Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.1.x

Introduction to Cisco Embedded Wireless Controller on Catalyst Access Points

The Cisco Embedded Wireless Controller on Catalyst Access Points is a visualized version of the Cisco IOS XE-based controller software on Catalyst access points. In this solution, a Catalyst access point (AP) that is running the Cisco Embedded Wireless Controller on Catalyst Access Points software, is designated as the primary AP. Other APs, referred to as subordinate APs, associate to this primary AP.

The Cisco Embedded Wireless Controller on Catalyst Access Points provides enterprise-level WLAN features while maintaining operational simplicity and affordability. This solution is targeted at small and medium-sized business (SMB) customers or distributed enterprises, and can be run at single site deployments.

  • The controllers come with high availability (HA) and seamless software updates. This keeps your services on always, both during planned and unplanned events.

  • The deployment can be managed using a mobile application, Cisco Digital Network Architecture (DNA) Center, Netconf/YANG, web-based GUI, or CLI.


Note

Explore the Content Hub, the all new portal that offers an enhanced product documentation experience.

  • Use faceted search to locate content that is most relevant to you.

  • Create customized PDFs for ready reference.

  • Benefit from context-based recommendations.

Get started with the Content Hub at content.cisco.com to craft a personalized documentation experience.

Do provide feedback about your experience with the Content Hub.


What's New in Cisco IOS XE Amsterdam 17.1.1t

There are no new features or enhancements in this release.

What's New in Cisco IOS XE Amsterdam 17.1.1s

This section provides information about the new features and enhancements in this release.

CCO Image Download Method: This feature allows you download the AP and controller software images from the CCO server. The CCO image download method can be triggered using both the GUI and CLI.

Cisco Umbrella Integration: From this release onwards, Cisco Umbrella Integration is supported on the Embedded Wireless Controller APs.

Controller SMU: This feature is supported on the Embedded Wireless Controller APs from release 17.1.1s. The Software Maintenance Upgrade is a package that can be installed on the system to provide a patch fix or a security resolution to a released image.

Day 0 Behavior : PnP Config Download (Device): The Cisco Network Plug and Play solution provides a simple and near-zero touch deployment experience for enterprise network customers using Cisco Embedded Wirelesss Controller for Catalyst Access Points. The PNP server is hosted on the Cisco DNA Center.

EoGRE: Ethernet over GRE (EoGRE) is an aggregation solution for grouping Wi-Fi traffic from hotspots. This solution enables customer premises equipment (CPE) devices to bridge the Ethernet traffic coming from an end-host, and encapsulate the traffic in Ethernet packets over an IP GRE tunnel.

IPv6: This feature is supported from version 17.1.1s onwards. IPv6 is a packet-based protocol used to exchange data, voice, and video traffic over digital networks. IPv6 is based on IP, but with a much larger address space, and improvements such as a simplified main header and extension headers. The architecture of IPv6 has been designed to allow existing IPv4 users to transition easily to IPv6 while continuing to use services such as end-to-end security, quality of service (QoS), and globally unique addresses. The larger IPv6 address space allows networks to scale and provide global reachability.

HTTPS, DNS, and URL Filtering: The DNS-based ACLs are used for wireless client devices. When using these devices, you can set pre-authentication ACLs on the embedded wireless controller to determine the data requests that are allowed or blocked.

NAT Support for M&M Cloud: Network Address Translation - Network Address Translation (NAT) allows a device to act as an agent between the Internet (public) and a local network (private). It maps the controller's intranet IP addresses to a corresponding external address.

Scheduled download of controller configuration: In a Cisco Embedded Wireless Controller network, you can schedule the download of a configuration file from the server. This enables reuse of the software configuration conveniently across the deployment wherever similar configuration is required. Scheduled download operations will not impact routine data transfer over the network.

SMU: AP Device Pack This feature introduces a new AP model in your wireless network using the SMU infrastructure without the need to upgrade to the new controller version. This solution is termed as AP Device Package (APDP).

SMU: AP Service Pack This feature provides a fix for a subset of AP models. It helps you to pre-download the AP images and activate these images (through rolling upgrade) to a subset of AP models. This solution is termed as AP Service Package (APSP).

Support for SFTP and SCP to upload core file: This feature enhancement adds SFTP as an additional mechanism for the transfer of files from the AP to an external server.

Supported Cisco Access Point Platforms

The following Cisco access points are supported in the Cisco Embedded Wireless Controller on Catalyst Access Points network. Note that the APs listed as primary APs can also function as subordinate APs.

Table 1. Cisco APs Supported in Cisco Embedded Wireless Controller on Catalyst Access Points

Primary AP

Subordinate AP

Cisco Catalyst 9115 Series

Cisco Catalyst 9117 Series

Cisco Catalyst 9120 Series

Cisco Catalyst 9130 Series1

Cisco Aironet 1540 Series

Cisco Aironet 1560 Series

Cisco Aironet 1815i

Cisco Aironet 1815w

Cisco Aironet 1830 Series

Cisco Aironet 1840 Series

Cisco Aironet 1850 Series

Cisco Aironet 2800 Series

Cisco Aironet 3800 Series

Cisco Aironet 4800 Series

1 Cisco Catalyst 9130AXE is not supported in Cisco IOS XE 16.12.2s and 16.12.3.

Maximum APs and Clients Supported

Table 2. Scale Supported in Cisco EWC Network

Primary AP Model

Maximum APs Supported

Maximum Clients Supported

Cisco Catalyst 9115 Series

50

1000

Cisco Catalyst 9117 Series

50

1000

Cisco Catalyst 9120 Series

100

2000

Cisco Catalyst 9130 Series

100

2000

Compatibility Matrix

The following table provides software compatibility information.

Table 3. Compatibility Information

Cisco Embedded Wireless Controller on Catalyst Access Points

Cisco ISE

Cisco CMX

Cisco DNA Center

Amsterdam 17.1.1t

Amsterdam 17.1.1s

2.6

2.4

2.3

10.6.2

10.6

10.5.1

1.3.3.0

Supported Browsers and Operating Systems for Web UI


Note

The following list of Supported Browsers and Operating Systems is not comprehensive at the time of writing this document and the behavior of various browser for accessing the GUI of the EWC is as listed below.


Table 4. Supported Browsers and Operating Systems

Browser

Version

Operating System

Status

Workaround

Google Chrome

77.0.3865.120

macOS Mojave Version 10.14.6

Works

Proceed through the browser warning.

Safari

13.0.2 (14608.2.40.1.3)

macOS Mojave Version 10.14.6

Works

Proceed through the browser warning.

Mozilla Firefox

69.0.1

macOS Mojave Version 10.14.6

Works only if exception is added.

Set the exception.

Mozilla Firefox

69.0.3

macOS Mojave Version 10.14.6

Works only if exception is added.

Set the exception.

Google Chrome

77.0.3865.90

Windows 10 Version 1903 (OS Build 18362.267)

Works

Proceed through the browser warning.

Microsoft Edge

44.18362.267.0

Windows 10 Version 1903 (OS Build 18362.267)

Works

Proceed through the browser warning.

Mozilla Firefox

68.0.2

Windows 10 Version 1903 (OS Build 18362.267)

Works

Proceed through the browser warning.

Mozilla Firefox

69.0.3

Windows 10 Version 1903 (OS Build 18362.267)

Works only if exception is added.

Set the exception.

Google Chrome

78.0.3904.108

macOS Catalina 10.15.1

Does not work

NA

Upgrading the Controller Software

This section covers the various aspects of upgrading the controller software.

For information on upgrading the controller software, see the "Software Upgrade" section in the Cisco Embedded Wireless Controller on Catalyst Access Points Online Help.


Note

Before converting from CAPWAP to embedded wireless controller (EWC), ensure that you upgrade the corresponding AP with the CAPWAP image in Cisco AireOS Release 8.10.105.0. If this upgrade is not performed, the conversion will fail.


Finding the Software Version

The following table lists the Cisco IOS XE 17.1.1s software for Cisco Embedded Wireless Controller on Catalyst Access Points.


Note

An AP that joins the Embedded Wireless Controller (EWC) network, should already be running the software Version 8.10.x or later, or Version 16.12.x or later. If this is not the case, upgrade the AP with either of these options before the AP joins the EWC network.


Choose the appropriate AP software based on the following:

  • Cisco Embedded Wireless Controller on Catalyst Access Points software to be used for converting the AP from an unified wireless network CAPWAP lightweight AP to a Cisco Embedded Wireless Controller on Catalyst Access Points-capable AP (primary AP)

  • AP software image bundle to be used either for upgrading the Cisco Embedded Wireless Controller on Catalyst Access Points software on the primary AP or for updating the software on the subordinate APs or both

Prior to ordering Cisco APs, see the corresponding ordering guide for your Catalyst or Aironet access point.

Table 5. Cisco Embedded Wireless Controller on Catalyst Access Points Software

Primary AP

AP Software for Conversion from CAPWAP to Cisco EWC

AP Software Image Bundle for Upgrade

AP Software in the Bundle

Cisco Catalyst 9115 Series

C9800-AP-universalk9.17.01.01s.zip

C9800-AP-universalk9.17.01.01s.zip

ap1g7

Cisco Catalyst 9117 Series

C9800-AP-universalk9.17.01.01s.zip

C9800-AP-universalk9.17.01.01s.zip

ap1g6

Cisco Catalyst 9120 Series

C9800-AP-universalk9.17.01.01s.zip

C9800-AP-universalk9.17.01.01s.zip

ap1g7

Cisco Catalyst 9130 Series

C9800-AP-universalk9.17.01.01s.zip

C9800-AP-universalk9.17.01.01s.zip

ap1g6a

Restrictions

Internet Group Management Protocol (IGMP)v3 is not supported on Cisco Aironet Wave 2 APs.

Interoperability with Clients

This section describes the interoperability of the controller software with client devices.

The following table describes the configurations used for testing client devices.

Table 6. Test Configuration for Interoperability

Hardware or Software Parameter

Hardware or Software Type

Release

Cisco IOS XE Amsterdam 17.1.1s

Access Points

  • Cisco Aironet Series Access Points

    • 1540

    • 1560

    • 1815i

    • 1815w

    • 1830

    • 1840

    • 1850

    • 2800

    • 3800

    • 4800

  • Cisco Catalyst 9115AX Access Points

  • Cisco Catalyst 9117AX Access Points

  • Cisco Catalyst 9120AX Access Points

  • Cisco Catalyst 9130AX Access Points

Radio

  • 802.11ax

  • 802.11ac

  • 802.11a

  • 802.11g

  • 802.11n (2.4 GHz or 5 GHz)

Security

Open, PSK (WPA2-AES), 802.1X (WPA2-AES) (EAP-FAST, EAP-TLS), WPA3.

RADIUS

See Compatibility Matrix.

Types of tests

Connectivity, traffic (ICMP), and roaming between two APs

The following table lists the client types on which the tests were conducted. Client types included laptops, hand-held devices, phones, and printers.

Table 7. Client Types

Client Type and Name

Driver/Software Version

Laptop Model

Acer Aspire 15 Windows 8 Home Qc Atheros Qca9377 11.0.0.492 and later
Acer Aspire E15 Windows 8 Qc Atheros Qca9377 15.1.1.1 and later
Acer Aspire E 15 Windows 8.1 QC Atheros Qca9377 11.0.0.492 and later
Acer Aspire E15 Windows 8.1 Pro Qc Atheros Qca9377 11.0.0.492 and later
Apple MAC mini Windows 7 Professional Broadcom 802.11ac 6.30.224.217 and later
Dell 80TJ Broadcom 802.11n Network Adapter and later
Dell Inspiron 15 7569 Windows 10 Home Intel Ac 3165 18.32.0.5 and later
Dell Latitude 6430 Windows 8.1 Pro Intel 6205w8 15.16.0.2 and later
Dell Latitude E5400 Windows 7 Professional Intel Wifi Link 5300 AGN 12.4.1.4 and later
Dell Latitude E5430 Windows 7 Intel Centrino N 6205 15.17.0.1 and later
Dell Latitude E5450 Windows 7 Professional Intel 7260 18.33.6.2 and later
Dell Latitude E5530 TU2-ET100 (Version v5.0R) and later
Dell Latitude E5540 Windows 7 Intel Dualband Ac7260 1.566.0.0 and later
Dell Latitude E6430 Windows 10 Enterprise Intel Wifi Link 5300 AGN 14.2.1.4 and later
Dell Latitude E6430 Windows 10 Enterprise Linksys AE2500 N 5.100.68.46 and later
Dell Latitude E6430 Windows 7 Professional Intel 6250 15.11.0.7 and later
Dell Latitude E6430 Windows 7 Professional Intel 3160 6.30.223.215 and later
Dell Latitude E7450 Windows 7 Professional Broadcom 1560 15.1.1.1 and later
Dell Latitude Windows 8.1 Pro Intel Ac7260 18.33.3.2 and later
Fujitsu Lifebook E556 Windows 10 Pro Intel 8260 11.0.0.492 and later
Lenovo Ideapad T420 TU3-ETG (Version v1.0R) and later
Lenovo T420 Windows 10 Pro Intel Ac8260 19.1.0.4 and later
Lenovo T420 Windows 7 Enterprise Intel Centrino Ultimate-N6300 AGN 13.5.0.6 and later
Lenovo T420 Windows 7 Enterprise Linksys AE6000 5.0.7.0 and later
Lenovo Yoga 460 Windows 10 Pro Intel Ac8260 19.1.0.4 and later
Macbook Air Mac OS Sierra 10.12.3 Broadcom Bcm43xx 1.0 6.30.225.29.1 and later
Macbook Air Macos Sierra 10.12.6 Broadcom Bcm43xx 1.0 7.21.171.68.1a4 and later
Macbook Air OS X Yosemite (10.10.5) Broadcom Bcm43xx 1.0 7.15.166.24.3 and later
Macbook Mac OS Mojave 10.8.5 Broadcom Bcm43xx 1.0 5.106.98.100.17 and later
Macbook Mac OS Sierra 10.12 Beta Broadcom Bcm43xx 1.0 7.21.149.34.1a7 and later
Macbook Pro Mac OS Sierra 10.12.4 Broadcom Bcm43xx 1.0 7.21.171.68.1a4 and later
Macbook Pro OS X 10.8.5 Broadcom Bcm43xx 1.0 5.106.98.100.17 and later
Macbook Pro Retina Mac OS Sierra 10.12.3 Broadcom Bcm43xx 1.0 7.15.166.24.3 and later

Tablet Model

Apple iPad iOS 12.0.1 and later
Apple iPad mini iOS 12.0 and later
Apple iPad mini 2 iOS 10.3.1 and later
Apple iPad Air iOS 10.1.1 and later
Apple iPad Air 2 iOS 10.2.1 and later

Mobile Phone Model

Apple iPhone 5 iOS 10.3.1 and later
Apple iPhone 5S iOS 11.4.1 and later
Apple iPhone 6 iOS 12.0.1 and later
Apple iPhone 6 Plus iOS 12.0.1 and later
Apple iPhone 7 iOS 12.0.1 and later
Apple iPhone 7 Plus iOS 12.0.1 and later
Apple iPhone 8 iOS 12.0.1 and later
Apple iPhone SE iOS 10.3.1 and later
Apple iPhone X iOS 12.2 and later
Apple iPhone XR iOS 12.2 and later
Cisco 7925G-EX CP7925G-1.4.8.4.LOADS and later
Cisco 7926G CP7925G-1.4.8.4.LOADS and later
Cisco 8821 SIP8821.11-0-3SR4-3 6.50.0.3 (r ) and later
Google Nexus 5 Android 6.0.1 and later
Mi A1 Android 8.1.0 and later
Microsoft Lumia Windows 8 and later
Moto G 3rd Gen Andriod 6.0.1 and later
Moto G 4 Andriod 7.0.1 and later
Moto G4 Plus Andriod 7.0.1 and later
Moto X 2nd Gen Android 5.0 and later
Nokia 6.1 Plus Android 9.0.1 and later
Nokia Lumia 730 Windows 8 and later
One Plus 3 Android 6.0.1 and later
One Plus 5 Android 8.1.0 and later
One Plus 5T Android 8.1.0 and later
One Plus 6 Android 8.1.0 and later
One Plus One Android 4.3 and later
Redmi Note 3 Android 6.0.1 and later
Samsung Galaxy S4 Android 4.2.2 and later
Samsung Galaxy S6 Android 7.0 and later
Samsung Galaxy S7 Android 8.0.0 and later
Samsung Galaxy S8 Android 7.0 and later
Samsung Galaxy S Duos 2 Android 6.0.1 and later
Samsung Tab Pro Android 4.4.2 and later
Samsung Galaxy S10 Android 9.0 and later

Caveats

Caveats describe unexpected behavior in Cisco IOS releases. Caveats that are listed as Open in a prior release are carried forward to the next release as either Open or Resolved.


Note

All incremental releases will cover fixes from the current release.


Cisco Bug Search Tool

The Cisco Bug Search Tool (BST) allows partners and customers to search for software bugs based on product, release, and keyword, and aggregates key data such as bug details, product, and version. The BST is designed to improve the effectiveness in network risk management and device troubleshooting. The tool has a provision to filter bugs based on credentials to provide external and internal bug views for the search input.

To view the details of a caveat, click the corresponding identifier.

Open Caveats for Cisco IOS XE Amsterdam 17.1.1t

There are no new open caveats for this release.

Open Caveats for Cisco IOS XE Amsterdam 17.1.1s

Caveat ID

Description

CSCvr80334 Pubd process on the controller goes down, managed by DNA-C 1.3.2
CSCvr82989 Standby AP goes to recovery mode if the controller is stopped, while explode is going on.
CSCvr74833 [EWC-SIT] RRM crashed on standby when the active controller was coming back up after a reload

CSCvr39352

Traceback is observed after a switchover on the Cisco Catalyst 9120AXI AP.

CSCvs23423

After an image upgrade or a network reboot the preferred controller might not become the active EWC controller.

CSCvq58496

The write erase command is not activating startup-config sync to all the EWC-capable devices.

CSCvr44175

System displays memory warning during the controller image download.

Resolved Caveats for Cisco IOS XE Amsterdam 17.1.1t

Caveat ID

Description

CSCvt47413

IW-6300H/1562/2800/3800/4800 series APs are failing DFS compliance.

CSCvs87888

Evaluation of Cisco Catalyst 9100 Series APs for Kr00k attack.

CSCvt17801

AP 2800/3800/4800/1560/IW 6300 gets into a loop after attempting to join controller with FIPS enabled.

CSCvu02495

Wave 2 AP boot failure with message saying bad lzma header and AP unable to boot and join controller.

Resolved Caveats for Cisco IOS XE Amsterdam 17.1.1s

Caveat ID

Description

CSCvq82908 Error message seen on the EWC device after HA switchover

Troubleshooting

For the most up-to-date, detailed troubleshooting information, visit the Cisco TAC website at:

https://www.cisco.com/en/US/support/index.html

Go to Product Support and select your product from the list, or enter the name of your product. Look under Troubleshoot and Alerts to find information about the problem that you are experiencing.

Related Documentation

Information about Cisco IOS XE 16 is available at:

https://www.cisco.com/c/en/us/products/ios-nx-os-software/ios-xe/index.html

All the support documentation for Cisco Catalyst 9100 Access Points are available at: https://www.cisco.com/c/en/us/support/wireless/catalyst-9100ax-access-points/tsd-products-support-series-home.html

Cisco Validated Designs documents are available at:

https://www.cisco.com/go/designzone

Cisco Embedded Wireless Controller on Catalyst Access Points

For support information, see the following documents:

Installation guides for Catalyst Access Points are available at:

https://www.cisco.com/c/en/us/support/wireless/catalyst-9100ax-access-points/products-installation-guides-list.html

For all Cisco Wireless Controller software-related documentation, see:

https://www.cisco.com/c/en/us/support/wireless/catalyst-9800-series-wireless-controllers/tsd-products-support-series-home.html

Wireless Products Comparison

Cisco Mobility Services Engine

Cisco Mobility Services Engine Documentation

Cisco Connected Mobile Experiences

Cisco Connected Mobile Experiences Documentation

Cisco DNA Center

Cisco DNA Center Documentation

Communications, Services, and Additional Information

  • To receive timely, relevant information from Cisco, sign up at Cisco Profile Manager.

  • To get the business impact you’re looking for with the technologies that matter, visit Cisco Services.

  • To submit a service request, visit Cisco Support.

  • To discover and browse secure, validated enterprise-class apps, products, solutions and services, visit Cisco Marketplace.

  • To obtain general networking, training, and certification titles, visit Cisco Press.

  • To find warranty information for a specific product or product family, access Cisco Warranty Finder.