Cisco Flex connect related query

Hi,
My Corporate Headquarters has:
1. Cisco 5508 WLC
2. Centralized RADIUS server
A MAC address repository is created in the WLC for MAC address authentication. This includes MAC addresses of users from the Headquarters as well as the remote branch 
offices.
My remote branch offices have:
1. APs deployed in Flex Connect mode
2. Local DHCP server
3. Local RADIUS server
I have 5 SSIDs being broadcasted in the remote branch location from the Flex Connect APs.
SSID1 ----> RADIUS + Certificate + MAC filtering
SSID2 ----> RADIUS + Certificate
SSID3 ----> MAC filtering
SSID4 ----> WPA2-PSK
SSID5 ----> Web Authentication using portal page
The headquarters is connected to the remote branch locations using an MPLS link.
When the MPLS link between the remote location and the headquarters is up, the centralized RADIUS server at the headquarters would be preferred for authentication of 
the users.
In case the MPLS link goes down, which SSIDs would still carter to the users and which SSIDs would stop functioning?
Will SSID1 still work by authenticating new users from the remote location AD server? Or would the authentication fail if the MAC address repository is not reachable.
Will SSID2 work for remote location users? Will the Flex Connect APs switch to authentication using the local RADIUS server?
Thanks in advance.

Similar post:
Go HERE

Similar Messages

  • Cisco Flex Connect and users can not get IP Address by WAN

    Hello my name is Ivan
    I have a wlc 5508 with license base to 50 aps, i use a deployment flex connect. I already registered all my access points, I use web authentication to authenticate users guest, and the service dhcp is in the central site.
    My issue is the users in each remote site, can not get an ip address by dhcp from the central site, they can authenticate in the guest ssid, but any users can not get an ip.
    The request is passing by the wan in this way
    Central Site DHCP - Router WAN - Remote Site - Users with notebooks. I use flex connect central deployment (all the traffic consulting to the wlc) .
    perhaps i should use local deploy? The wlc is in the central site.
    Can you help me to resolving this issue please? , perhaps any advice?
    Regards
    Ivan.

    Thanks Osita
    If I configure Central Authentication and  I configure central switching I need to create a dynamic interafce for each remote site and each dynamic interface associated with a different VLAN ID, because I can not associate a single interface dynamic to the same  VLAN ID, but in my case the client remote in each remote site have the same network segment with the same VLAN ID with the same SSID for guests. My goal is to configure web authentication with the local DHCP server at each remote site, will this work?.Each remote site have its own server dhcp.
    If I configure authentication central authentication with central switching with web authenticacion as I set in my scenario?
    My issues are the interfaces dynamics, because I have the same network to the customer guest with the same ID VLan in each remote site
    Regards

  • Apple (MAC) and Cisco Flex Connection deployments

    Good Morning,
    I have some questions regarding flex connect deployments with environments that are purely Apple (MAC).   The area is about 10,000 sq feet top floor office space in NYC.
    We havea bout 5 access points (unfortunatley vetically mounted) covering this space. The issue wea re having sort of seems like a roaming issue. We lost an AP that was servicing 80% of the cleints which caused all sorts of troubles with clients. They would not connect tot he other APs and would throw "timeout" errors.
    Is there some log I could check to see what might have been going on?
    Is there any recommended deployment guide for Apple (mainly mac book pros etc) environments?
    Any real world suggestions?                

    Good Morning,
    I have some questions regarding flex connect deployments with environments that are purely Apple (MAC).   The area is about 10,000 sq feet top floor office space in NYC.
    We havea bout 5 access points (unfortunatley vetically mounted) covering this space. The issue wea re having sort of seems like a roaming issue. We lost an AP that was servicing 80% of the cleints which caused all sorts of troubles with clients. They would not connect tot he other APs and would throw "timeout" errors.
    Is there some log I could check to see what might have been going on?
    Is there any recommended deployment guide for Apple (mainly mac book pros etc) environments?
    Any real world suggestions?                

  • Cisco ISE with Flex Connect ios 7.4

    Hello my name is Ivan
    I have a question:
    Is possible to do a deployment with cisco ise (trust sec 2.0)  and flex connect and web authentication to a cluster of cisco wlc (ios 7.4)?
    There are a features or requeriments to configure this?
    Regards
    Ivan

    By "cluster of cisco wlc" are you referring to the HA features for the 5508?  HA or not should be irrelevant to the configuration of ISE w/ 7.4 WLC on flex connect.
    Configuring CWA (central web auth) via L2/Mac-Filter and RADIUS NAC will require that you have a FlexConnect group built with the desired AP within the group.  You will need to build FlexConnect ACLs and apply them to the FlexConnect group that correspond with the various NAC states the client will be in during the CWA process. 
    You will probably need 1 or 2 Web Policy ACLs
    1. allow traffic to/from dns and ISE PSN
    2. allow traffic to/from dns, ise and other resources (for instance for posturing/remediation)
    Please note that you cannot "dynamically" assign ACLs to FlexConnect APs/Groups as part of the transition from central webauth reqd to RUN.  The WebPolicies ACLs are the only ones that can override (think of them like pre-auth acls).  Once you finally send back the access-accept for the client you can not apply dynamic acls to the particular wlan/vlan.
    For instance if you needed differentiated access on a single network between guest and vendors, you couldn't send an access-accept back with an ACL for vendors vs an ACL for guests - in a FlexConnect environment.  They would have to be placed on separate networks with their respective access.
    It's possible this type of configuration (much desired) will be allowed in 7.5 whenever it rears its head.

  • Cisco Flex 7500 controller with client disconnects

    Hey All,
    There will be alot of info in this post, hopefully all helpful, more info the better right!  If you require anymore info to help me out to not hesistate to request it.
    We have been having some issues with clients connecting and disconnecting several times a day and having to manually reconnect from the icon on their taskbar. We have about 380 APs, and 200+ more to deploy that we have and are licensed for but are having some issues that we want to resolve first obviously.
    Some locations our setup is a bit more complex than this with multiple SSIDs and vlans, but this issue is everywhere so i will keep it to our simple setup for now:
    AP Models: AIR-LAP1042N-A-K9, AIR-CAP1602I-A-K9 (Most locations do not have a mix of both, most have 1042s)
    Running a single SSID - WPA/WPA2 with: WPA - TKIP and WPA2 - AES on the same SSID. 
    They talk back to a Cisco Flex 7500 Series through a tunnel (should not be any port blocking preventing communication)
    We are running from what i understand a bad firmware version (7.6.100.0) and during our next maintenance window i am going to try and get them to change to a more stable firmware version.
    Data Rates of 1,2,5.5,11 Mbps are disabled
    TPCv1 coverage running
    Automatic Power Assignment
    I will not focus on the a/n/ac network as most of our devices are connecting to WPA due to the config they already have.
    Ideally i would like to get rid of WPA all together but i am not 100% in control of the decisions to get the started and people here like to delay things lol.
    It is hard to say if the issue is specific to a model as we have so few 1602Is, and it is just at our main office.  I have not heard many complaints but i have noticed i will now and then get a limited or no connectivity settings on my wireless icon on my PC.  I use hard-wired so i don't really notice if it is not working.
    In most locations it looks like the controller is doing a decent job at selection channels to use. I did find one spot where it had on 11 APs down a long hallway, and did not use channel 6 once. I statically set that location to stagger the channels to see what kind results we had and am still waiting to hear on that as they complained the most out of all of our locations. In some cases 3 APs in a row were on channel 1 in the hallway, in alot of casses 1 was 2 times in a row as well as 11 so there was alot of overlap.
    I am attaching my show sysinfo and show wlan 17 for that informtion, some of the other settings i have changed today that were previously enabled/set different are:
    Disabled Cisco Aironet IE
    Set channel automatic rescan from 10 mintues to 12 hours as i can image if it is changing the channels alot it can lead to disconnects.
    Some of the main things we get in our message log are:
    *dot1xMsgTask: Oct 16 15:17:36.943: #DOT1X-4-MAX_EAPOL_KEY_RETRANS: 1x_ptsm.c:508 Max EAPOL-key M5 retransmissions exceeded for client 84:85:06:0b:a6:33 
        - Not sure why we get this as we have a PSK and do not have local eap enabled.....
    *apfMsConnTask_6: Oct 16 15:19:01.753: #APF-3-AID_UPDATE_FAILED: apf_80211.c:6570 Error updating Association ID for REAP AP Clientc8:f9:f9:2b:fd:50 - AID 4
    *apfMsConnTask_6: Oct 16 15:19:01.753: #LWAPP-3-INVALID_AID2: spam_api.c:1462 Association identifier 4 for client 18:9e:fc:4d:9e:87 is already in use by 8c:2d:aa:b7:70:5e
        - There is a bug for this log, but according to the bug our 7.6.100.0 is not effected
    Here is my show sysinfo:
    (Cisco Controller) >show sysinfo
    Manufacturer's Name.............................. Cisco Systems Inc.
    Product Name..................................... Cisco Controller
    Product Version.................................. 7.6.100.0
    RTOS Version..................................... 7.6.100.0
    Bootloader Version............................... 7.6.101.2
    Emergency Image Version.......................... 7.6.101.2
    Build Type....................................... DATA + WPS
    System Name...................................... Cisco_cf:17:26
    System Location..................................
    System Contact...................................
    System ObjectID.................................. 1.3.6.1.4.1.9.1.1295
    Redundancy Mode.................................. Disabled
    IP Address....................................... 10.156.50.100
    System Up Time................................... 52 days 5 hrs 54 mins 25 secs
    System Timezone Location......................... (GMT -4:00) Altantic Time (Canada)
    System Stats Realtime Interval................... 5
    System Stats Normal Interval..................... 180
    Configured Country............................... CA  - Canada
    --More-- or (q)uit
    Operating Environment............................ Commercial (10 to 35 C)
    Internal Temp Alarm Limits....................... 10 to 38 C
    Internal Temperature............................. +22 C
    Fan Status....................................... OK
    RAID Volume Status............................... OK
    State of 802.11b Network......................... Enabled
    State of 802.11a Network......................... Enabled
    Number of WLANs.................................. 13
    Number of Active Clients......................... 1584
    Burned-in MAC Address............................ 70:81:05:CF:17:20
    Power Supply 1................................... Present, OK
    Power Supply 2................................... Present, OK
    Maximum number of APs supported.................. 600
    Here is my Show wlan 17
    WLAN Identifier.................................. 17
    Profile Name..................................... AirCCRSB
    Network Name (SSID).............................. AirCCRSB
    Status........................................... Enabled
    MAC Filtering.................................... Disabled
    Broadcast SSID................................... Enabled
    AAA Policy Override.............................. Disabled
    Network Admission Control
    Client Profiling Status
        Radius Profiling ............................ Disabled
         DHCP ....................................... Disabled
         HTTP ....................................... Disabled
        Local Profiling ............................. Disabled
         DHCP ....................................... Disabled
         HTTP ....................................... Disabled
      Radius-NAC State............................... Disabled
      SNMP-NAC State................................. Disabled
      Quarantine VLAN................................ 0
    Maximum number of Associated Clients............. 0
    Maximum number of Clients per AP Radio........... 200
    Number of Active Clients......................... 1768
    Exclusionlist Timeout............................ 60 seconds
    Session Timeout.................................. 28800 seconds
    User Idle Timeout................................ Disabled
    Sleep Client..................................... disable
    Sleep Client Timeout............................. 12 hours
    User Idle Threshold.............................. 0 Bytes
    NAS-identifier................................... Cisco_cf:17:26
    CHD per WLAN..................................... Enabled
    Webauth DHCP exclusion........................... Disabled
    Interface........................................ management
    Multicast Interface.............................. Not Configured
    WLAN IPv4 ACL.................................... unconfigured
    WLAN IPv6 ACL.................................... unconfigured
    WLAN Layer2 ACL.................................. unconfigured
    mDNS Status...................................... Disabled
    mDNS Profile Name................................ unconfigured
    DHCP Server...................................... Default
    DHCP Address Assignment Required................. Disabled
    Static IP client tunneling....................... Disabled
    Quality of Service............................... Silver
    Per-SSID Rate Limits............................. Upstream      Downstream
    Average Data Rate................................   0             0
    Average Realtime Data Rate.......................   0             0
    Burst Data Rate..................................   0             0
    Burst Realtime Data Rate.........................   0             0
    Per-Client Rate Limits........................... Upstream      Downstream
    Average Data Rate................................   0             0
    Average Realtime Data Rate.......................   0             0
    Burst Data Rate..................................   0             0
    Burst Realtime Data Rate.........................   0             0
    Scan Defer Priority.............................. 4,5,6
    Scan Defer Time.................................. 100 milliseconds
    WMM.............................................. Allowed
    WMM UAPSD Compliant Client Support............... Disabled
    Media Stream Multicast-direct.................... Disabled
    CCX - AironetIe Support.......................... Disabled
    CCX - Gratuitous ProbeResponse (GPR)............. Disabled
    CCX - Diagnostics Channel Capability............. Disabled
    Dot11-Phone Mode (7920).......................... Disabled
    Wired Protocol................................... None
    Passive Client Feature........................... Disabled
    Peer-to-Peer Blocking Action..................... Disabled
    Radio Policy..................................... All
    DTIM period for 802.11a radio.................... 1
    DTIM period for 802.11b radio.................... 1
    Radius Servers
       Authentication................................ Global Servers
       Accounting.................................... Global Servers
          Interim Update............................. Disabled
          Framed IPv6 Acct AVP ...................... Prefix
       Dynamic Interface............................. Disabled
       Dynamic Interface Priority.................... wlan
    Local EAP Authentication......................... Disabled
    Security
       802.11 Authentication:........................ Open System
       FT Support.................................... Disabled
       Static WEP Keys............................... Disabled
       802.1X........................................ Disabled
       Wi-Fi Protected Access (WPA/WPA2)............. Enabled
          WPA (SSN IE)............................... Enabled
             TKIP Cipher............................. Enabled
             AES Cipher.............................. Disabled
          WPA2 (RSN IE).............................. Enabled
             TKIP Cipher............................. Disabled
             AES Cipher.............................. Enabled
                                                                   Auth Key Management
             802.1x.................................. Disabled
             PSK..................................... Enabled
             CCKM.................................... Disabled
             FT-1X(802.11r).......................... Disabled
             FT-PSK(802.11r)......................... Disabled
             PMF-1X(802.11w)......................... Disabled
             PMF-PSK(802.11w)........................ Disabled
          FT Reassociation Timeout................... 20
          FT Over-The-DS mode........................ Enabled
          GTK Randomization.......................... Disabled
          SKC Cache Support.......................... Disabled
          CCKM TSF Tolerance......................... 1000
       WAPI.......................................... Disabled
       Wi-Fi Direct policy configured................ Disabled
       EAP-Passthrough............................... Disabled
       CKIP ......................................... Disabled
       Web Based Authentication...................... Disabled
       Web-Passthrough............................... Disabled
       Conditional Web Redirect...................... Disabled
       Splash-Page Web Redirect...................... Disabled
       Auto Anchor................................... Disabled
       FlexConnect Local Switching................... Enabled
       flexconnect Central Dhcp Flag................. Disabled
       flexconnect nat-pat Flag...................... Disabled
       flexconnect Dns Override Flag................. Disabled
       flexconnect PPPoE pass-through................ Disabled
       flexconnect local-switching IP-source-guar.... Disabled
       FlexConnect Vlan based Central Switching ..... Disabled
       FlexConnect Local Authentication.............. Disabled
       FlexConnect Learn IP Address.................. Enabled
       Client MFP.................................... Optional
       PMF........................................... Disabled
       PMF Association Comeback Time................. 1
       PMF SA Query RetryTimeout..................... 200
       Tkip MIC Countermeasure Hold-down Timer....... 60
       Eap-params.................................... Disabled
    AVC Visibilty.................................... Disabled
    AVC Profile Name................................. None
    Flow Monitor Name................................ None
    Split Tunnel (Printers).......................... Disabled
    Call Snooping.................................... Disabled
    Roamed Call Re-Anchor Policy..................... Disabled
    SIP CAC Fail Send-486-Busy Policy................ Enabled
    SIP CAC Fail Send Dis-Association Policy......... Disabled
    KTS based CAC Policy............................. Disabled
    Assisted Roaming Prediction Optimization......... Disabled
    802.11k Neighbor List............................ Disabled
    802.11k Neighbor List Dual Band.................. Disabled
    Band Select...................................... Disabled
    Load Balancing................................... Disabled
    Multicast Buffer................................. Disabled
     Mobility Anchor List
     WLAN ID     IP Address            Status
    802.11u........................................ Disabled
    MSAP Services.................................. Disabled
    Local Policy
    Priority  Policy Name

    As long as you take the configuration backup downgrading from 7.6.100.0 to 7.4.121.0 should be fine. Because this is Flexconnect deployment, make sure you review the release notes thoroughly as config like vlan mapping is impacted it is painful to reconfigure.
    I still think moving to 7.6MR3 & once 8.x get stable going for that code is a good plan. Though 7.4.121.0 is assure wave it does not mean it has no bugs.(remember that prior to this 7.4.110.0 was assure wave & it deferred in quick time) . I would say 8.x going to be the code staying for long time period, so ultimately you have to be there.
    In 8.x there are few FlexConnect improvements,one being AP won't reload when you change from local mode to FlexConnect.
    HTH
    Rasika
    **** Pls rate all useful responses ***

  • CDP nei results and Flex Connect AP vlan mapping behavior

    Hi all,
        We're running controller code 7.4.100.108 and PRIME version 1.3.
        Occassionally, usually as the result of some networking event that causes flex connect AP's to lose connectivity to their controller, the flex connect AP's lose their vlan mapping configuration when they reconnect to their home controller.
        We "think" we have noticed that the cdp nei results are different for AP's that have proper vlan mappings from those that have lost their mappings.  For example, in the below example, only AP's 8213 and 8219 have lost their vlan mapping configs (all the AP's below are flex connect):
    8107   Gig 1/0/45        177           R T      AIR-LAP11 Gig 0
    8106   Gig 1/0/44        163           R T      AIR-LAP11 Gig 0
    8216   Gig 1/0/47        136           R T      AIR-LAP11 Gig 0
    8213   Gig 1/0/48        135           R T      AIR-LAP11 Gig 0.2
    8219   Gig 1/0/46        159           R T      AIR-LAP11 Gig 0.2
    8109   Gig 2/0/48        153           R T      AIR-LAP11 Gig 0
    ...and when the vlan mapping is fixed:
    8107   Gig 1/0/45        177           R T      AIR-LAP11 Gig 0
    8106   Gig 1/0/44        163           R T      AIR-LAP11 Gig 0
    8216   Gig 1/0/47        149           R T      AIR-LAP11 Gig 0
    8213   Gig 1/0/48        149           R T      AIR-LAP11 Gig 0
    8219   Gig 1/0/46        152           R T      AIR-LAP11 Gig 0
    8109   Gig 2/0/48        153           R T      AIR-LAP11 Gig 0
         I've done some reading to try to understand the details of the "Port ID" field of cdp neighbor with AP's but haven't found my answer.  I want to know what the significance of the difference between "Gig 0" and "Gig 0.2" is.
         I'm going to lab up an AP and see if I can replicate the behavior and confirm that it is related to the vlan mapping, but haven't gotten to it yet.   If anyone can point me to the nuts/bolts behind that sublte change in "Port ID" it'll help.
         By the way, I'm interested in this problem so that I can quickly identify which of my hundreds of flex connect AP's have lost their vlan mappings after a network disruptive event.  I can't find an interesting report in PRIME that will let me see it quickly.  So if a scriptable cdp nei command could identify the problem as well, that would be interesting.
         Thanks in advance for the help.

    I also have created WCS/NCS/PI templates to push the WLAN to vlan changes in the early morning just I'm case. When users start complaining, it's faster to just push out the commands to all than trying to find what AP lost its vlan setting.
    Sent from Cisco Technical Support iPhone App

  • Cisco Webex Connect Jabber 7.2.2 History Missing

    Running Cisco Webex Connect 7.2.2 on W7 x64.
    Anyone run into chat history missing or only showing 1 day of chat when you know that you shoud have weeks and weeks with certain persons?  Default is 9999 days.  Had someone ask me to start CWC as administrator and set to some other value, like 9998 days.  Worked for a while and resurfaced.  Other peers having same issue, so I know it is not specific to my machine.  Even got new machine recently with same OS and CWC and problem has surfaced on this new machine too.
    I saw that the chat is stored in a db3 file.  I do find a couple of those on my machine but not sure if the client is buggy or the file truely is missing the chats.  Would need a dBase III browser to find out more.
    Is there a more current release of CWC 7.2.2 that might have bug fixes in it that relate to chat history being toast?
    Would love to hear from others in here including Cisco support.

    Joe,
    I normally do not monitor this side of the community, but I am active contributor of the Unified Computing Forum, but somehow I happen to come accross your post, so I wanted to take a minute and ask you if you have tried to open a case directly with the team that support Webex? 
    http://www.cisco.com/en/US/prod/ps10352/webex_technical_support.html   <<< Look for "Sign in to contact support." on the right
    I hope that helps.
    -Kenny

  • Flex connect with a per user ACL with APs locally switched

    Hi all,
    Does flex connect allow a per user ACL to be downloaded to the session with local switched, central authentication? We are using ISE for the central policy engine and have setup dACL for wired but am about to embark on WLAN. The controller is a 5508 and the. APs are 3700's.
    Second question- if the flex connect APs don't do any form of per user ACL, the other option is to have the units in regular mode where they are both centrally switched and centrally authenticated which I understand to support a per user ACL. Our WAN links are between 10mbps - 30mbps and the most latency would be around 40ms. Will this cause issues at all with the size WAN links and latency?
    Thanks
    Sent from Cisco Technical Support iPad App

    Well you are running v7.6 so FlexConnect per user radius ACL's are supported per this doc since v7.5.
    http://www.cisco.com/c/en/us/support/docs/wireless/5500-series-wireless-controllers/112042-technote-product-00.html#anc9
    As far as WAN latency, 200ms is good, but it depends in your WAN utilization now and how many AP's you plan on installing and the increase in wireless traffic across your WAN. There is a minimum requirement, but it's up to you in the end to make sure you have enough bandwidth or else you will need to QoS the capwap traffic to ensure the APs don't bounce from connected to stand alone.
    Sent from Cisco Technical Support iPhone App

  • Error 2123 When Saving Media Prioritization Settings in Cisco Cloud Connect

    There are several features that don't work and are returning errors.  For starters, when trying to save settings for media/device prioritization I am receiving a 2123 error message.  Unable to save settings.  EA4500/N900 Router, Cisco Cloud Connect.
    Timothy G. Slazyk

    tslazyk5894 wrote:
    For the record, I was unable to update the firmware automatically with the application.  I had to update the firmware manually and that worked fine.  I doubt my issues are related to a bad installation.  I believe it is a code issue.  Please help resolve media/device prioritization issue.  Thanks.
    As a workaround, try to reset the media prioritization settings on the router then check again, http://kb.linksys.com/Linksys/ukp.aspx?vw=1&docid=9bf7b6e25b984839aecbff2fcbd8c20e_How_to_reset_the_.... If it's still the same reset the router manually by pressing  the reset button for a like 30 sec so to ensure the new version of the firmware will be installed properly.

  • CONNECT BY query performance resources for 10.2

    I couldn't find any relevant resource, I am planning to use hierarchical sql option on a mass of data so any kind of advice, hint or resource to read especially related to indexing, partitining benefits to CONNECT BY query will be appreciated
    Thank you.

    The best place is to look in the documentation... (http://www.oracle.com/pls/db102/search?remark=quick_search&word=connect+by&tab_id=&format=ranked)
    Performance is not just black and white, but will depend on many factors, so without knowing your data or what you are trying to achieve and without you having tried to produce some queries and provide explain plans and traces, we're not going to be able to give any specific advice.

  • Cisco Unity Connection cluster issue

    Hello,
    I have a Cisco Untiy Connection cluster of two servers, one publisher and one subscriber.  They are running software: 7.1.3ES43.33034-43.  Yesterday at about 8:43 I lost connection to the subscriber server.  I could still ping it but was unable to get to it via GUI nor SSH.  I spoke to TAC yesterday and they told me to simply reboot the server.  I was a little concerned about this because I don't want to cause some kind of split-brain effect.  I work in a hospital and it is imperative that the voicemail system stay up.  My only other option would be to do this at 4:00 am on a Sunday.  Any suggestions?
    Thanks

    Hi David and all,
    we have a unity connection 9.x pair. after an IP address change on the subscriber we are getting the error message:
    ‘Communication is not functioning correctly between the servers in the Cisco Unity Connection cluster’
    Both servers respectively show its own status as a publisher but lost communication with the other server (if we check cluster management from either server).
     show tech network hosts – displays correct info.
    show perf query class "Number of Replicates Created and State of Replication"
    ==>query class :
     - Perf class (Number of Replicates Created and State of Replication) has instances and values:
        ReplicateCount  -> Number of Replicates Created   = 603
        ReplicateCount  -> Replicate_State                = 2
    On both servers the replication is showing as 2 – so its good.
    Various reboots have been done, services are up and working and there are no firewalls between server’s .
    Any advice appreciated.
    TIA…Jeff

  • Cisco Unity Connection 8 Hardware Requirements

    Hello,
         I've checked the supported servers page for a Cisco Unity Connection 8 server at http://www.cisco.com/en/US/prod/collateral/voicesw/ps6790/ps5748/ps378/prod_brochure0900aecd8062a4f9.html but need some advice. I need a server for a test lab (less than 50 users) but some of the servers listed on that page are no longer sold. I spoke to a HP rep and he told me they don't keep an updated list of certified servers, so I was hoping someone could tell me, as an example, an HP DL320 G6 is supported for this setup. It doesn't have to be that particular server, just one within that price range and hardware. If anyone has an updated supported server list that would be great too. Or, even better, if an example of a server you're currently running on would be great as well. I just want to make sure we don't purchase a server that is incompatible for something hardware related - the documentation for supported servers out there seems a bit out of date.
    Thanks for your time,
    Ed

    You really should be looking at the CUC documentation and not to the CUCM doc
    Cisco Unity Connection 8.x Supported Platforms  List
    http://www.cisco.com/en/US/partner/docs/voice_ip_comm/connection/8x/supported_platforms/8xcucspl.html
    HTH
    java
    If this helps, please rate
    www.cisco.com/go/pdihelpdesk

  • Error during upgrading Cisco Unity Connection to SU2

    Help!
    I'm facing an error while upgrading Cisco Unity Connection 8.5.1.10000-26 to SU2 (8.5.1.12900-7). 
    When it's trying to download the SU2 file (UCSInstall_UCOS_8.5.1.12900-7.sgn.iso ) to Unity Connection after 2GB I get this error:
    Error encountered: Upgrade has detected that the ISO file name has been changed from the original name. This is not allowed. MD5 Hash Value: 32:32:db:47:99:48:c6:53:12:e2:78:76:94:90:a4:1d
    I tried this from multlpe FTP servers and I downloaded the SU2 file multlpe times assuming the download was bad.  I also rebooted the Unity Connection server here and there assuming it was something with the server.
    I first tried SU1, but that gave the same error, so I attempted to go with SU2.
    Any ideas for resolving this?
    Thank you!
    -rya

    Hi Rya,
    OK...well you've certainly done your due diligence here
    Did you run an MD5 check after the download to compare the file values?
    I had a long look for bugs related to this issue and came up empty so I can't see
    a bug being the cause of the issues here. Is it possible for you to try "burning" the
    upgrade .iso to a DVD and trying again?
    I am also curious why you wouldn't move straight to 8.5(1)SU4
    Cheers!
    Rob
    "Show a little faith, there's magic in the night" - Springsteen

  • AP Flex-connect VLAN mapping auditing

    I am trying to find a way to conduct auditing for VLAN mapping for AP in flex-connect mode.
    I have seen the mapping changed due to AP reboot or other reasons untill the user reporting connection issues. I have looked NCS, and have not found a reporting function for this. Anyone uses script to do so?

    I also have created WCS/NCS/PI templates to push the WLAN to vlan changes in the early morning just I'm case. When users start complaining, it's faster to just push out the commands to all than trying to find what AP lost its vlan setting.
    Sent from Cisco Technical Support iPhone App

  • Single Corporate SSID + Single Guest SSID across 200 sites over VPN with Flex Connect

    We have two main sites (East Building as DR + West Building as BDR) + 100 remote sites / all connection between the sites based on VPN / OSPF
    East building has 1 WLC 5508 with a license of 500 AP
    West building has 1 WLC 5508 with a license of 500 AP
    50 remote sites in East
    Each East remote site have 5 AP (AIR-LAP1142N + AIR-CAP2602I)
    Total AP in all the 50 remote site in East is 250 AP
    50 remote site in West
    Each West remote site have 5 AP (AIR-LAP1142N + AIR-CAP2602I)
    Total AP in all the 50 remote site in West is 250 AP
    Hardware available are:
    2 * WLC 5508
    2 * ACS 5.2
    Most of the switches that connect to the AP are 2960G
    All the AP are
    AIR-LAP1142N-E-K9
    AIR-CAP2602I-E-K9
    Requirements in Brief:-
    1 SSID for Internal user across all the sites
    1 SSID for Guest user across all the sites
    All IP for all the sites based on their local subnet
    All the remote sites need to be Flex connect
    The 2 WLC need to configure as failover
    Requirements in Details:-
    One Corporate ABC-SSID for all the sites
    One Guest ABC-SSID for all the sites
    The WLC in East building is the primary which control all the East remote site (250 AP)
    The WLC in West building is the secondary which control all the West remote site (250 AP)
    A fail over between the two WLC as below:
    If the WLC in east fail then all the AP in east (250 AP) will connect to WLC in West
    If the WLC in West fail then all the AP in west (250 AP) will connect to WLC in East
    Each Remote site behaving as Flex connect to reduce the overhead over the WAN/VPN
    Each site must have their own AP groups for the ease of management
    All the AP MGMT IP based on their local subnet
    Each remote site, West building, and East building must obtain their IP based on their local VLAN Example:- site-1 in East:
    Corporate ABC-SSID take 10.204.0.0/24
    Guest ABC-SSID take 192.168.0.0/24
    Example:- site-2 in East:
    Corporate ABC-SSID take 10.204.1.0/24
    Guest ABC-SSID take 192.168.1.0/24
    Example:- site-3 in East:
    Corporate ABC-SSID take 10.204.2/24
    Guest ABC-SSID take 192.168.2.0/24
    And so on…….
    Example:- site-1 in West:
    Corporate ABC-SSID take 10.204.100.0/24
    Guest ABC-SSID take 192.168.100.0/24
    Example:- site-2 in West:
    Corporate ABC-SSID take 10.204.101.0/24
    Guest ABC-SSID take 192.168.101.0/24
    Example:- site-3 in West:
    Corporate ABC-SSID take 10.204.102.0/24
    Guest ABC-SSID take 192.168.102.0/24
    And so on…….
    Reference that I found
    https://supportforums.cisco.com/thread/2039215
    Expert I'm really stuck here, so please any help will do.
    Thanks in advance

    What are you stuck on? What you have mentioned is possible.
    When you setup FlexConnect and also when AP's night failover, you need to make sure that the WLAN ID are in the same order in bother WLC's. also the AP Groups have the same information and have the same AP Group names and WLAN to vlan mapping. So as long as the WLC's are configured exactly the same except for IP addresses and hostname a, failover for FlexConnect will work fine.
    Now the FlexConnect WLAN to vlan mapping is done on the access point itself. So each AP will have to configured. AP Groups will not help here as you can really just create one since you will have the same WLAN's broadcasting at each site. You can make is simple though:) and this is a good tip.....
    If all your vlans are the same in every site including your DR and BDR, then the WLAN to vlan mapping will use the vlan if you have specified in the the WLAN under the I terrace mapping. So if in your corporate WLAN it is mapped to I terrace vlan 100, all you FlexConnect AP's will have that mapping set to vlan 100. If your guest at WLAN is mapped to vlan 999 interface on the WLC then the FlexConnect WLAN to vlan mapping for the guest will be set to vlan 999.
    Now if you have different vlan id's for each site or it might be the same for some and not the others, well you will have to tough each AP and configure the WLAN to vlan mapping.
    The WLAN to vlan mapping appears only when you have enabled FlexConnect local swit hung in the WLAN and you have the access point in FlexConnect mode.
    Sent from Cisco Technical Support iPhone App

Maybe you are looking for

  • Transfer of Adobe Photoshop Album Starter Edition 3.2

    I am advised to transfer my Photoshop Album Starter Edidtion 3.2 to Elements.com. I have maintained this Album for years with many tags per photo and dates. What happens if I transfer this to Elements.com? will all the tags and dates remain with each

  • Help please:    Newbie.   Just downloaded AE CC 2014.   How to use a camera while at the same time "previewing" a scene?

    When trying to preview a composition in 3d (like you see when people are doing tutorial videos), whenever I click on the preview  (whilst attempting to move the camera around in the scene to preview it), the preview stops  (due to clicking the mouse

  • Export To Flash in Encore CS4 on the Mac

    It has been widely reported (and I have confirmed) that Encore CS3 will not Build to Flash on a Mac running Leopard 10.5.5 and Quicktime 7.5.5 (the latest versions of Mac OS X and Quicktime). I would be most appreciative if anyone who has received En

  • Creating an online poll

    I have Dreamweaver CS4. . . is it possible to use dreamweaver to create and online poll? I know NOTHING about programming beyond html. If not, do you know of any online tutorials where I can learn how to make an online poll?  Not sure what language i

  • How do I upgrade trial to full version

    Hi - I downloaded the LiveCycle Designer trial and now have ordered the full version  How do I enter my new serial number?  If I have to uninstall the trial, how do I make sure to take all the files out properly so I can install the full version?