Wi-Fi Installation in large property W/Cisco 2504

Similar Messages

• Windows installer sets VersionNT property to 603

  Hello,
  OS: Windows 10 Technical Preview
  I've got msi package, which has LaunchConditions based on VersionNT(64) property, but installer sets this property to 603 (corresponding to Win8.1\2012r2). I wrote custom action, where I call VerifyVersionInfo function, and on 9879 build it worked,
  but starting from 9926 It doesn't. It seems that VerifyVersionInfo now requires proper GUID in manifest file, that is not possible for binary custom action. What is the proper way to detect Windows 10 version in msi package?
  I tried to ask this question at Windows Insider Program, but i was suggested to ask it here.
  Thank you.

  Hello,
  OS: Windows 10 Technical Preview
  I've got msi package, which has LaunchConditions based on VersionNT(64) property, but installer sets this property to 603 (corresponding to Win8.1\2012r2). I wrote custom action, where I call VerifyVersionInfo function, and on 9879 build it worked, but starting
  from 9926 It doesn't. It seems that VerifyVersionInfo now requires proper GUID in manifest file, that is not possible for binary custom action. What is the proper way to detect Windows 10 version in msi package?
  I tried to ask this question at Windows Insider Program, but i was suggested to ask it here.
  Thank you.
  Hello,
  1. Windows 10 has not been official released that there is not a solid version for us to detect, and currently issues related to windows 10 are not supported, you could consider submitting this feedback with the
  Give us feedback part shared in the following document.
  http://windows.microsoft.com/en-us/windows/preview-updates-feedback-pc
  2. It's not clear which publishment you are using, if possible, you could share the detailed information like the tool to publish your project and the configuration in that feedback.
  Thanks for your understanding.
  Regards,
  Carl
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
  Click
  HERE to participate the survey.

• OOB Management of Cisco 2504

  Hello,
  I am wondering if this is possible, and how to execute. 
  We have a separate physical network for guest wireless access that we will be using a cisco 2504 controller and AP's. I wanted to manage the WLC from the corporate network, and wanted to have a management interface on our DMZ to allow 443 management from inside our corporate network.
  I tried making the built in management interface on our corporate DMZ network, and another interface for the Guest Network, but I am unsuccessful:
  Management port 1: 192.168.x.x
  Dynamic interface port 2: 10.5.x.x
  Once I enable Dynmaic AP management on the Guest network, I cant ping any devices on that network.
  I also tried making a VLAN for the management network and another vlan for the Guest network and mapping them to the single built in management port, but I have been unsuccessful in that.

  Hi,
  ip http server
  ip http authentication local
  ip http secure-server
  username cisco password cisco.
  HTH,
  Bjornarsb

• Cisco 2504 Local radius configuration, is their any ways for backing up the user db? In case the WLC dies

  Cisco 2504 Local radius configuration, is their any ways for backing up the user db?  In case the WLC dies

  Please find the guide to keep the backup:-
  http://www.cisco.com/en/US/partner/docs/wireless/controller/7.0/configuration/guide/c70mfw.html#wp1063850

• Help required to implement Cisco 2504 WLC and 1042 Access Points

  Hi,
  My name is Vidya Sagar. I am new to Wireless technology. We are planning to implement Wireless in our office. I have given the requirements below. Kindly go through the details and let me know how to start.
  We have purchased Cisco 2504 Wireless Controller (One) and Ciscon 1042 Access Points (Five). At present I am going to use 3 access points only.
  I have attached a simple diagram of our office network. We have more than 30 VLANs configured in Core Switch, we are planning to give wifi access to only 3 VLANs.
  1. VLAN 121 ( IP Segment - 10.52.121.0 /24)
  2. VLAN 116 ( IP Segment - 10.52.116.0 /24)
  3. VLAN 100 ( IP Segment - 192.168.100.0 /24) (Guest)
  Please give me a implementation plan to do this. I would like to use LDAP or ACS for authentication purpose.
  Regards,
  Vidya Sagar

  Lets just do this simple first before you start using ACS as that will require a certificate installed on the ACS for using PEAP.
  So first off, the WLC we will say is in vlan 10. When you are going through the startup wizard, make sure you define the vlan tag to 10 on the management interface. Make sure your virtual interface is an IP address that is not routed in your network, like an out of band IP.
  Make sure the WLC time is correct or use NTP!!!!
  Now you should be able to http or https to the WLC. I would upgrade the code to v7.4 and install the FUS image. Please reference this link for the upgrade procedure. You don't have to upgrade now... I would wait till you get everything working first.
  http://www.cisco.com/en/US/docs/wireless/controller/release/notes/crn74.html
  Now I would connect the APs on the same vlan as the WLC for now. Make sure there is dhcp on that subnet. Once the APs have joined, then you can move them to any subnet you want. Since you don't have many APs it would be okay to leave them in the same vlan as the WLC management or out them on any other vlan you choose. The APs will be connected to an access port NOT a trunk port!!!!
  The WLC will need to be connected on a dot1q trunk port only allowing vlans 10,100,116,121. The 2504 running v7.4 will support LAG (etherchannel). Any ways, your switch port should look like this for example only
  Interface gigabit1/0/1
  description WLC2504
  switch port trunk encapsulation dot1q
  switchoort mode trunk
  switch trunk allowed vlans 10,100,116,121
  spanning-tree portfast trunk
  channel-mode group 10 mode on << only for v7.4 if you use lag
  Don't connect all four ports right now, just port one!!!!
  Your Guest vlan, you will need to create an ACL to block traffic from accessing the internal network. You might want to allow dhcp and DNS bit I would leave it open first until you can verify everything is working.
  Now on the WLC you need to create a dynamic interface for vlan 100, 116, and 121. If you click on the Controller tab in the GUI and click on interfaces on the left hand side, that will take you to where you can add/delete/modify your interfaces. When creating these interfaces, make sure you add the dhcp server IP address for the primary and or backup.
  Now that you have your dynamic interfaces created, its time I create your SSID. Now click on the WLAN tab on the GUI and click on WLAN and then on the too right select Create New and then click go. Select WLAN on the drop down menu and then for the profile name I would use the SSID name also for simplicity.lean e the WLAN id to 1 for this and 2 for the next and so on. After defining these and clicking Apply you can now define your SSID. On the General tab, enable the status and leave the radio policy to all for now, you can decide later what you want to use. Choose your interface you wan to place this SSID on and enable Broadcast SSID for now and leave everything else alone. Now click on the Security tab and on the layer 2 Security, leave it at WPA + WPA2, only check WPA2 Policy and for WPA2 encryption choose AES only. Now go to the bottom of that screen and choose PSk. We will do pre shared key for now so you get to understand the setup and make sure everything is working first. Now on the PSK format, choose ASCII and put your pre shared key in the input box. Make this simple to for testing. You don't want to put in symbols or anything like that. When you are don with that, check apply on the top right and test.
  Now you can repeat this with your other SSIDs just to test. Your guest network you can leave open for now to test open authentication.
  Here are some links for the WebAuth feature:
  https://supportforums.cisco.com/docs/DOC-13954
  http://www.cisco.com/en/US/products/ps6366/products_tech_note09186a0080b1a506.shtml
  Now if you want to use ACS with PEAP, here is some links for that:
  https://supportforums.cisco.com/videos/2499
  http://www.cisco.com/en/US/products/ps10315/products_configuration_example09186a0080bd1100.shtml
  https://www.google.com/url?sa=t&source=web&cd=8&ved=0CFQQtwIwBw&url=http%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3DWk_bRdmsQlA&ei=_BEyUeCYM8TdqAHHsICAAw&usg=AFQjCNF8PiVBQK1Kipb4j8AzD153bKtmgA&sig2=smHhNVmCr2of2NzbnDhGmw
  Well that is it, hopefully you can get the wireless up for testing and verifying everything works!
  Sent from Cisco Technical Support iPhone App

• Cisco-2504 restart itself

  hello,
  I use a Cisco-2504 wireless controller since few month, with six AP.
  I encounter none problem.
  but last week en today the controller resrat itself, so all my user are disconnect during six minutes (restart times) after all is OK.
  I don't understand what's happen.
  have you idea ? 
  Cisco-2504 Software Version 7.6.120.0
  log : in attach files.

  v7.6.130.0 is the code you should be on. Also make sure you upload the latest FUS 1.9.0.0 which takes 35-45 minutes to complete.  The log doesn't show much except for an internal error but that's its. 
  -Scott

• Cisco 2504 Configuration

  Hello,
  I have a cisco 2504 controller with 10 AP's. I have 3 WLANs. I would like to have one WLAN only broadcast to 2 of my 10 AP's? Is this possible? If so how would I configure the WLan?

  so i followed the configuration sheet that was listed in the article below
  http://www.cisco.com/en/US/docs/wireless/controller/7.0MR1/configuration/guide/cg_wlan.html#wp1128591
  Underneath the
  Creating Access Point Groups
  i followed it and made the modifications. But i am still able to see the one WLAN under all AP's?

• 100% Noob - Need Help for basic setup of Cisco 2504 and 1600 AP

  Hello,
  I am completely noob in (cisco) networking.
  I have to setup a basic but secure wireless network.
  I have a cisco 2504 and 2 APs 1600 + a random switch
  I have 4 ports on the controller.
  I want to keep the 1st port on the network for the controller management, plug my internet box on the 3rd port, and my switch on the 4th port. Then the AP will be on the switch.
  I am able to make something working when everythings are plugged on the switch, plugged in the first port (default management port).But this is not what I want.
  First thing, Is that possible ?
  1st port : office network
  2nd port : empty
  3rd port : Internet Box
  4th port : Switch + all APs
  Then, if that is possible, how should i configure the controller to make that work ? I am completely lost in the menus.
  I dont need a perfect configuration, just something simple and working.
  1 SSID, 10 DHCP addresses, block wireless users trying  to go on the office network.
  If anyone could help my doing that, It would be very nice.
  Thank you.

  You basically need two SSIDs one for corporate users and second for guests .check the link with  step by step config and brief details .
  http://www.cisco.com/c/en/us/support/docs/wireless-mobility/wireless-vlan/70937-guest-internal-wlan.html

• Cisco 2504 WCL and 1702i

  I have just purchase a Cisco 2504 along with two 2702i and one 1702i.
  The WLC works fine with both 2702i.
  Unfortunately, it won't locate the 1702i.
  I have just see that the problem could be that the 2504 is running software 7.6.120.0 and that I should upgrade.
  Unfortunately, I don't have a service agreement with Cisco and therefore can't!
  Am I the only one who thinks it unreasonable that you can purchase new products that are advertised to work together to then be told that your five day old WLC doesn't come with the latest firmware and that I only have RMA support and can't download the latest software?
  Regards
  Daniel

  Hi Scott
  Thankfully, TAC took pity on me and sent me the latest firmware.
  That has now fixed the problem and the 1702i is working fine with the 2504 WLC.
  I shall look into the cost of a service agreement for future problems.
  Regards
  Daniel

• Power adapter for cisco 2504 WLC

  Hi all ,
  Is there any other part numbers for cisco 2504 WLC power adpater other than
  PWR-2504-AC= ?
  Thanks,
  Regards,
  Vijay.

  No "PWR-2504-AC=" is the only power adapter option for 2504.
  Please check the datasheet:-
  http://www.cisco.com/en/US/prod/collateral/wireless/ps6302/ps8322/ps11630/data_sheet_c78-645111.html

• Installation of wildcard certificate on Cisco ASA 5525-X (9.1(3))

  Hello
  I would very much appreciate your help in regards to installation of a wildcard certificate on our Cisco ASA 5525-X.
  Setup:
  We have two Cisco ASA 5525-X in a active/passive failover setup. The ASA is to be used for AnyConnect SSL VPN. I am trying to install our wildcard certificate on the firewall, but unfortunately with no luck so far. As a bonus information, I previously had a test setup (Stand alone ASA 5510 - 8.2(5)), where I did manage to install the certificate. I do believe I am performing the same steps, but still no luck. Could it be due to that I am running a failover setup now and didn't previously or maybe that I am running different software versions? Before you ask, I've tried to do an export on the test firewall (crypto ca export vpn.trustpoint pkcs12 mysecretpassword) but this actually also failed (ERROR:  A required certificate or keypair was not found) even though the cert was imported successfully and is working as it should in the lab.
  Configuration in regards to certificate:
  crypto key generate rsa label vpn.company.dk modulus 2048
  crypto ca trustpoint vpn.trustpoint
  keypair vpn.company.dk
  fqdn none
  subject-name CN=*.company.dk,C=DK
  !id-usage ssl-ipsec
  enrollment terminal
  crl configure
  crypto ca authenticate vpn.trustpoint
  ! <import intermediate certificate>
  crypto ca enroll vpn.trustpoint
  ! <send CSR to CA>
  crypto ca import vpn.trustpoint certificate
  ! <import SSL cert received back from CA>
  ssl trust-point vpn.trustpoint outside
  Problem:
  When I try to import the certificate I receive the following error:
  crypto ca import vpn.trustpoint certificate
  WARNING: The certificate enrollment is configured with an fqdn
  that differs from the system fqdn. If this certificate will be
  used for VPN authentication this may cause connection problems.
  Would you like to continue with this enrollment? [yes/no]: yes
  % The fully-qualified domain name will not be included in the certificate
  Enter the base 64 encoded certificate.
  End with the word "quit" on a line by itself
  -----BEGIN CERTIFICATE-----
  <certificate>
  -----END CERTIFICATE-----
  quit
  ERROR: Failed to parse or verify imported certificate
  Question:
  - Does any one of you have any pointers in regards to what is going wrong?
  - Especially in regards to fqdn and CN, I also have a question. My config
  fqdn none
  subject-name CN=*.company.dk,C=DK
  would that be correct? I've read online, that fqdn has to be none, and CN should be *.company.dk when using a wildcard certificate. However when I generate the CSR and also when I try to import the certificate, I receive the following warning: "The certificate enrollment is configured with an fqdn that differs from the system fqdn. If this certificate will be used for VPN authentication this may cause connection problems".
  So do you have insight or pointers which might help me?
  Thank you in advance

  I also have a wildcard cert for my SSL VPN ASAs.
  When i import the cert I use ASDM instead of CLI...
  I import the wildcard as a *.pfx file and type in the password. works fine...
  Perhaps the format is incorrect?
  Also, my "hostname.domain.lan" does not match my "company.domain.com" fqdn domain but it still works. I only apply this wildcard cert to the outside interface not inside.
  Not sure if this helps but give ASDM a try?

• Reader X installation killed large format printing

  After installation of Reader X,
  I can no longer print large format on my Designjet 430 plotter. Under reader 9, I could plot just fine. The markup tools are fine, however, I need the ability to plot large format PDF. X will not let me plot anything larger than Letter size. I am using Windows 7 64 bit. HP does not have a driver on their website for windows 64 bit. As stated above I did not have a problem until I installed X. I would like to revert to Acrobat 9, but I cannot find a link to do so. Please let me know where I can find 9.

  Hmm will that's odd I am running Windows 7 Pro 64-bit.
  Personally I do like 9.4 but as you say like the edit/markup features in Reader X.
  Installing Adobe is so automatic now it's hard to get both on one system without running into problems.
  I am sure some has both successfully but I would think registry edits would need to be done, and it's more work than needed just for printing.
  If you find the print as image does not work make sure your print drivers are up to date, and you are able to select the paper size in printer properties in Adobe. I know for some this is an issue fortunately in my case checking that box was the solution, just not sure why it makes the difference.
  Hopefully Adobe will come up with something.

• Offline Installation of Large Group Packages

  Hey.  I'm trying to install xorg and fluxbox offline.  I followed the wiki article about Offline Installation and everything works fine up until the pacman -S command.  First I tried without building a repository, then with, but neither approach worked.
  I get past the package list confirmation and then pacman fails looking for the first package from the ftp repositories.  Everything is setup correctly and the repository and pacman.conf are all working fine.  Is there any way to do this without building a massive pacman -S statement listing all the packages?
  Mike

  I think you're have something set up wrong, since if you've downloaded the packages to the pacman's cache directory, it automatically picks them up. In other words, it tries to download *only if* it doesn't find them in cache.
  So for instance:
  - with the default setup, if you download the packages to /var/cache/pacman/pkg, it installs fine
  - with your custom repo, make sure that the repo is listed first in pacman.conf (so that pacman associates the packages with your repo, not with [extra])

• Re: Forte 3.0 Runtime Installation to large userbase

  Hi ka.
  You can install forte on every client with your NetWizard program, and
  finally, you can create a small VB application to write in registry the
  Forte configuration Information, you can also use an Install Shield Wizard
  Setup program, to install on every machine more keys to your registry.
  I hope this is useful
  Giampaolo Santarsiero
  e-mail: [email protected]
  e-mail: [email protected]
  To unsubscribe, email '[email protected]' with
  'unsubscribe forte-users' as the body of the message.
  Searchable thread archive <URL:http://pinehurst.sageit.com/listarchive/>

  Hi ka.
  You can install forte on every client with your NetWizard program, and
  finally, you can create a small VB application to write in registry the
  Forte configuration Information, you can also use an Install Shield Wizard
  Setup program, to install on every machine more keys to your registry.
  I hope this is useful
  Giampaolo Santarsiero
  e-mail: [email protected]
  e-mail: [email protected]
  To unsubscribe, email '[email protected]' with
  'unsubscribe forte-users' as the body of the message.
  Searchable thread archive <URL:http://pinehurst.sageit.com/listarchive/>

• Cisco 2504 OEAP NAT directly connect AP's no ip

  I setup my 2504 to work with OEAP.  When I enabled NAT on the management interface the one AP I have directly connected to the WLC is no longer getting an IP address.  Any idea why this is?

  First, it is not recommended to have an AP directly connected to the WLC, you really need to connect it to an upstream switch and let it connect that way.
  My first thought would be that you need to take a look a the below link that talk about how the NAT ip commands work.
  http://www.cisco.com/en/US/docs/wireless/controller/7.0MR1/command/reference/cli70MR1commands.html#wp14087790
  HTH,
  Steve
  Please remember to rate useful posts, and mark questions as answered