10-12-2007 04:11 PM - edited 07-03-2021 02:45 PM
I have a WLC4402 and all of a sudden I can't login through the interface I have been using for a couple years. I get the Certificate popup asking to accept the cert and as soon as I click Yes it gives me a "page cannot be found". I can log in through other interfaces though.
Thanks in advance for any help you may be able to give.
Solved! Go to Solution.
10-16-2007 07:27 AM
In the immortal words of E.T. "Call HOME!" ie call TAC. You have a real life situation lol. I haven't seen this in nearly 2 years.
10-12-2007 05:15 PM
I have seen this issue if you have an interface on the WLC that is also part of a wired LAN subnet. Make sure you separate your wireless subnets from your wired subnets.
10-15-2007 04:43 AM
we do have interfaces on the WLC that are also on the wired LAN. Different interface IP's. The problem is that it was working fine for a couple of years and just stopped working a week or so ago. We are also using software version 3.2.195.10. I think this problem may have started when we updated the software.
10-15-2007 04:51 AM
I could be that the upgrade caused the issue. It is still best practice to seperate the two. I have ran into that issues with the 4.0 and 4.1 code.
10-15-2007 05:16 PM
Can you telnet or ssh to the controller?
10-15-2007 06:18 PM
Yes I can SSH and telnet to the controller. It's just https that won't allow a connection.
10-15-2007 07:58 PM
ssh to the controller and try this...
>show network
to see if secure web mode is enabled, if not
>config network secureweb enable
10-16-2007 04:04 AM
When you try to https, are you on the wired or on the wireless. There is an option to allow or not allow wireless management. Also I you do have disabled and you are wired and on wireless, it will not work. Verify you can get to the WLC (https) from only a wired laptop or pc.
10-16-2007 05:37 AM
-Yes the Secure Web Mode is enabled.
-And yes I am on wired. I do have the allow wireless management option enabled. I can log in through https on other interfaces but not the interface I have been using in the past.
10-16-2007 05:46 AM
What I meant is make sure you are on the wired, but you don't have your wireless on. also the interface you should be able to https to is the management interface.
10-16-2007 05:52 AM
Yeah I have the wireless off. And I can access the management interface through https. But we had a seperate interface using the IT VLAN to allow us to manage the devices without giving access to the entire management VLAN. It's not a huge deal that I can't log in using that interface since I can still manage the devices using the management interface. I was just curious as to why it would work a couple weeks ago and just stop all of a sudden. I'm leaning towards the possibility that the recent software upgrade is responsible for this.
10-16-2007 06:04 AM
James,
Have you rebooted the WLC? There is a known issue with a corruption of the session as it relates to the certificate on the controller. It was caused by a memory leak I think. Anyway, try rebooting the box. That usually fixes the problem.
Dennis
10-16-2007 06:11 AM
Yeah I rebooted it twice already. I even tried to regenerate new certificates. Here's the funny thing though, it says the cert is valid from Nov 8th 2027 through Nov 8th 2037. I'm not an expert on Certificates but this doesn't seem normal.
10-16-2007 06:15 AM
Nope. Check the date and time on the controller. If the date and time are correct you will need to open a tac case as the certs are way off on the timestamp piece and will need to be rebuilt.
10-16-2007 06:18 AM
That is how the certificates are in the WLC. The only way I can see that you once were able to manage via the IT VLAN to the IT VLAN WLC Interface is if you had manage via wireless enabled. With the 4.0 and the 4.1 I know for sure you can't access other interfaces other than the management.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: