AP audit configuration
An AP audit configuration is a wireless network management feature that
-
detects and reports synchronization issues between the controller and an AP
-
provides both real-time and periodic comparison of configuration and operational states, and
-
supports automated error reporting using syslog for discrepancies.
In Cisco IOS XE Amsterdam, Release 17.3.1, two methods are implemented to support AP audit configuration.
-
Config Checker
-
Config Audit
Config Checker audits the application of wireless policies during the AP join phase. Any discrepancies detected at this stage are reported to the controller. This function is built-in and cannot be disabled. When you configure AP attributes such as name, IP address, controller information, tag, mode, radio mode, and radio admin state, the AP parses the CAPWAP payload configuration from the controller. It then reports any detected errors to the controller using the proper code. If a discrepancy is detected, the controller flags errors using the syslog.
Config Audit periodically compares operational states between an AP and the controller after the AP joins and while it remains connected. When discrepancies are found, Config Audit reports them immediately on the controller. You can view a consolidated report at any time. By default, this functionality is disabled. You can configure the periodic auditing interval.
Use the ap audit-report command to enable and configure audit report parameters. When you trigger the audit, the AP sends its configurations to the controller. The controller compares these configurations with the current settings. If there is a mismatch, the controller reports the error using syslog.
Feature history
Feature Name |
Release Information |
Feature Description |
---|---|---|
AP audit configuration |
Cisco IOS XE 17.3.1 |
This feature enables real-time and periodic detection, reporting, and automated syslog alerting of synchronization discrepancies between the wireless controller and APs. |