change my icloud id on my iPhone, but it won't let me now that i have upgraded.  I no longer have the password and the problem is It is using an old id which the email isn't valid and the security question does not think my birthday is valid.  I cannnot delete the account because "find my iphone" wants the password linked to this old account.  But when i go into the find my iphone app it is using my corect Apple ID.  How do i fix this?

  If you still have access to your old email address, go to https//appleid.apple.com, click Manage my Apple ID and sign in with your iCloud ID.  Tap edit next to the primary email account, tap Edit, change it back to your old email account and verify it.  Then edit the name of the account to change it back to your old email address.  You can now use your current password to turn off Find My iPhone on your device. Then go to Settings>iCloud, tap Delete Account and choose Delete from My iDevice when prompted (your iCloud data will still be in iCloud).  Next, go back to https//appleid.apple.com and change your primary email address and iCloud ID name back to the way it was.  You can now go to Settings>iCloud and sign in with your correct iCloud ID and password.
  If you don't have access to your old email address, you will have to contact Apple to have them reset the password so you can disable Find My iPhone and sign into your iCloud account.  You can either go to https://expresslane.apple.com, select "More Products and Services", then "Apple ID", then  on the next page select "Other Apple ID Topics", then "Lost or forgotten Apple ID password" and click "Continue"; or you can contact Apple Support (http://www.apple.com/support/icloud/contact/).

• Problems with Ethernet controller and PCI device driver on Satellite L30-10X

  Hellow!
  Sorry for my bad English, I'm from Russia.
  Just few days ago I bought Satellite L30-10X with W Vista on board. My opinion, that this OS does't very good on this computer, so I install W XP.
  I have some problems with drivers. At first, I dont know what model I have:PSL30 or PSL33? I download all drivers for both models. But, after installation, computer doen't find drivers for Ethernet controller and PCI device...

  Hi
  Satellite L30-10X belongs to the PSL33E series. This number can be found on the label placed on the bottom of the unit!
  You have to choose this number from the driver download form to get the compatible XP drivers.
  I dont know why you are not able to install the LAN driver. Ive got the same notebook with Vista and Ive installed the XP and all drivers run fine.
  I assume you have installed the drivers in wrong order. Please take the look in the Toshiba installation instruction txt file. In this order you have to install the driver! Its important.
  I think you should install the XP again to ensure the clean registry and then download and install the compatible XP drivers like mentioned in the installation instruction file.
  Good luck

• I have a MacBook Air which has a camera installed in it but it doesn't seem to work for some things like iMovie and my security camera for emergencies. It does however seem to work for Photobooth and facetime. Please write back and help my mac's problems.

  It'd be nice if you could help me with my mac's problems so I can start using iMovie and my security camera again. Thank you too all that answer.
  --JaySwanny

  User Password Reset