CAR REDUNDANCY (CISCO ACCESS REGISTRAR)

Similar Messages

• Cisco Access Registrar (CAR) UserList, dashboard status unavailable

  Hello, all,
  I need help. I am observing weird problem with Cisco Access Registrar cluster workin on MySQL cluster. I do not see any users or sessions in the GUI dashboard or in the CLI stats.
  Environment:
  Master/Slave replicated CAR cluster on RHEL 5 32-bit servers
  CAR version: 5.0.0.8
  RHEL version: Linux version 2.6.18-164.el5PAE ([email protected]) (gcc version 4.1.2 20080704 (Red Hat 4.1.2-46)) #1 SMP Tue Aug 18 15:59:11 EDT 2009
  MySQL version: 7.1.15-1 ndb cluster
  ODBC sessions are working properly. Users from BRAS are being provisioned, at the moment I have about 20 users logged onto the network, authenticated and authorized. However, I do not see any users in the Dashboard's userlist, nor do I see any sessions although some surely exist. In the CLI, when I try to count sessions I see:
  --> count-sessions /radius all
  No active sessions found in /Radius/SessionManagers
  In the GUI, there are no sessions nor users shown, there is none listed. I have been checking logs and traces, but to no avail, I do not see any misconfiguration hint or other clue that would indicate problems with configuration.
  Please be so kind and look at my issue. I am aware that there was similar bug that has not been fixed yet, as listed here:
  http://www.cisco.com/en/US/docs/net_mgmt/access_registrar/5.1/release/notes/51relnot.html#wp321968
  CSCte77779
  In GUI, user session graph is not getting plotted with more sessions in database.
  Symptoms: In GUI, user session graph is not getting plotted with more sessions in database.
  Conditions:
  This occurs when you:
  1. Install Cisco AR server.
  2. Send a valid request.
  3. Create a million session.
  4. Launch GUI.
  Workaround: None.
  however, my problem seems a little bit 'expanded', since I cannot see either userlists through GUI or CLI (and I KNOW that there is tens of thousands of users in the MySQL database), nor I can see any users or sessions listed neither in GUI nor in CLI.
  I have been sniffing MySQL requests towards the sql (odbc) server, but I have not noticed anything relevant for querying for UserList, nor have I noticed any other queries except when authenticating users. Accounting logs are being collected properly, though.
  Thanks for all and any that spared time to read this, and if possible, help me solve my problem. If you need more details on my problem/environment, please ask.
  Best regards
  Luciano

  Hello, all,
  I need help. I am observing weird problem with Cisco Access Registrar cluster workin on MySQL cluster. I do not see any users or sessions in the GUI dashboard or in the CLI stats.
  Environment:
  Master/Slave replicated CAR cluster on RHEL 5 32-bit servers
  CAR version: 5.0.0.8
  RHEL version: Linux version 2.6.18-164.el5PAE ([email protected]) (gcc version 4.1.2 20080704 (Red Hat 4.1.2-46)) #1 SMP Tue Aug 18 15:59:11 EDT 2009
  MySQL version: 7.1.15-1 ndb cluster
  ODBC sessions are working properly. Users from BRAS are being provisioned, at the moment I have about 20 users logged onto the network, authenticated and authorized. However, I do not see any users in the Dashboard's userlist, nor do I see any sessions although some surely exist. In the CLI, when I try to count sessions I see:
  --> count-sessions /radius all
  No active sessions found in /Radius/SessionManagers
  In the GUI, there are no sessions nor users shown, there is none listed. I have been checking logs and traces, but to no avail, I do not see any misconfiguration hint or other clue that would indicate problems with configuration.
  Please be so kind and look at my issue. I am aware that there was similar bug that has not been fixed yet, as listed here:
  http://www.cisco.com/en/US/docs/net_mgmt/access_registrar/5.1/release/notes/51relnot.html#wp321968
  CSCte77779
  In GUI, user session graph is not getting plotted with more sessions in database.
  Symptoms: In GUI, user session graph is not getting plotted with more sessions in database.
  Conditions:
  This occurs when you:
  1. Install Cisco AR server.
  2. Send a valid request.
  3. Create a million session.
  4. Launch GUI.
  Workaround: None.
  however, my problem seems a little bit 'expanded', since I cannot see either userlists through GUI or CLI (and I KNOW that there is tens of thousands of users in the MySQL database), nor I can see any users or sessions listed neither in GUI nor in CLI.
  I have been sniffing MySQL requests towards the sql (odbc) server, but I have not noticed anything relevant for querying for UserList, nor have I noticed any other queries except when authenticating users. Accounting logs are being collected properly, though.
  Thanks for all and any that spared time to read this, and if possible, help me solve my problem. If you need more details on my problem/environment, please ask.
  Best regards
  Luciano

• Cisco Access Registrar 5 : What design or requirements for active/ active deploiement

  Hi Every one
  I want to install Cisco Access Registrar 5  on two different servers in active/ active design
  What design or requirements for active/ active deploiement ?
  Using Sun Solaris ? (i know using sun Sloaris i can have this mode of high availability BUT I PREFER INSTALLING IT ON  RED HAT ENTERPRISE )
  Using RED HAT ENTERPRISE on the two servers  ?   i wan to knew if i must use Vmware with the adequate licences (Vcenter) to provide FT fonctionnality for active / active Design ?
  How i can use the replication   to provide a complet active / active Design ?
  Cordialement
  Zammit Ikbel

  It depends what functionalities you want to use on CAR.
  For example:
  If only plain authentication is needed, you can install two servers independently and just configure replication between them (they just need IP visibility to replicate configuration). NAS clients can contact servers in  round-robin or you can share load on two servers in some other way.
  If you want CAR to perform session management and dynamic IP address allocation, than you need some cluster solution, as two servers must have synchronized state of sessions and consistent administration of addresses allocated from a pool.
  Best regards,
  Jasmina

• Cisco Access Registrar ODBC connection

  I have enabled 8 ODBC connections for my accounting packets in CAR 4.1.2 and they are not utilized falling into a lot of ODBC timed out. I have played around with the timeouts but no result.
  What is you ideas?

  Cisco AR supports Open Database Connectivity (ODBC), an open specification that provides application developers a vendor-independent API with which to access data sources. Cisco AR provides a new type of RemoteServer object and a new service to support ODBC. You can use Cisco AR to authenticate and authorize access requests by querying user information through ODBC.
  http://www.cisco.com/en/US/products/sw/netmgtsw/ps411/products_user_guide_chapter09186a008043fd38.html

• Access Registrar Prepaid Configuration

  I need to configure CAR 3.5.2 for prepaid users or services.
  How can I set cisco-ssg-control-info attribute to control time or volume quota? (What is the notation for this configuration?)
  Is there any other way to configure access registrar for prepaid users? I just want to disconnect users when their quotas is over.
  (I am working in a project for 312 hot spot locations using wireless technologies. In the center of our solution includes SSG, SESM and CAR)

  The AR prepaid solution is designed to work with a billing server. The billing server holds the subscriber quota information and allocates quota. AR converts the RADIUS prepaid requests from the RADIUS client, in this case SSG, into requests the billing server can understand.
  To do this, a prepaid AR 'service' must be written to provide the AR/billing server integration. This is typically done by the billing server vendor. Cisco provides the billing server vendor with API information to write the AR service.

• Connection of LC/APC fiber patch cords to Cisco Catalyst 6500 $ Cisco Access 3750 Switches

  I have an LC/APC fiber patch cord infrastructure and I want to connect it to Cisco Catalyst 6500 & Cisco Access 3750 Switches. what type of transceiver should be used?
  I read a note on Cisco website stating the following for Cisco SFP+ transceivers:
  Note: "Only connections with patch cords with PC or UPC connectors are supported. Patch cords with APC connectors are not supported. All cables and cable assemblies used must be compliant with the standards specified in the standards section"

  Thank you,  but my question is that I have a single mode fiber patch cord with LC/APC connector while cisco stating a note that only use LC/PC or LC/UPC type of connectors with SFP+ transceiver.  
  So what type of transceiver should I use to connect LC/APC patch cord to cisco switches?  Is there another type or SFP+ still can be used? 

• Which Cisco Access Point is Waterprof ? (outdoor:BR1300 + AIR-ANT24120)

  hi,
  My questions to the community :
  i have to choose for a customer some 50 Access points but that must have an external antennas with at least  8 dbi as gain and to be waterprof
  for me the BR1300 + AIR-ANT24120 is a good choice if the BR1300 is Waterproof (For me :normaly all Cisco Access Point Outdoor must be WaterProof : but i want to have a confirmation with a document if possible )
  and it's interessant to knew ,which Cisco Access Point is Waterproof ?
  Think you All !
  Zammit Ikbel

  the 1310 is going to be waterproof, as is the 15xx product line, (152x and 155x).  All this can be found in the data sheet for the AP.
  That being said, you can also put any of the external AP into a NEMA enclosure, and have it be waterproofed, so long as the enclosure is rated as such.
  HTH,
  Steve

• How to clear the dhcp leases in Cisco Network Registrar

  Hello,
  I have a setup with Cisco Network Registrar. We have a few scoops with the lease time set to forever. Now I want to reconfigure the scoops to have a 24h hour leasetime. But before this I would like to clear all the current leases. I have problems doing this. I have tried to delete the scoop and then create a new but the old leases is still there. Does anyone have any ides?

  I did not get it to work. I had to delete each lease in the subnet manually. I suggest you use the batch command to do it.
  Just go to the local/bin folder where the cnr is installed and issue the following:
  nrcmd -N username -P password -b <"PATH TO FILE"
  Just make a textfile with the commands you want to run as a batch like:
  lease 10.28.4.1 force-available
  You need to do one row for each ip.

• Can cisco MSE(mobility service engine) configured to work with non-cisco access points?

  I understand that access points can be configured to forwards all the probe requests to cisco wifi controller. cisco MSE(mobility service engine) gets the probes from wifi controller to find the location of the mobile devices.
  My question, can cisco MSE(mobility service engine) be configured to work with non-cisco access points?

  No and the reason why is the NMSP communication from the MSE to the WLC. Other vendors don't support this so there is no communication happening.
  -Scott

• Blackberry Z10 connection with an Aironet Cisco Access Point 1200

  Hi everybody,
  I'm trying without success a connection between a Blackberry Z10 and an Aironet Cisco Access Point 1200.
  We have no BB Server, we would like just to connect the WIFI.
  I've checked this points during the activation of the device:
  There's no LEAP protocolle.
  There's an EAP-Fast possibility.
  There's Mac Address recognition possibility.
  When we try to use the EAP-Fast possibility, we generate a .pac file, but i don't know where i can put this file so that the Blackberry recognize this file. I've search the whole day and didn't find anything... there's simply no explanation with the Z10 around the .pac file without a BB Server.
  I've try the Mac Address recognition and it simply doesn't work (no error the search time is too long)
  Every other older smartphones - Blackberry (there's 4 devices) are working.
  Anyone have an idea about? a suggestion? a list of compatible WIFI Devices?
  Thank you ahead.
  Have a nice day.
  Joel.

  Sorry i don't understand your answer.
  I'm not a developper but a system administrator.
  I just would like to use a Balckberry Z10 with our Wifi/Router Aironet Access Point 1200.
  not more.
  Best regards,
  Joel

• Configuring Cisco Access Points 1602i Air-SAP-1602I-Z-K9

  Hi everyone,
  I am having touble configuring cisco access points 1602i. I have configured them and they are broadcasting SSID and clients are able to connect to them, but the only thing which is troublesome is speed. I have 100Mbps bandwidth speed but at access point I am getting speed between 17 to 25. Can anyone please tell me where I am gone wrong.
  I have Juniper Srx210 configured as backbone for providing internet on fiber. Then further I have attached one POE switch (managable). From that switch I have attached 4 access points.
  One more thing,two ports of Juniper is configured as Vlans, one for staff and one for students. I have attached this POE switch to Student Vlan, but haven't configured ports of POE switch as trunk. Please tell me do I have to configure ports as trunk on POE Switch. Is this the cause of slow bandwidth over access points.
  I am also planning to go for Wlan Controller to manage Access points. When I contact my supplier about it, told me the following:
  "You just need to convert the Access points to autonomous mode. Here are    some details, there is no additional charge."
  https://supportforums.cisco.com/message/3889653
  http://www.cisco.com/en/US/docs/wireless/access_point/conversion/lwapp/upgrade/guide/lwapnote.html#wp160918
  http://www.youtube.com/watch?v=QQ_NuxdRhQ4
  https://supportforums.cisco.com/docs/DOC-14960
  I looked at the links but couldn't understand properly. Then I searched over the internet  and found out that
  "a cisco autonomous access point basically runs on its own while a  lightweight access point uses a centralized device called a wireless lan controller to get its configuration.  autonomous access points are managed  individually, while the lightweight access points can be managed centrally.  also, the switchport configurations to support both types of access points will  differ. "
  I didn't understand, why he suggested to go for Wlan controller and to upgrade access points to autonomous mode, when according to above finding, it says that autonomous access points runs individually.
  Please advice.
  I shall be thankfull

  Hello Scott and Leo,
  Thanks for all your help.
  I have managed to install and configure 4 Access points and Now Access points are giving speed between 25 to 45Mbps. Still not enought but it sloving the purpose. Everyone is enjoying their face book. I will soon get the Cisco Wlan Controller as well. I dont know if there is a way to get more speed from these access points. I am ready to buy more equipments if required.
  Anyway, today I need your guys expretise once again. As you know Junipr Srx 210 is configured for fiber internet to provide internet services to school. Now we are changing the building and transfering the line to new building. This time I want to use Cisco router in place of Juniper Srx210. But I need to know what model will support the current configuration for fiber. Would you please tell me what model/series router will be suitable for fiber internet and for implementing other restrictions.
  I am attaching a picture of current jiniper Srx 210 for your consideration.
  I shall be very thankfull to you
  Sarabjit

• PPPoE on Cisco Access Point

  Hi, Im looking for possibility to configure Cisco Access Points for PPPoE and VPDN anybody knows pls reply to [email protected] tks

  I think it is possible to configure AP to fucntion over PPPOE. But since AP is just a layer2 device, we also need a layer 3 device like router to support PPPOE. Without layer 3 device, it is not possible.

• AP1262 bridge to Non-Cisco Access Point?

  I would like to use a Cisco AP1262 in a mobile command vehicle to bridge to any WiFi Access Point that I know the SSID and Pasword to.  Will the 1262 Bridge to a Non-Cisco Access Point?
  If so, any assistance in finding an example configuration would be appreciated.
  Thanks,
  Brian

  Hi Brian,
  Yes, you can configure 1262 as Universal Workgroup bridge where it will associate to any cisco or non-cisco root AP. You can only connect one wired client behind universal WGB.
  You just need to configure "station-role workgroup-bridge universal <wired_client_MAC>" under radio interface of WGB. (1262)
  Something similar should work for your 1262, if you want it in 5GHz, otherwise configure radio 0 interface for WGB
  hostname WGB
  dot11 ssid <SSID-NAME>
     authentication open 
     authentication key-management wpa version 2
     wpa-psk ascii <PASSWORD>
  interface Dot11Radio1
   encryption mode ciphers aes-ccm
   station-role workgroup-bridge universal 068d.098a.d422 <- Ur wired MAC
   ssid <SSID-NAME>
   bridge-group 1
  interface GigabitEthernet0
   bridge-group 1
  NB: I haven't tested this, so you  have to test & confirm. If WPA2/AES is not supported then you may need to choose suitable security protocol & encryption mechanism.
  HTH
  Rasika
  *** Pls rate all useful responses ****

• Cisco Access Points Rebooting

  Has anyone experienced a Cisco Access Point reboot itself, on it's own?

  7 out of 17 are rebooting... but it's not isolated to one IDF it's different spots within the building.i will check the log in flash.
  Hmmmmm ... And if you do a "sh version" to everyone of them it comes up saying something like "by power-on"?
  If this is the case, you may also want to consider the copper cables between your Injector and your AP. 

• PPPoE and VPDN config. in Cisco Access Points

  Hi, Im looking for possibility to configure Cisco Access Points for PPPoE and VPDN anybody knows pls reply to [email protected] tks

  I can only comment on the wireless voice side. Phones will be setting the Qos (Cos and ip precedence) you will need all the devices in the network to understand these QoS and act apropiately, prioritizing voice over other data.
  If you can't guaratee that all devices that the voice will cross will maintain those Cos/dscp settings and will prioritize the voice, you can't guarantee how the voice quality would be.