Guest

Cisco Wireless Control System

Field Notice: FN - 62490 - Wireless Control System (WCS) Version 4.0 and Wireless LAN Controller (WLC) Version 4.0 Software

Hierarchical Navigation

August 3, 2006

NOTICE:

THIS FIELD NOTICE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTY OF MERCHANTABILITY. YOUR USE OF THE INFORMATION ON THE FIELD NOTICE OR MATERIALS LINKED FROM THE FIELD NOTICE IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS FIELD NOTICE AT ANY TIME.

Products Affected

Product

Products Affected

WCS-LOC-UPG-K9 - SW version 4.0

WCS-STANDARD-K9 - SW version 4.0

WCS-WLSE-UPG-K9 - SW version 4.0

Problem Description

When a Wireless Control System (WCS) version 4.0, Wireless LAN (WLAN) template is applied to controllers running version 4.0 and Wi-Fi Protected Access WPA or WPA2 is selected as the Layer2 security policy, the Wireless LAN provisioned using this template is programmed without any 802.1x security policy. This problem does not affect individual WLAN configurations using WCS version 4.0.

Background

WLAN template Layer2 security policy options Wi-Fi Protected Access WPA or WPA2 were introduced for controllers with version 3.x. For controllers with version 4.0, customers are advised to use WPA1 or WPA2 Layer2 security policy in the WLAN template. Version 3.x Layer2 security policy options were carried over into version 4.0 software release to maintain backward compatibility between WLC version 3.x and WLC version 4.0 releases.

See the Cisco Wireless Control System Configuration Guide for more information.

Problem Symptoms

When a Wireless Control System (WCS) version 4.0 WLAN template is applied to controllers running version 4.0 and WPA or WPA2 is selected as the Layer2 security policy, the WLAN provisioned using this template is programmed without any 802.1x security policy.

Workaround/Solution

  1. Only apply a WPA1 or WPA2 WLAN template Layer2 security policy to controllers running version 4.0 software.

  2. Use a WPA or WPA2 WLAN template Layer2 security policy to Controllers running version 3.x software.

Please see the following screen shots below:

fn62490_j3c5cg.jpg

Fig 1 Configure | Controller Templates | Select WLAN on the controller template page

fn62490_j3dytq.jpg

Fig 2: Create new template with WPA as Layer 2 Security policy

fn62490_j3dz4f.jpg

Fig 3: Save the template and you get an option to Apply to Controllers

fn62490_j3dzaj.jpg

Fig 4 Select the controller from the list which is running a 4.0 image

fn62490_j3dzit.jpg

Fig 5: Template applied successfully to the controller.

fn62490_j3dzsp.jpg

Fig 6: Now check the WLAN on the Controller to which the Template was applied. You will find the Layer2 security option shown as none.

DDTS

To follow the bug ID link below and see detailed bug information, you must be a registered user and you must be logged in.

DDTS

Remarks

CSCse88985 (registered customers only)

WCS removes WPA 1&2 encryption from SSID's when pushing down config - Track the DDTS to wait for a fix

Revision History

Revision

Date

Comment

1.0

03-AUG-2006

Initial Public Release

For More Information

If you require further assistance, or if you have any further questions regarding this field notice, please contact the Cisco Systems Technical Assistance Center (TAC) by one of the following methods:

Receive Email Notification For New Field Notices

Product Alert Tool - Set up a profile to receive email updates about reliability, safety, network security, and end-of-sale issues for the Cisco products you specify.