WLC config analyzer - AP Aprox Cert Expiration

Similar Messages

• Unknown error message in WLC Config Analyzer

  Hello,
  does anybody know what means the following error message from WLC Config Analyzer?
  30026,General: Network state not matching: WLC3-Ortona,on 11g. My state :True, its state :True. This may introduce join issues on APs
  My WLC IOS version is 7.0.98.0
  Thanks
  Johnny

  Hello,
  does anybody know what means the following error message from WLC Config Analyzer?
  30026,General: Network state not matching: WLC3-Ortona,on 11g. My state :True, its state :True. This may introduce join issues on APs
  My WLC IOS version is 7.0.98.0
  Thanks
  Johnny

• WLC Config Analyzer and AP Model / End of Sale APs

  Be nice if the WLC Config Analyzer spit out a list of end of sale/end of life.  I know the some TLMA type tools will do this with SNMP.
  I've got a show run-config from a lot of 5508s running 7.6 and want to recommend older APs be replaced, however each controller has almost 500 APs on it.  I could do a "show ap summary" and then some excel magic to find them.
  Be nice if I could do a sort/statistic of what model APs across many 5508s.

  You need to configure the AP's in h-reap or FlexConnect which it is called in version 7.2.  This way you can specify what ssid is mapped to what local vlan.
  http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a00807cc3b8.shtml
  http://www.cisco.com/en/US/products/ps10315/products_tech_note09186a0080736123.shtml

• Backing up a WLC config

  I have several WLC's in our enviornment and one WCS managing them. I use Orion to monitor and backup the configs to all our devices, which stores all them all in a organized database in txt format, this way I can simply cut and paste the config back into a device when needed, however I have tried to backup our WLC in the same manner and have been unsuccesful in every attempt.
  Does anyone know of a way to backup all WLC configs in txt format using Orion?

  Text backups generally don't work with WLC's in my experience. I back up my controllers via WCS. The difference is that Orion is probably doing something like a "show run", which doesn't give you everything you need to restore a controller to a previous state. WCS makes the same kind of XML backups that would be created if you used the web management interface on the controller to create a backup. The XML backups are pretty much one stop shopping for everything you need to get a controller back up and running (although you should always test your backup process).
  Robert

• SCCM 2012 Default self signed Cert expired...

  SCCM 2012 Default self signed Cert expired - how do I renew it?

  The default selfsigned cert that gets generated with the installation - can be found in administration - security - Certificates  (This is Sccm 2012 RTM)
  Yes, I know this is an old post, but I’m trying to clean them up. Did you solve this problem, if so what was the solution?
  I will bring this back to Kent point, which one of the Certs are you talking about. You can see form the screenshot that I have 6 certs, 3 DP and 3 Boot cert. You can also see that the 3 DP server have a 100 year life and the 3 Boot certs only have 1 year.
  If you are talking about the boot certs then just create the boot image.
  Garth Jones | My blogs: Enhansoft and
  Old Blog site | Twitter:
  @GarthMJ

• WLC 4400: User Account must not expire

  Hi all.
  Currently we have wireless guest user accounts added onto the wlc and they expire in 30days. No problem with this.
  However, the wireless infrastructure is to be used by internal employees with local account db held on wlc. Can this be setup such that their account will never expire?
  thanks a lot
  Ajaz

  Hi Ajaz,
  Most possible my friend
  Local Net Users
  You can change a guest user account with a non-zero lifetime to another lifetime value at any
  time while the account is active. However, to make a guest user account permanent using the
  controller GUI, you must delete the account and create it again. If desired, you can use the config
  netuser lifetime user_name 0 CLI command to make a guest user account permanent without
  deleting and recreating it.
  From the Lifetime drop-down boxes, choose the amount of time (in days, hours, minutes, and seconds)
  that this guest user account is to remain active. A value of zero (0) for all four fields creates a permanent
  account.
  http://www.cisco.com/en/US/docs/wireless/controller/5.2/configuration/guide/c52users.pdf
  Cheers!
  Rob
  Please support CSC Helps Haiti
  https://supportforums.cisco.com/docs/DOC-8895
  https://supportforums.cisco.com/docs/DOC-8727

• Clear WLC config (on WiSM v4.0.179.8)

  I did,
  clear config,
  then
  reset system
  (without saving).
  Then WLC rebooted and went into setup dialog as expected.
  What was not expected was that the,
  User:
  Password:
  were not back to default of admin, admin but had retained their easlier settings.
  Why were User and Password not reset to default values?
  Thanks, MH

  My apologizes on the below post - do you get the same response when you reboot the WLC and hit 'ESC' for additional boot options - and then clear the config this way?

• Binary WLC config - does it hols AP config?

  Can I put binary config backup from a working WLC (WiSM in this case) into a factory default WLC & be up & running again? Specifically, is AP config in binary file? (Cisco Doco states AP config is not in "show running-config" output for example).
  After putting binary file in factory default WLC I know I'll have to reconfigure Mobility Group since it refers to MAC addresses of other controllers. Any other gotchas like this?
  Thanks, MH

  If you take a backup of the config of your WLC, you can easily re-apply that to another WLC of the same type & code version.
  When you ask about the config holding the AP Config, I'm not sure what you mean. The AP it's self will store much of it's own configuration in local Flash - is there something specific you're aiming at?

• WLC config dubt

  Dear All,
  I am writing the wlc configuration on the paper, I do not have yet the wlc 5508 here. It is the first time that i configure a wlc.
  I have choose to connect the wlc to two different cisco 3750 that will be the core of a small network (30 users)
  To connect the wlc I have choose to do not use LAG but to configure two different APMANAGER1 and APMANAGER2, then i have assigned them two port1 and port2:
  config interface create APMANAGER1 99
  config interface address APMANAGER1 172.26.104.2 255.255.255.0 172.26.104.1 <-------this is the core1 layer 3 interface ip address
  config interface vlan APMANAGER1 99
  config interface port APMANAGER1 port1
  config interface dhcp APMANAGER1 172.26.100.61 172.26.100.62
  config interface ap-manager APMANAGER1 enable
  config interface create APMANAGER2 99
  config interface address APMANAGER2 172.26.104.3 255.255.255.0 172.26.104.254 <-------this is the core2 layer 3 interface ip address
  config interface vlan APMANAGER2 99
  config interface port APMANAGER2 port2
  config interface dhcp APMANAGER2 172.26.100.61 172.26.100.62
  config interface ap-manager APMANAGER2 enable
  then I have configured 16 different wlan such as:
  config interface address Direzione 172.26.100.98 255.255.255.224 172.26.100.97
  config interface vlan Direzione 5
  config interface dhcp Direzione 172.26.100.61 172.26.100.62
  config interface quarantine vlan Quarantena 23
  config wlan enable 5
  My question is how I can assign each wlan to both APMANAGER? If one of the two port1 and port2 fails I want tha all wlan take over on the aviable port.
  Thanks & Regards,
  Igor.

  You're confused on several notions :
  -Most minor is that the management interface on the 5508 (only this model) also acts as an ap manager. So you just need to create one extra ap manager to have 2.
  -Then there's the big confusion between wlan (SSID) and interface/vlan. You said :
  then I have configured 16 different wlan such as:
  config interface address Direzione 172.26.100.98 255.255.255.224 172.26.100.97
  config interface vlan Direzione 5
  config interface dhcp Direzione 172.26.100.61 172.26.100.62
  config interface quarantine vlan Quarantena 23
  config wlan enable 5
  This is an interface configuration. Not a wlan/SSID configuration. But your last command is to enable SSID 5 although you are not showing the commands to create an SSID 5 with appropriate WPA settings and so on ...
  -Last confusion is that ap managers are interface with which the APs are building their tunnel towards the WLC. It has nothing to do with client traffic. So you cannot bind an ap manager to SSIDs or dynamic interfaces.
  Just have one AP manager configured on each port. If one port fails. All the APs who joined through that port/ap manager (logically 50% of the APs) will be disconnected and quicly reconnect through the other ap manager interface. Nothing else to do.
  Nicolas

• Webgate simple cert expired but still working

  Our webgate simple cert has expired but user are still able to login successfully. Access server certificates are still valid. I understood that both webgate and access server certificates should be active. We are using 10.x version. We are seeing these errors in the webgate logs..
  "Oracle AccessGate API is notinitialized." raw_code^204
  Exception thrown during WebGate initializat
  Btw, there are multiple webgates with expired certs and only one is throwing these errors.
  Thanks.

  Did you run WebGate Configuration tool?
  You will need the below information to upgrade the certs:
  * Your installation location
  * Webgate ID
  * Webgate Password
  * Global Passphrase
  * Access Server ID
  * Access Server Host Name
  First, you need to correct the configuration files used to generate the certificate, making the certificate generated good for new cert period.
  1. cd /+installation path+/oblix/tools/openssl
  2. using vi (or notepad on Windows) edit openssl.cnf and change default_days = 365 to 3650 (If using a new cert for 10 years)
  3. using vi (or notepad on Windows) edit openssl_silent.cnf and change default_days = 365 to 3650 (if using a new cert for 10 years)
  Next, you need to run the Webgate configuration tool:
  1. cd /+installation path+/oblix/tools/configureWebGate
  2. Run the configuration tool by typing ./configureWebGate -i /installation_location -t WebGate
  Edited by: Notorious Non-Confirmist on Jan 27, 2010 11:23 AM

• Copy WLC Config from 2006 to 2106

  I've had a WLC 2006 for a while. Just purchased the WLC 2106 as an upgrade. Is it possible to copy the config of the 2006 to the 2106? I don't want to have to manually recreate the WLANs and reassociate the APs with the new controller. I have tried saving the 2006 config to a TFTP server and uploading it to the 2106, but I get an error saying file type is not supported.

  I did jsut notice there is a bootloader update available for the 2106. I didn't look for it before, I thought I read the 2106 couldn't have the bootloader updated.
  "Note - You can use this command to verify the boot software version on all controllers except the 2106 because the bootloader is not upgradable on the 2106 controller."
  Can you verify if this is correct as well as having a bootloader mismatch is causing my config copy issues?

• WCS WLC Config Files

  I am finding it difficult to locate the backup config files for my controllers on the WCS server.  Can someone tell me the file extension and the file folder where these files are saved so I can verify they are getting saved?  This seems to be more complicated to find than it needs to be.                  

  When WCS was installed it asked you for a folder name where to store these files. Go to Admin--Settings--Server Settings and you will see the drive and folder name. Look in these .. Should be under TFTP folder
  "Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
  ‎"I'm in a serious relationship with my Wi-Fi. You could say we have a connection."

• What happens when the Apple Configurator Certs Expire?

  So I was looking at some iPads I deployed sometime ago using Apple Configurator.  Last summer I brough them all in (about 220 units,) wiped them, used configurator to install iOS 5.1, all supervised, and named according to the Teacher they were given out to.  Haven't seen the iPads since.  Last few weeks I've had a few come back with misc problems and I noticed within the Supervision Profile the "Signing Certificate" and "Certificate" for Apple Configurator both expire on August 13, 2013.  What will happen on/after August 13, 2013 with these units? 

  From another site, I got a tip that if you use Keychain Access, double click on the AppleConfigurator (MAC address of machine) entry (it'll have a red X badge & the date it expired), open up the Trust disclosure triangle and set "When using this certificate"t o Always Trust. The red X badge changes to a blue + badge.

• UWL config-S ystem received an expired SSO ticket not found in system

  Hi All,
    We are getting following erro while configuring UWL.
  Exception type:com.sap.netweaver.bc.uwl.connect.ConnectorException Message:uwlExceptionID: 1179143938021 :uwlExceptionID: 1179143938021 JCO Function template USER_NAME_GET:SAPR3CLNT900WF:com.sap.mw.jco.JCO$Exception: (103) RFC_ERROR_LOGON_FAILURE: System received an expired SSO ticket not found in system
  Please HELP.
  Rgds
  Ganga

  hi ganga,
  may be there is problem with uwl configuration. u try with this link....
  hope ur error will clear........
  <b>How configure UWL in Portal 7.0,
  Problem configuring UWL,</b>
  regards
  bhargava

• Measuring the result of AP/WLC config changes.

  What can I do to see the affects of reducing power levels and disabling certian data rates in our environment?
  We have 5508 WLC running 7.4 and a mixture of 3502, 3602, and a couple of 1142s.

  The best way to visibly see the difference would be to walk around with a survey laptop in passive mode.  You could use AirMagnet or Ekahau to do this and it will give you a heatmap of the signal strenghts
  HTH,
  Steve
  Please remember to rate useful posts, and mark questions as answered