wireless user tracking issue

Unanswered Question
May 26th, 2008

Hello sir,

We are using cisco works LMS 3.0 in our network.

In our network we have access point 1130 Object ID : 1.3.6.1.4.1.9.1.618 , Cisco IOS Software, C1130 Software (C1130-K9W7-M), Version12.3(8)JA2.

In campus Manager, user tracking we are unable to trace the wireless clients who are connected to these wireless access points.

In report generator I have selected wireless report option with wireless end hosts but it is displaying the error no wireless end host found.

In user tracking acquisition portal it displaying all end host Mac address accept wireless clients.

For your clarification, snmp community string is configured correctly and we are able to view wireless access point in cisco view and campus manager topology.

We are having problem only in user tracking.

What we have to do in order to solve this issue.

Thank you,

With regards,

kareem

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3.8 (4 ratings)
Loading.
mkareemashraf Mon, 05/26/2008 - 05:31

wireless access point is Autonomous Access point not light weight Access point

mkareemashraf Wed, 05/28/2008 - 01:50

Sorry,due to security reason we cannot give the complete running configuration .

Please specify exactly what you need,so that i can send it.

thanks,

kareem

swizzlestick Wed, 05/28/2008 - 05:31

CiscoWorks LMS doesn't really support WLANs. He can find the wireless users, but he connects them to the switch the AP is connected to.

for example: if AP1 is connected to Port1 on Switch1, then the wireless users connected to AP1 will be connected to Port1 on switch1.

Just look in the user tracking list on the homepage of campus manager. You will probably find that some switchports have multiple users, even the AP will be seen as user to that port.

if you want full management of you WLAN you need to install extra software like:

http://www.cisco.com/en/US/products/sw/cscowork/ps3915/

dainat-bis Wed, 05/28/2008 - 05:44

Not in our setup ( LMS 3.0.1 ). All switchports with a Access-Point connection don't show any mac-address on these ports.

Joe Clarke Wed, 05/28/2008 - 07:21

Campus can find wireless users on APs. The catch is the APs need to be configured for trunking and multiple VLANs. Campus will poll the Q-BRIDGE-MIB to get the MAC address information. If you are not using multiple VLANs, then the Q-BRIDGE-MIB will not be populated, and this will not work.

mkareemashraf Sat, 05/31/2008 - 22:52

Thanks for u r support. I am attaching my AP configuration for u r reference .

Please check the configuration and guide us what solution suits to our network.

regards

kareem

Joe Clarke Sat, 05/31/2008 - 23:13

User Tracking should work for you. Since we added WLSE integration in Campus Manager 5.0, we disabled AP acquisitions by default. Since you are using multiple VLANs, and if you don't already have a WLSE managing this AP, add the following to NMSROOT/campus/etc/cwsi/ut.properties:

APRunCollection=true

Then run a new User Tracking acquisition. The users on this AP should show up.

mkareemashraf Sun, 06/01/2008 - 22:20

We have added APRunCollection=true at the end of UT.properties and then we ran the user tracking acquisition many times. However the access point clients are still not appearing in our Campus Manager.

I am attaching a selected debug file output for UT Service, please review it and let us know the corrective measures.

Since our Wireless access point is connected to a trunk port on the floor switches, do we need to select one the the following options in UT >> Admin >> Campus User tracking acquisition >> Configure trunk for End host discovery

Enable End Host Discovery on all Trunks

Enable End Host Discovery on selected Trunk(s)

Once again thanks in advance

Regards

Kareeem

Joe Clarke Sun, 06/01/2008 - 22:27

Looks like there is a problem fetching the VLAN data from this AP. Please post the output of an snmpwalk of dot1qNumVlans (1.3.6.1.2.1.17.7.1.1.4).

Joe Clarke Mon, 06/02/2008 - 09:21

This looks fine. Therefore, I suspect an issue with Data Collection. Run a new Campus Data Collection followed by a new User Tracking acquisition. If the problem persists, post the ani.log.

Edit: looks like you'll need to enable a little extra debugging before running the Data Collection. Go to Campus Manager > Admin > Debugging Options > Data Collection, and enable debugging for devices.AccessPoint. then run your Data Collection.

mkareemashraf Tue, 06/03/2008 - 21:57

Thanks for your support to solve our problem.

As per your reply, we have succesfully completed the requirement to get the Ani log file of acces point.

I am attaching the Anilog file.Please review the log file and guide us to solve this issue.

thanks,

Attachment: 
Joe Clarke Tue, 06/03/2008 - 23:25

I don't see the error I was expecting to see which may be a good thing. I assume that you tried a User Tracking acquisition after running this Data Collection, and still did not see any wireless users. If so, I recommend you open a TAC service request at this point. I do not have any APs on hand that I can easily test this, and some more debugging will be required to find out why the device domain is not being properly obtained.

mkareemashraf Wed, 06/04/2008 - 03:18

Thanks a lot for your support.

we ran evaluation version and will buy the license soon (so we have no TAC for this software)

Once again Thanks for your support.

mkareemashraf Fri, 06/06/2008 - 22:09

Hello sir,

Presently we cannot open TAC case with cisco.

In order to solve our problem,if you need any more information about our network we can provide you.

IF this problem is solve,many of our major issues will be solved.

your support will be appreciated.

regards,

kareem

Joe Clarke Tue, 06/10/2008 - 16:31

I was able to set this up, and found that there is a bug. I can produce a patch, but you will need to open a TAC service request to get it.

mkareemashraf Tue, 06/10/2008 - 21:30

Thanks for your support.please can u provide us the BUG-ID or this BUG will be fixed in next released of ciscoworks lms 3.1 as we will directly purchase this version.

Joe Clarke Tue, 06/10/2008 - 22:41

The bug ID is CSCsq72800, but due to the fact that LMS 3.1 is almost done, the bug will not be fixed in that release. It should be fixed in the Campus Manager service pack to follow 3.1, however.

mkareemashraf Mon, 03/09/2009 - 05:06

Thanks for your support.

sir,we have updated campus manager with latest 5.0.4 version.

After updation we didn't get the wireless clients and ip phones hostnames & IP address.We are only getting their mac- address.

sir ,plese help me .since this bug CSCsq72800 is cleared in 5.0.4 version but problem still persists.

thanks,

mohammed

Joe Clarke Mon, 03/09/2009 - 09:18

Before AP acquisition will work, you must have APs configured for multiple VLANs, the property APRunCollection must be set to either true or be missing from ut.properties, and you will need to run a new Campus Data Collection after upgrading to CM 5.0.4 before UT will find end hosts. Verify all of this is correct.

mkareemashraf Tue, 03/10/2009 - 00:28

Dear Jclarke,

The property APRuncollection is missing . After running campus manager data collection and user tracking many times we only got the mac address of wireless users.

the hostname/Ip is not dispalyed.

we are using these devices :

Wireless AP Model: AIR-AP1131AG-A-K9

Wireless AP Version: 123-8.JA2 (C1130-K9W7-M)

For IP Phones:

Floor Switch Model: Cat3560G48PS

Floor Switch Version: 12.2(35)SE5 (IP Base)

Regarding multiple vlan and user tracking screen shot, i am attaching file for your information

Username=We are not running the Active Directory Script, is that required?

Reverse Zones (PTR) are configured for the Wireless users' pool.

plese help us to get user names and ip address of clients.

thanks

mohammed

mkareemashraf Tue, 03/10/2009 - 00:35

Dear Jclarke,

The property APRuncollection is missing . After running campus manager data collection and user tracking many times we only got the mac address of wireless users.

the hostname/Ip is not dispalyed.

we are using these devices :

Wireless AP Model: AIR-AP1131AG-A-K9

Wireless AP Version: 123-8.JA2 (C1130-K9W7-M)

For IP Phones:

Floor Switch Model: Cat3560G48PS

Floor Switch Version: 12.2(35)SE5 (IP Base)

Regarding multiple vlan and user tracking screen shot, i am attaching file for your information

Username=We are not running the Active Directory Script, is that required?

Reverse Zones (PTR) are configured for the Wireless users' pool.

Note: In access point we are geting hostname ,ip and mac-address of users.

plese help us to get user names and ip address of clients.

thanks

mohammed

Attachment: 
Joe Clarke Tue, 03/10/2009 - 00:43

My code is working, then. All it ensures is that the MACs will be found. From there, the standard set of rules apply for getting IP addresses and hostnames. You must have a router which has these MACs in its ARP cache properly Data Collected by Campus Manager. The router must be showing up with a green router icon on the Topology map.

Once the IP is obtained from the ARP cache, then UT will use the DNS PTR records to get the hostname.

For the username, you will need to be using the UTLite program on your end hosts to feed the username data to User Tracking.

Farrukh Haroon Tue, 03/10/2009 - 01:43

Thanks for your help.

It seems we are stuck again back to the FWSM arp cache issue:

http://forum.cisco.com/eforum/servlet/NetProf?page=netprof&forum=Network%20Infrastructure&topic=Network%20Management&topicID=.ee71a02&fromOutline=&CommCmd=MB%3Fcmd%3Ddisplay_location%26location%3D.2cc09f77

Is it possible to convert the 'show arp' output on the FWSM to 'static' arp entries on a router and then add this dummy router in CiscoWorks? Since FWSM has multiple subnets, the adding router + increasing mac-learning timeout option will not be feasible for us.

Regards

Farrukh

Farrukh Haroon Tue, 03/10/2009 - 03:57

Hello Mr. JClarke

I see that the FWSM supports gathering the 'show arp' output using SNMP mibs, is there any chance that Cisco would add user tracking support for the FWSM in the near future based on this?

http://www.cisco.com/en/US/docs/security/fwsm/fwsm40/configuration/guide/monitr_f.html#wp1103902

"IP-MIB

The FWSM supports browsing of the following table: ipNetToPhysicalTable

The following examples show how entries displayed through the show arp command can be retrieved through SNMP operations.

....

"

Regards

Farrukh

Joe Clarke Tue, 03/10/2009 - 10:31

This will not happen since the FWSM does not support CDP, and will not be properly supported by Campus Manager. If support was added, the FWSM would also be unconnected, and would not show up on the main topology map.

Joe Clarke Tue, 03/10/2009 - 10:32

The dummy router approach will work provided you can put a router (or an interface from a router) on multiple Vlans. You would still need to point the clients to the dummy router which would then redirect to the FWSM for actual routing.

Actions

This Discussion