Duplicating wlans on backup controller

We have inherited a 5508 controller running 7.0 code and WCS running 7.0 code. This site did not have a backup controller. So we have installed a wism as a backup controller. The problem is no one can seem to remember the pre shared keys for the wlans on the primary controller. Can I use WCS to duplicate the wlans to the secondary controller and have the psk copied?
Sent from Cisco Technical Support iPhone App

Eric,
Just as Scott mentioned you can get the PSK from the PCs the users connect from. Many supplicants allow you to view the shared string in plain text.
If you pushed the psk WLAN template to the original WLC from the WCS and the WCS still has the same template with the same PSK then it is possible to publish the same template to the backup WLC. Otherwise you can not.
HTH
Amjad
Rating useful replies is more useful than saying "Thank you"

Similar Messages

  • Backup Controller cannot mount XSAN Volume

    Hi Guys,
    I've really have a big problem regarding the XSAN that I've just setup: There are 3 Xserves connected to the SAN - one for the main controller, one for backup and another one for fileserver. After a fresh install of the Leopard Server 10.5.6 on all servers and fresh install of Xsan 2.0 updated to 2.1.1, I tried creating an SAN from the main controller, I added first the main and backup controllers, authenticated them properly and was successful adding them to the SAN. After this, I created the volume and it mounted properly on the main controller. What I don't understand is that whenever I try to mount the volume to the backup controller, it is saying unable to mount and even I tried forcing it to mount in terminal using the command xsanctl mount VOLNAME, its giving me an error saying
    "unable to mount volume, Cannot mount XSAN volume error code: 5"
    What is that error message? When I tried typing cvadmin to the main controller, it only gave me this message:
    Main Controller:
    File System Services (* indicates service is in control of FS)
    1>*XSAN[0] located on 10.0.0.101:49930 (pid 317)
    Select FSM "XSAN"
    When I type the same cvadmin to the backup controller, it gave me this message:
    Backup Controller:
    File System Service (* indicates service is in control of FS)
    1> XSAN[1] located on 10.0.0.102:50384 (pid 331)
    No FSSs are active
    Select FSM "none"
    What is happening? both servers are having a DNS name. Before I created the SAN, from the authenticate window, the server name is just the IP address of the Ethernet 0 (first ethernet port). Now whenever I fire up Xsan Admin, both controllers are now offline and if you authenticate them, the server name info suddenly changed from IP address to a DNS Name (e.g. from 194.170.34.12, changed to hct-mdc.ad.hct.ac.ae) which even if I type my admin username and password cannot authenticate saying "server not found in network"
    I really don't know now what to do and they need to fix the issue asap.
    I would really appreciate your help guys!
    Thanks.
    jantoniophi

    Hi,
    I am accessing this WS via ARD, so public LAN is definitely there. I have not connected the "Xsan" network (but it should be no problems communicating the Xsan traffic over this single LAN connection).
    With the firewall, the situation is more strange. When I try to open the Firewall settings on Sharing, there is a dialog "Other firewall software is running on this computer." I googled this and it seems that this was a common problem on 10.3. They suggest to delete com.apple.sharing.firewall.plist file but it is not there on 10.4.
    "sudo ipfw list" shows this:
    00001 allow udp from any 626 to any dst-port 626
    65535 allow ip from any to any
    Any ideas on how to make Firewall behave as expected? I will try to reinstall if I don't receive a reply.
    Thanks.

  • How to create WLAN ID in Controller 4402

    Please let me know the procedure to create WLAN ID in controller 4402

    Hi Balamurugan,
    I don't want to sound rude, but, you have posted your issue three times.  Each one, I recommended that you go through the WLC Configuration Guide.  I recommended this because you are new to WLC and it's the best way for you to learn.
    However, you recent post has led me to believe that you are reluctant to peruse the document and I am puzzled.  Is there any reason of your reluctance and hesitance?
    Cisco Wireless LAN Controller Configuration Guide, Release 6.0
    http://www.cisco.com/en/US/docs/wireless/controller/6.0/configuration/guide/Controller60CG.html

  • RRM and backup controller

    Hi all,
    Got a quick question on RRM.Suppose we have 2x5508s where one controller is acts as dedicated backup controller.There is no requirement for L3 roaming and therefore, mobility group feature will be disabled.My understanding is that as mobility group is disabled, there is no other way for the backup controller to obtain RRM specific info from the primary controller. Therefore, I believe we need to configure a separate RF group on each controller  and configure identical RRM settings so when the APs failover, affects on RRM would be minimal.Any advice on recommended way of performing RRM?
    Thanks,
    J

    Hi Bbixe,
    Many thanks for the clarification
    I got another question,with regards to RRM is there a benefit of monitoring country specific channels ?This is the Cisco default on the WLC.
    Woudn't  you be better off to configure monitoring only for DCA  channels?
    Thanks,
    J

  • How can I get my computer to recognize its duplicated Time Machine backup

    I used Disk Utility to duplicate (restore) a Time Machine BU from a 1TB Western Digital to a 2TB WD drive. It worked liked a charm in a fraction of the time of my earlier attempts using the finder to transfer the BU.
    However, I am now having trouble with the computer (2012 MacBook Air) recognizing its duplicated backup on the new larger drive. When I go to System Prefs to set up TM it starts to run a new complete backup from scratch.
    This whole project was about continuing to use the previous TM BU on a larger drive. Any thoughts on what I might do to make this work and have the computer inherite the duplicated BU?
    Many thanks in advance.

    See Pondini's Time Machine FAQ # 18: http://pondini.org/TM/18.html

  • 5508 upgrade/backup controller

    If I am concerned about minimizing downtime I would use AP image pre- download option.
    >> I will download 7.6 image on old WLC and push this image to the APs connected to them. When Pre download is completed APs will have primary and secondary image as 7.0 and 7.6 . At this time both my APs and WLC are working with 7.0 image.
    >> Swap the image on APs.
    >> Check if we have right image on APs( show ap image all).
    >> Now in downtime reboot the controller. APs will right away join with 7.6 image(this will save time what APs take to search for new WLC, download the code and then reboot and join the WLC).
    >> Once the APs have joined the old WLC on 7.6 then we can move the APs to new WLC using HA tab.
    Link : http://www.my80211.com/cisco-wlc-cli-commands/2011/2/20/wlc-predownload-the-image-to-the-access-points-from-the-cont.html
    I hope that helps.
    Thanks,
    Ishant
    *** Please rate if you find it useful ***

    Old WLC = WLC1
    New WLC = WLC2
    Here's a proven process: 
    1.  Configure WLC2:  Make sure WLC2 has the same firmware as WLC1.  Copy the config of WLC1 to a notepad.  Change the IP addresses.  Copy the new config to WLC2. 
    2.  Upgrade the firmware of WLC2 (including the FUS/bootstrap).  
    3.  Make sure you configure DNS for WLC2.  
    4.  Connect WLC2 to the network and make sure you can remotely access WLC2.  
    5.  Upgrade the firmware of WLC1 but DO NOT reboot. 
    6.  Pre-download the AP images.  
    7.  Move the APs from WLC1 to WLC2. 
    8.  Once the APs have moved to WLC2, reboot WLC1.

  • WLAN Controller Geodiverse Failover

    All -
    Hypothetical scenario:
    Three branch offices each with their own 5508 controller and a local spare for backup.  Each has their own VLANs and routing between offices over an MPLS network.  For simple math, each of the three controllers has a max of 100 APs.  For disaster recovery purposes, I want to provide a fourth controller at a separate location from the three branches, but with IP connectivity (something like a co-lo).  I would then have to configure that backup controller to have a dynamic interface for each of the VLANs used at the three branches, and something like GRE tunnels to connect them to the default gateways for those interfaces at each branch.
    Sound crazy or do-able?
    Regards,
    Scott

    Leo -
    Yep, haven't been on much.  I have another side of our business that's been consuming a lot of my cycles (Motorola mobile computing).  I'm proposing the 4th site as a way to save the customer $$ by not having to buy 3 controllers to provide failover locally at each site, and it's a small enough deployment that it could accommodate any 2 of the 3 controllers failing.  It isn't a WAN thing because if the WAN went down, they wouldn't be able to reach that 4th controller as they don't have dual redundant connections.  The backup WAN is a much smaller pipe and builds VPN tunnels to other sites.  I would rather see H-REAP used, but with the 80:20 rule now being 20:80 and only 20 percent stays local while the other 80 percent goes into the core, they'd really need to be setup as a routed access layer, and they're not.  So that would be a lot of rearchitecture for a WLAN upgrade.  So I'm kinda stuck, and I think they're going to end up having to buy the controllers.  In addition to getting the APs over the tunnel to the backup controller, extending those layer 2 VLANs back over the WAN over a layer 3 infrastructure would require building more tunnels to extend the VLANs and that would be messy.

  • WLAN Controller on remote WAN?????

    Hi Guys,
    In the event of a WLAN controller, can the APs assosiate to a controller a thousand miles away?
    The backup controller would be located in the DC where 100% of traffic is destined anyway so bandwidth is not of major concern.
    Thanks

    no problem - glad to help
    if you read this:-
    http://www.cisco.com/en/US/docs/wireless/controller/4.0/configuration/guide/c40hreap.html
    it will give you alot of good information - but this is for WLC ver 4.0 - in 4.1/4.2 & 5.0 you get more functionality for H-REAP!

  • Using one VLAN over several WLANs without maxing out controller

    Hi,
    I need to provide several WLANs that need to have different SSIDs, but can all go on the same VLAN.
    An example would be if i have 40 schools and one large, flat guest LAN that I want to use for them all. I'd like to put (SSIDs of)school0001, school0002, school000n etc onto this same VLAN without breaking my limit of 16 WLANs on the controller.
    Does anyone know if the cisco 4404 (or 5508) can do this? and if so, how.
    Thanks in advance,

    The 16 wlan limit is hard set.
    Here is a good reason why:
    "... limit the number of service set identifiers (SSIDs) configured at the controller. Based on your access point model, you can have configured 8 or 16 simultaneous SSIDs, but as each WLAN/SSID needs separated probe responses, and beaconing, the RF pollution increases as more SSIDs are added. The results are that some smaller wireless stations like PDA, WiFi Phones and barcode scanners cannot cope with a high number of basic SSID (BSSID) information. This results in lockups, reloads or association failures. Also the more SSIDs, the more beaconing needed, so less RF space is available for real data transmits. "
    from
    http://supportwiki.cisco.com/ViewWiki/index.php/Wireless_LAN_Controller_%28WLC%29_Configuration_Best_Practices
    You may want to consider using multiple controllers & limiting the # of wlans per controller.
    You should also check into AP groups to limit what wlans are broadcast on what APs to help control the rf pollution where possible.

  • WLAN APs send syslog broadcasts in controller mode

    Hi,
    in a test environment we use several 1131 wlan aps in controller mode with software version 4.2.176.0.
    With wireshark running on a client pc in the same subnet as the wlan aps reside I saw that the wlan aps are sending syslog messages to the broadcast address 255.255.255.255 like "AP:<mac-address> %LWAPP-3-CLIENTERRORLOG: Decode Msg: could not match WLAN ID 5".
    Does anybody know if this is expected behaviour and how I can correctly configure syslog on the aps in controller mode?
    Many thanks in advance,
    Thorsten Steffen

    Hi,
    Yes, the AP broadcasting syslogs is an expected behavior. It helps in troubleshooting AP join issues. If you don't want the AP broadcasting the messages you can either configure the AP's to send them as unicasts or disable the syslogging by defining a destination address of 0.0.0.0.
    You would use the "config ap syslog host..." command on the controller to configure this. Obviously this command only works for the AP's after they have already joined the controller.

  • STMS Backup Domain Controller.

    Hi,
    I  want to configure a backup domain controller in my SAP system. The current controller is on my Production (PRD). I would like to configure the backup controller on Development (DEV).
    Currently, my OS is on AIX. The NFS is at Production for /usr/sap/trans.
    My question is, if I have a hardware problem in PRD that also impact my NFS, the backup controller that was created would also be pointless? Please correct me if I am wrong.
    Hope to get feedback.
    Thanks in advance,
    IAzir.

    Hi,
    I know individual /usr/sap/trans can be implemented in Windows but not in UNIX.
    Unix uses NFS. I might be wrong. Have your tried it before?

  • WLAN disable on a controller upgrade, why?

    I'm confused.  I'm about to upgrade a 5508 controller so I can do the pre-download to the access points, but in every doc I find, it says to disable the WLAN's before upgrading.  This makes no sense.  I'm just moving code over, why do I have to disrupt my wireless network in order to move code?
    Thanks,
    Eric

    Steps 4(optional) and 5.  This is from 7.0.230.0 Release notes.  I believe I've seen this in several release notes versions.
    http://www.cisco.com/en/US/docs/wireless/controller/release/notes/crn7_0_230_0.html#wp844121
    Step 4 (Optional) Disable the controller 802.11a/n and 802.11b/g/n networks.
    Note For busy networks, controllers on high utilization, or small controller platforms it is advisable to disable the 802.11a/b/g/n networks as a precautionary measure.
    Step 5 Disable any WLANs on the controller.

  • WLAN Clients unable to access the Gateway when more than 2 clients connect

    Hi,
    I have a problem with a 2106 WLAN Contoller.
    The clients can connect and associate to the WLAN and get their IP details via DHCP from the internal DHCP server. However, only 2 clients can get out through the gateway at any one time. All other clients that connect will get their DHCP addresses(that match the config of the 1st 2 clients), but they cannot get to the gateway. They can ping any client on the WLAN and the controller.

    Hi,
    Please post the IP configuration for your gateway, the working clients and the clients having problems.
    Regards,
    Kristofer

  • Whole online backup from DB13 failed due to processing error

    Hello!
    I have difficulty by execution of Whole database online backup from DB13 via FTP on the remote target.  The backup goes very slow and breaks after a while.
    The BRBACKUP action log looks as follows:
    backup_mode ALL
    backup_type online
    backup_dev_type stage
    stage_root_dir /sap/DEVB
    compress no
    stage_copy_cmd ftp
    remote_host 192.168.200.3
    remote_user sapbackup
    #FILE..... E:\ORACLE\DEV\SAPDATA2\SR3_10\SR3.DATA10
    #SAVED.... /sap/DEVB/bdwkuudu/SR3.DATA10 #1/6
    BR0280I BRBACKUP time stamp: 2007-10-23 01.44.35
    BR0063I 6 of 41 files processed - 12000.047 MB of 93092.766 MB done
    BR0204I Percentage done: 12.89%, estimated end time: 23:06
    BR0001I ******____________________________________________
    BR0202I Saving E:\ORACLE\DEV\SAPDATA2\SR3_6\SR3.DATA6
    BR0203I to /sap/DEVB/bdwkuudu/SR3.DATA6 ...
    #FILE..... E:\ORACLE\DEV\SAPDATA2\SR3_6\SR3.DATA6
    #SAVED.... /sap/DEVB/bdwkuudu/SR3.DATA6 #1/7
    BR0280I BRBACKUP time stamp: 2007-10-23 02.38.05
    BR0063I 7 of 41 files processed - 14000.055 MB of 93092.766 MB done
    BR0204I Percentage done: 15.04%, estimated end time: 21:36
    BR0001I ********__________________________________________
    BR0202I Saving E:\ORACLE\DEV\SAPDATA2\SR3_7\SR3.DATA7
    BR0203I to /sap/DEVB/bdwkuudu/SR3.DATA7 ...
    <b>BR0278E Command output of 'F:\usr\sap\DEV\SYS\exe\uc\NTAMD64\sapftp.exe -v -n -i 192.168.200.3 -u H:\oracle\DEV\sapbackup\.bdwkuudu.ftp -b -c put E:\ORACLE\DEV\SAPDATA2\SR3_7\SR3.DATA7 /sap/DEVB/bdwkuudu/SR3.DATA7':
    Connected to 192.168.200.3 Port 21.
    220-FTP server ready.
    220 This is a private system - No anonymous login
    331 User sapbackup OK. Password required
    230-User sapbackup has group access to: administrator
    230-This server supports FXP transfers
    230-OK. Current restricted directory is /
    230-************************************************
    230-* Use SITE command to change client codepage: *
    230-* ie, site codepage [client codepage] *
    230 ************************************************
    200 TYPE is now 8-bit binary
    200 PORT command successful
    150 Connecting to port 4977
    NiWrite error: -6, bytes to send: 32767 bytes written: 0
    BR0280I BRBACKUP time stamp: 2007-10-23 03.08.37
    BR0279E Return code from 'F:\usr\sap\DEV\SYS\exe\uc\NTAMD64\sapftp.exe -v -n -i 192.168.200.3 -u H:\oracle\DEV\sapbackup\.bdwkuudu.ftp -b -c put E:\ORACLE\DEV\SAPDATA2\SR3_7\SR3.DATA7 /sap/DEVB/bdwkuudu/SR3.DATA7': 1
    BR0222E Copying E:\ORACLE\DEV\SAPDATA2\SR3_7\SR3.DATA7 to/from /sap/DEVB/bdwkuudu/SR3.DATA7 failed due to previous errors </b>
    BR0280I BRBACKUP time stamp: 2007-10-23 03.08.43
    BR0317I 'Alter tablespace PSAPSR3 end backup' successful
    BR0056I End of database backup: bdwkuudu.ans 2007-10-23 03.08.37
    BR0280I BRBACKUP time stamp: 2007-10-23 03.08.43
    BR0054I BRBACUP terminated with errors
    Any helpful information will be appreciated.
    regards!
    Thom

    this post is duplicated at Re: Backup to remote stage failed due to RFC error
    please only post your question once and only in 1 forum.
    thanks.

  • Subsets of ssid on LWAP on same controller

    I was wondering if it is possible to determine which SSID's are available on a group of LWAP. If I want a special SSID to only appear in a certain small group of LWAP (say a single building), but there are many more LWAP on the same WLC that I dont want that SSID to appear on. I only seem able to put enable or disable an SSID across all LWAP.
    I have a WiSM, 90x 1130AG, and WCS. Each SSID is it's own VLAN.
    Regards.

    Hi Mike,
    Ankur is most correct here (5 points for this Ankur and nice to see you back here posting great answers!)
    I just wanted to add a little more reference material;
    Enabling WLAN Override
    By default, access points transmit all defined WLANs on the controller. However, you can use the WLAN Override option to select which WLANs are transmitted and which ones are not on a per access point basis. For example, you can use WLAN override to control where in the network the guest WLAN is transmitted or you can use it to disable a specific WLAN in a certain area of the network.
    From this doc;
    http://www.cisco.com/en/US/products/ps6366/products_configuration_guide_chapter09186a008076cbfd.html#wp1114777
    Once you create a new WLAN, the WLAN > Edit page for the new WLAN appears. In this page you can define various parameters specific to this WLAN including General Policies, RADIUS Servers, Security Policies, and 802.1x Parameters.
    **Check Admin Status under General Policies to enable the WLAN. If you want the AP to broadcast the SSID in its beacon frames, check Broadcast SSID.
    Note: You can configure up to sixteen WLANs on the controller. The Cisco WLAN Solution can control up to sixteen WLANs for Lightweight APs. Each WLAN has a separate WLAN ID (1 through 16), a separate WLAN SSID (WLAN name), and can be assigned unique security policies. Lightweight APs broadcast all active Cisco WLAN Solution WLAN SSIDs and enforce the policies that you define for each WLAN.
    From this good doc;
    http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a0080665d18.shtml#c3
    The most popular way to mitigate the problem of having to access each AP individually (when using WLAN Override) is to use WCS Templates for common requirement AP's. This way the WLAN Override function can be applied at the Template level and then pushed out to the various groups.
    http://www.cisco.com/en/US/docs/wireless/wcs/4.0/configuration/guide/wcstemp.html#wp1072198
    Hope this helps!
    Rob

Maybe you are looking for