FlexConnect Local Auth. Usernames not showing in WLC/NCS

Hi,
I am working on a new install where the customer is using local RADIUS servers at each of their many campuses
(for local dynamic VLAN assignment), while using a single set of controllers at the core of their network.
For the record, we have set up a pair of 5508s (v 7.2.103.0) in their central data center with 3602i APs around the various campuses. We are using FlexConnect groups to locally authenticate and switch the users.
Right now, the config is working great as far as authentication and local switching goes. The problem we are experiencing is that none of the authenticated usernames are being passed back to the controller (and ultimately NCS). This makes the tracking and troubleshooting of users difficult. Is there something I am missing here? I can't seem to find any fixes relevant to this issue in the 7.2.110.0 release notes.
Maybe I am going about this wrong. I am very open to alternative solutions.
Thanks.

After discussing this issue with local Cisco folks, TAC and colleagues, it seems that locally authenticated user names are not passed to the controller (or NCS). It's not a bug, it's just the way it is.
If you want the AP to authenticate and locally switch users while communication to the controller is down (i.e. loss of WAN link), no usernames are sent to the controller for logging or troubleshooting... even when AP to WLC communication is working fine. It's a trade-off of information (usernames) for uptime.
If any Cisco wireless development folks are browsing, consider this a 'feature' I would like to see. Thanks.

Similar Messages

702W APs out of box not showing on WLC

We have a 2504 WLC with existing 11 APs which are 3602-I.
We want to add 5x more 702w APs. I have installed the license on the 2504 WLC and that was fine.
I have added new APs mac to my dhcp server, so they get an IP now and I can telnet/ssh into them using their IP (and default Cisco username/password).
The problem is that they are not showing up on the WLC. I see on the APs ssh session that its running the (ap1g1-RCVK9W8-M), Version 15.2(4)JB5, image.
Can someone please explain how I can get the APs showing up on the WLC?
Thanks in advance.

What code running on your WLC, it has to be 8.x to support this AP model. refer this
http://www.cisco.com/c/en/us/td/docs/wireless/compatibility/matrix/compatibility-matrix.html
If you have compatible code on your WLC & still AP not register, pls attach AP console output while booting & trying to register
HTH
Rasika
**** Pls rate all useful responses ****

Why my Local Adapter Engine not showed in SLD and Integration Directory?

Hi guru,
I have installed one Local Adatper Engine on Host B, then an XI is installed on Host A, but After I installed the local adapter engine and follow the standard configration step mentioned in this document:https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/307deae3-604e-2a10-feae-f016fb9cadd4.
After the configuration is done, I restart the local adatper engine, but this local adapter engine is not showed in integration directory.
what is the problem?

The post-installation configuration steps are not complex, I exactly followed.
what other reason could it be? have any guru configured local adapter engine before?

Local iCal calendars not showing...

Hi,
I set up calendars locally, but they are not showing up in my list. I tried a couple of times, which is why there are four calendars called 'no title'. However, I can only see them when I print a calendar. Then they are listed on the preview, but not selectable as calendars. Would like to delete them, but not sure how...?
Thank you
Clemens

This really helped me, as well. I had upgraded recently to iPhone 2.2 and have a Google Calendar WebDAV calendar set up in iCal, which was subsequently syncing to my iPhone. For whatever reason, the synchronization stopped working and after following your instructions to delete the Calendar Cache files (I had two of them) it started working again! Thanks

Amount in Local Currency Field not showing up under PO history tab

Hi Freinds,
I have faced a strange situation where one of the Business user can see the field Amount in Local currency under PO history tab , however the other user can not see this field.
When the second user( who can not see this field) checked for the Layout Settings, the field Amount in Local currency is not present there also.
Kindly guide me what needs to be done for the second user to be able to see the needed field.
A quick reply will be highly appreciated
Thanks& Regards,
Anshul

Hi Jain,
The issue was realted to authorisation, if you have chekced the layout and it doesnt concern the layout settings then ask BASIS to provide authorisation to the user who is not able to see amoutn in local currency field under PO History tab
Cheers,
Anshul

Username not showing up in access log for authenticated users

I'm using form-based authentication in a Java web application on Sun One Web Server v6.1 to restrict access to authenticated users. However, even after the users authenticate and access the application, the username field in the access log is showing them as anonymous.
request.getRemoteUser() is reporting the correct username, so it just seems to be the access log that is in error. Right now it is set to the default but changing formats to custom doesn't seem to help in displaying the username.
Here's an excerpt from the access log:
// anonymous access attempt, redirects to login page...
10.100.168.110 - - [01/May/2006:14:34:42 -0400] "GET /profile/index.jsp HTTP/1.1" 302 0
10.100.168.110 - - [01/May/2006:14:34:42 -0400] "GET /profile/login.jsp HTTP/1.1" 200 3355
10.100.168.110 - - [01/May/2006:14:34:47 -0400] "POST /profile/j_security_check HTTP/1.1" 302 0
// at this point they are logged in and their username should be reflected in the access log, but is not:
10.100.168.110 - - [01/May/2006:14:34:47 -0400] "GET /profile/index.jsp HTTP/1.1" 200 3532 And the relevant code from the web application's web.xml:
<security-constraint>
    <web-resource-collection>
      <web-resource-name>AllFiles</web-resource-name>
      <description>
                 Restricts anonymous access.
              </description>
      <url-pattern>/*</url-pattern>
      <http-method>POST</http-method>
      <http-method>GET</http-method>
    </web-resource-collection>
    <auth-constraint>
      <description>
               Authenticated Users
              </description>
      <role-name>user</role-name>
    </auth-constraint>
</security-constraint>I've searched the forums and the manuals but can't see anything showing that the access log's username field doesn't work with form-based authentication. Can anyone shed some light on this?

Some background:
The Java Servlet container has its own authentication infrastructure (which is what you configure in web.xml) which is separate from the non-Java authentication infrastructure (ACLs, etc.). If you set up authentication via ACLs the resulting user identity can (though you may configure it not to) propagate to the Java Servlet container such that request.getRemoteUser() will return it, even though no web.xml-driven authentication occurred. The coverse is not true, however: if you authenticate via a Java Realm, based on web.xml configuration, that user identity is not available to non-Java code.
(Your web.xml snippet doesn't show you using FORM auth - but it doesn't matter, the explanation above applies in any case.)
That is why the log file (generated from non-Java code) doesn't have access to that user. It probably should, but there's no config option today for you to make that happen.
If you're using BASIC auth you may consider moving the authentication configuration from web.xml to ACLs as a possible workaround. It will then show up in the access logs.
If you prefer web.xml-based authentication, consider the <SECURITY audit="true"> option in server.xml. It won't be in the access log but you'll have an audit trail of authentications, which may help.

When I use Firefox to monitor changes I do to HTML files locally, it does not show changes to images unless I restart the browser. Is this a bug?

I have the local and the remote versions of a page open in two tabs. I change one of the images (keeping the same name in the HTML) and upload the changed image. The tab that shows the remote page only takes a refresh to show the change. The tab showing the local page not. I have tried opening it in a new window but it still does not change. Only if I restart Firefox does it show the change. Why? Is this a bug?

grantheaslip's suggestion doesn't work for me; no change at all. (Thanks anyway.) Any other ideas? Is there another way to "hard" refresh? I don't see anything in the menu.
Also, it seems like this is a very recent problem. I thought in the past that a regular refresh did the job.

Help! Local server accounts not showing up in Mail accounts?

Hello. I need some guidence in setting up the Mail server. I have just Mail, AFP, and DNS running, and only 2 user accounts (admin and one other) These accounts are under the local server. Neither of these accounts show up under mail? Workgroup manager says something like "you are working in a directory node that is not visable to the newtork." How do I create Mail accounts???

You can run Work Group Manager remotely or on the server itself - that part doesn't matter. (Wherever you run WGM it will connect to the server itself and make changes there.)
What does matter is that the accounts are created in WGM. Server users accounts are created in WGM. Server administrator accounts are created in the traditional System Preferences > Accounts > Add Account.... etc.
Anyone you want to use file sharing, mail etc needs to be created via the WGM interface or you won't be able to assign the kinds or permissions and settings they need to access services like file sharing or mail.
Is that clear?
=Tod
G5/2.0x2, Dual XServes x2, XRAID, beige G3 501Mhz

Web Auth page not working on WLC

I have a WLC 4402 and I upgraded the s/w from 4.1 to 4.2.176 since I did the web auth on my Guest wlan does not work. I can connect to the wireless ok and when I type in a web address I should get the web auth page but I just get "This page cannot be displayed". However if i type in the ip address of the WLC in the addrsss bar I get the web auth page and it work fine form then on. The web auth page worked fine on ver 4.1. Any ideas?

I opened a TAC case this morning on this same problem, and my solution is what is listed above (config network secureweb cipher-option sslv2 enable)
Basically, SSLv2 is disabled in 4.2. The Default is now SSLv3.
Depending on your Internet settings, if IE is configured to use SSLv2, the webpage will not work.
So in internet explorer, tools, internet options, advanced, There will be a checkbox next to Use SSLv2. (Even if Use SSLv3 is enabled, you still have the https issue).
Basically, my issues was that a select few users could not Web authenticate and a select few admins couldn't HTTPS manage the GUI. Turns out in all cases, the computers that were all able to work, did not have SSLv2 enabled.
By enabling SSLv2, all affected users now work (I think).

Win7 desktops secpol and Local Sec Policy not showing auditing enabled

ok, I thought I have this licked with a solution before,
I have a Server 2008 R2 and Win7 Desktops where I have a Server 2008 GPO to Audit Events on the server and desktops, however at the desktops locally auditing is greyed out and displaying ‘no auditing’ but logs show auditing entries.
At the Server 2008 R2 SP1 64
Server
Administrative Tools
Group Policy Management
Forest
Domains
My_Network_Name.com
Default Domain Policy
Edit
Computer Configuration
Policies
Windows Settings
Security Settings
Local Policies
Audit Policy
Logon, Account, Etc all able to change Success, Fail
However at the Windows 7 desktops the Local Security Policy, Local Policies, Audit Policies, all the policies have ‘no auditing’ however the local Win7 Event Logs are auditing.
What would cause this to display ‘no auditing’ at the desktops and yet enter events locally and at the server
Thank you
B.

Thanks,
The Server 2008 R2 has this:
System audit policy
Category/Subcategory                      Setting
System
Security System Extension               No Auditing
System Integrity                        No Auditing
IPsec Driver                            No Auditing
Other System Events                     Success and Failure
Security State Change                   No Auditing
Logon/Logoff
Logon                                   Success and Failure
Logoff                                  Success and Failure
Account Lockout                         Success and Failure
IPsec Main Mode                         No Auditing
IPsec Quick Mode                        No Auditing
IPsec Extended Mode                     No Auditing
Special Logon                           No Auditing
Other Logon/Logoff Events               Success and Failure
Network Policy Server                   No Auditing
Object Access
File System                             No Auditing
Registry                                No Auditing
Kernel Object                           No Auditing
SAM                                     No Auditing
Certification Services                  No Auditing
Application Generated                   Failure
Handle Manipulation                     No Auditing
File Share                              Failure
Filtering Platform Packet Drop          No Auditing
Filtering Platform Connection           No Auditing
Other Object Access Events              No Auditing
Detailed File Share                     No Auditing
Privilege Use
Sensitive Privilege Use                 No Auditing
Non Sensitive Privilege Use             No Auditing
Other Privilege Use Events              No Auditing
Detailed Tracking
Process Termination                     No Auditing
DPAPI Activity                          No Auditing
RPC Events                              No Auditing
Process Creation                        No Auditing
Policy Change
Audit Policy Change                     Success and Failure
Authentication Policy Change            Success and Failure
Authorization Policy Change             Success and Failure
MPSSVC Rule-Level Policy Change         No Auditing
Filtering Platform Policy Change        No Auditing
Other Policy Change Events              Success and Failure
Account Management
User Account Management                 No Auditing
Computer Account Management             No Auditing
Security Group Management               No Auditing
Distribution Group Management           No Auditing
Application Group Management            No Auditing
Other Account Management Events         No Auditing
DS Access
Directory Service Changes               No Auditing
Directory Service Replication           No Auditing
Detailed Directory Service Replication No Auditing
Directory Service Access                No Auditing
Account Logon
Kerberos Service Ticket Operations      No Auditing
Other Account Logon Events              No Auditing
Kerberos Authentication Service         No Auditing
Credential Validation                   No Auditing
The Windows 7 Desktops have this:
System audit policy
Category/Subcategory                      Setting
System
Security System Extension               No Auditing
System Integrity                        No Auditing
IPsec Driver                            No Auditing
Other System Events                     Success and Failure
Security State Change                   No Auditing
Logon/Logoff
Logon                                   Success and Failure
Logoff                                  Success and Failure
Account Lockout                         Success and Failure
IPsec Main Mode                         No Auditing
IPsec Quick Mode                        No Auditing
IPsec Extended Mode                     No Auditing
Special Logon                           No Auditing
Other Logon/Logoff Events               Success and Failure
Network Policy Server                   No Auditing
Object Access
File System                             No Auditing
Registry                                No Auditing
Kernel Object                           No Auditing
SAM                                     No Auditing
Certification Services                  No Auditing
Application Generated                   Failure
Handle Manipulation                     No Auditing
File Share                              Failure
Filtering Platform Packet Drop          No Auditing
Filtering Platform Connection           No Auditing
Other Object Access Events              No Auditing
Detailed File Share                     No Auditing
Privilege Use
Sensitive Privilege Use                 No Auditing
Non Sensitive Privilege Use             No Auditing
Other Privilege Use Events              No Auditing
Detailed Tracking
Process Termination                     No Auditing
DPAPI Activity                          No Auditing
RPC Events                              No Auditing
Process Creation                        No Auditing
Policy Change
Audit Policy Change                     Success and Failure
Authentication Policy Change            Success and Failure
Authorization Policy Change             Success and Failure
MPSSVC Rule-Level Policy Change         No Auditing
Filtering Platform Policy Change        No Auditing
Other Policy Change Events              Success and Failure
Account Management
User Account Management                 No Auditing
Computer Account Management             No Auditing
Security Group Management               No Auditing
Distribution Group Management           No Auditing
Application Group Management            No Auditing
Other Account Management Events         No Auditing
DS Access
Directory Service Changes               No Auditing
Directory Service Replication           No Auditing
Detailed Directory Service Replication No Auditing
Directory Service Access                No Auditing
Account Logon
Kerberos Service Ticket Operations      No Auditing
Other Account Logon Events              No Auditing
Kerberos Authentication Service         No Auditing
Credential Validation                   No Auditing

Local Patch proxy not showing all patches

Ive noticed that sometimes the my local patch proxy doesnt pick up all the patches.
Theres a bunch of patches that just showed up today on the sun server. But if I point a machine at my local patch proxy, they don't show up in an smpatch analyze (or in the um display).
Point the machine back to the sun server and they show up again.
Possibly it just a lag problem and they will show up in th local proxy tomorrow.

I take it when you say local patch proxy you are referring to the Sun Update Connect Proxy, rather than the Local Patch Server (LPS).
Have a look at the thread below and let us know whether the problem you have is the same:
http://forum.sun.com/thread.jspa?threadID=25740&messageID=92719
If so the solution is shown here:
First, stop the proxy:
patchsvr stop
See if the crypto services are running:
$ svcs svc:/system/cryptosvc
You'll need to restart them if they are disabled:
$ svcadm enable svc:/system/cryptosvc
Now, you can disable the problematic component:
$ cryptoadm disable metaslot
And restart the proxy:
$ patchsvr start
Solution taken from:
http://forum.sun.com/thread.jspa?threadID=25780&start=10&tstart=0

MSE 8.0.110 not showing clients in NCS 2.2

Hi all,
I have established a LAB in my office which includes WLC 5508 (8.0.110), NCS VM 2.2 and MSE VM 8.0.110.
Every device/appliance is connected and associated with each other. However, I cant see clients on NCS floor maps. I am also trying to do Wireless Calibration but I am assuming if I can't even see clients on the map, I am pretty much not going to get the Calibration done as well. I can see clients connected on my WLC and NCS but unable to track their location.
Since I am using evaluation copy of MSE, I have installed all the services on MSE.
In the show auth-list at the controller, I can see MSE MAC Addresses and Key Hash, which I think is all thats required on the controller.
Any ideas where I can further dig up?
The client (my laptop) supports CCX v5. I can verify the same thing on WLC and NCS. However, in NCS, when I look up the MAC Address of my laptop, under CCX Capability Information I see Client Status "Failure".
Thanks in advance,
Jay

Prime Infrastructure 2.2. needs to reach WLC via SNMP. Is this configured?
On Prime go to:
Services -> Mobility Services -> Synchronize services. Select Your maps, click on "Change MSE assigment" and assign Your MSE.
Click on controllers tab on the right, select Your WLC, click on "Change MSE assigment", Select Your MSE and click "synchronize".
Go here: Services > Mobility Services Engines > mse> System > Status > NMSP Connection Status > NMSP Connection Status Details . Please check, is NMSP Status "Active" ?

Bkacground/CSS images not showing

Since earlier this month I have been having problems with DW.
I'm sure it's something I did since I'm sort of new to this but
here it goes. I'm using DW MX by the way.
I run a small diecast site and DW has always been my editing
program and its worked fine until now. My site uses CSS and usually
DW would load all the necessary image files like the menus,
background images and icons, etc. My actual diecast photos and a
few of the menu buttons are hosted at Imageshack and most of them
display correctly in DW, but everything thats on the server hosted
by Byethost doesn't show. It also doesn't correctly display the
layout of the CSS I chose, but rather it looks like a plain
unorganized page. I thought the problem might have been that DW
doesn't actually display the images from the server, but rather
from the local disk instead. The local folder these files were in
might have been moved to somewhere else on th disk? I have tried
everything I could think of but nothing has worked. Any help is
very much appreciated!
Justin

> DW won't display any content that is not available
locally.
Sure will - it handles images, css, js, and applets with
external links.
Murray --- ICQ 71997575
Adobe Community Expert
(If you *MUST* email me, don't LAUGH when you do so!)
==================
http://www.dreamweavermx-templates.com
- Template Triage!
http://www.projectseven.com/go
- DW FAQs, Tutorials & Resources
http://www.dwfaq.com - DW FAQs,
Tutorials & Resources
http://www.macromedia.com/support/search/
- Macromedia (MM) Technotes
==================
"Nick Barling" <[email protected]> wrote in
message
news:[email protected]...
> This sounds like a file/folder management problem. DW
won't display any
> content that is not available locally. To see content
that is only
> available
> at the server you need to view your page from within a
browser.
>
> If you have content stored locally and it is not visible
then you need to
> check the file path to each piece of content that is not
showing. Check
> that
> you are using document - relative links and not root
relative links.
> Check the
> location and content of your local folders; they should
not have moved on
> your
> local disk unless you moved them. As it is unlikely that
you moved the
> file
> locations without knowing it I suspect the problem is
one of relative
> paths.
>
> Look at your local file structure in the DW site local
view and then check
> your remote view file structure, you may find the
problem there.
>
> The CSS style sheet, which I assume is an external style
sheet attached
> the
> your html page will only be visible locally if you have
linked it
> correctly to
> the html page it is styling. View the page locally and
check that the CSS
> style sheet is linked/referenced corectly in the file
structure. If your
> page
> shows CSS styling when viewed locally but does not show
remotely, ie when
> viewed in a browser via the url address with the page
served from the
> server,
> then check that you have uploaded the CSS style sheet to
the correct
> location.
>

Local Folders does not access all existing subfolders after hard drive restore

I had to restore my hard drive using Time Machine. Now Local Folders does not show my complete list of subfolders. I checked the hard drive location,
/Users/carol/Library/Thunderbird/Profiles/u7n9368b.default/Mail/Local Folders
and the folders all are there. I have reinstalled TB without a change. How do I get TB to read those folders? Needless to say, I have a LOT of really important stuff stored in there that I need to be able to access. The data is in there. I was able to open it in text, but it's pretty hard to read that way.

I was mistaken. NOT all the folders are still on the hard drive in my Library. Unfortunately, my Library was hidden in backups and I cannot find it to restore from an older backup. If anyone has a hack for showing a user Library in a Time Machine backup that was not visible when the backup was made, let me know!

Flexconnect Local Switching Hosts Do Not Receive IP Addresses

Hello,
My WLC software version is 7.4.110.0. I have a branch office in my lab. The AP in my branch is configured as flexconnect with native VLAN of 700. The SSID that I have in the branch office is configured to do local switching. The show wlan is added below.
My tunneled SSID still working and I can still receive IP addresses from it. My issue is last week I have the Flexconnect working with no problem, then this morning I can connect to the SSID, but I'm not receiving IP addresses for my test wireless clients.
Thanks
[code]
WLAN Identifier.................................. 2
Profile Name..................................... ACS Guest
Network Name (SSID).............................. RMTGuest
Status........................................... Enabled
MAC Filtering.................................... Disabled
Broadcast SSID................................... Enabled
AAA Policy Override.............................. Disabled
Network Admission Control
Client Profiling Status ....................... Disabled
   DHCP ......................................... Disabled
   HTTP ......................................... Disabled
Radius-NAC State............................... Disabled
SNMP-NAC State................................. Disabled
Quarantine VLAN................................ 0
Maximum number of Associated Clients............. 0
Maximum number of Clients per AP Radio........... 200
Number of Active Clients......................... 0
Exclusionlist Timeout............................ 60 seconds
Session Timeout.................................. 1800 seconds
User Idle Timeout................................ 300 seconds
--More-- or (q)uit
User Idle Threshold.............................. 0 Bytes
NAS-identifier................................... RK2WLC5508-01
CHD per WLAN..................................... Enabled
Webauth DHCP exclusion........................... Disabled
Interface........................................ management
Multicast Interface.............................. Not Configured
WLAN IPv4 ACL.................................... unconfigured
WLAN IPv6 ACL.................................... unconfigured
mDNS Status...................................... Disabled
mDNS Profile Name................................ unconfigured
DHCP Server...................................... 172.28.27.130
DHCP Address Assignment Required................. Disabled
Static IP client tunneling....................... Disabled
PMIPv6 Mobility Type............................. none
Quality of Service............................... Silver
Per-SSID Rate Limits............................. Upstream          Downstream
Average Data Rate................................   0                      0
Average Realtime Data Rate.......................   0                      0
Burst Data Rate..................................   0                      0
Burst Realtime Data Rate.........................   0                      0
Per-Client Rate Limits........................... Upstream          Downstream
Average Data Rate................................   0                      0
Average Realtime Data Rate.......................   0                      0
--More-- or (q)uit
Burst Data Rate..................................   0                      0
Burst Realtime Data Rate.........................   0                      0
Scan Defer Priority.............................. 4,5,6
Scan Defer Time.................................. 100 milliseconds
WMM.............................................. Allowed
WMM UAPSD Compliant Client Support............... Disabled
Media Stream Multicast-direct.................... Disabled
CCX - AironetIe Support.......................... Enabled
CCX - Gratuitous ProbeResponse (GPR)............. Disabled
CCX - Diagnostics Channel Capability............. Disabled
Dot11-Phone Mode (7920).......................... Disabled
Wired Protocol................................... None
Passive Client Feature........................... Disabled
Peer-to-Peer Blocking Action..................... Disabled
Radio Policy..................................... All
DTIM period for 802.11a radio.................... 1
DTIM period for 802.11b radio.................... 1
Radius Servers
   Authentication................................ Disabled
   Accounting.................................... Disabled
   Dynamic Interface............................. Disabled
   Dynamic Interface Priority.................... wlan
Local EAP Authentication......................... Disabled
--More-- or (q)uit
Security
   802.11 Authentication:........................ Open System
   FT Support.................................... Disabled
   Static WEP Keys............................... Disabled
   802.1X........................................ Disabled
   Wi-Fi Protected Access (WPA/WPA2)............. Enabled
      WPA (SSN IE)............................... Disabled
      WPA2 (RSN IE).............................. Enabled
         TKIP Cipher............................. Disabled
         AES Cipher.............................. Enabled
                                                               Auth Key Management
         802.1x.................................. Disabled
         PSK..................................... Enabled
         CCKM.................................... Disabled
         FT-1X(802.11r).......................... Disabled
         FT-PSK(802.11r)......................... Disabled
         PMF-1X(802.11w)......................... Disabled
         PMF-PSK(802.11w)........................ Disabled
      FT Reassociation Timeout................... 20
      FT Over-The-DS mode........................ Enabled
      GTK Randomization.......................... Disabled
      SKC Cache Support.......................... Disabled
--More-- or (q)uit
      CCKM TSF Tolerance......................... 1000
   WAPI.......................................... Disabled
   Wi-Fi Direct policy configured................ Disabled
   EAP-Passthrough............................... Disabled
   CKIP ......................................... Disabled
   Web Based Authentication...................... Disabled
   Web-Passthrough............................... Disabled
   Conditional Web Redirect...................... Disabled
   Splash-Page Web Redirect...................... Disabled
   Auto Anchor................................... Disabled
   FlexConnect Local Switching................... Enabled
   flexconnect Central Dhcp Flag................. Disabled
   flexconnect nat-pat Flag...................... Disabled
   flexconnect Dns Override Flag................. Disabled
   FlexConnect Vlan based Central Switching ..... Disabled
   FlexConnect Local Authentication.............. Disabled
   FlexConnect Learn IP Address.................. Enabled
   Client MFP.................................... Optional
   PMF........................................... Disabled
   PMF Association Comeback Time................. 1
   PMF SA Query RetryTimeout..................... 200
   Tkip MIC Countermeasure Hold-down Timer....... 60
AVC Visibilty.................................... Disabled
--More-- or (q)uit
AVC Profile Name................................. None
Flow Monitor Name................................ None
Call Snooping.................................... Disabled
Roamed Call Re-Anchor Policy..................... Disabled
SIP CAC Fail Send-486-Busy Policy................ Enabled
SIP CAC Fail Send Dis-Association Policy......... Disabled
KTS based CAC Policy............................. Disabled
Assisted Roaming Prediction Optimization......... Disabled
802.11k Neighbor List............................ Disabled
802.11k Neighbor List Dual Band.................. Disabled
Band Select...................................... Disabled
Load Balancing................................... Disabled
Multicast Buffer................................. Disabled
Mobility Anchor List
WLAN ID     IP Address            Status
802.11u........................................ Disabled
MSAP Services.................................. Disabled
[/code]

is the VLAN still mapped on the AP, and allowed across the trunk?
HTH,
Steve
Please remember to rate useful posts, and mark questions as answered

FlexConnect Local Auth. Usernames not showing in WLC/NCS

Similar Messages

Maybe you are looking for