Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Bengaluru 17.6.x
Introduction to Cisco Embedded Wireless Controller on Catalyst Access Points
 Caution |
Problem Description: Authentication fails when attempting to upgrade software using the "CCO mode" in Cisco Embedded Wireless Controller (EWC) on a Cisco Catalyst Access Point (EWC-AP). This issue occurs when attempting to upgrade from a software release prior to one of the following releases: 17.3.x, 17.6.x, 17.9.5, 17.12.3, and 17.14.1. Background: From May 1, 2024, onwards, Cisco Connection Online (CCO, known as cisco.com) will use a new authentication system for EWC-AP. This system is not backward compatible with the earlier EWC-AP software releases. EWC-AP software developed after January 31, 2024, will be able to authenticate with Cisco.com, before and after May 1, 2024. The releases include: 17.9.5 and later, 17.12.3 and later, and 17.14.1 and later. Workaround: Download the desired EWC-AP image and load it into the EWC-AP over TFTP, SFTP, or (Desktop) HTTP. Upgrade to one of the following releases:
After the upgrade, the CCO method for upgrades will work. For more information, see Field Notice: FN74124. |
The Cisco Embedded Wireless Controller on Catalyst Access Points is a version of the Cisco IOS XE-based controller software on Catalyst access points. In this solution, a Catalyst access point (AP) that is running the Cisco Embedded Wireless Controller on Catalyst Access Points software, is designated as the primary AP. Other APs, referred to as subordinate APs, associate to this primary AP.
The Cisco Embedded Wireless Controller on Catalyst Access Points provides enterprise-level WLAN features while maintaining operational simplicity and affordability. This solution is targeted at small and medium-sized business (SMB) customers or distributed enterprises, and can be run at single site deployments.
-
The controllers come with high availability (HA) and seamless software updates. This keeps your services on always, both during planned and unplanned events.
-
The deployment can be managed using a mobile application, Cisco Digital Network Architecture (DNA) Center, Netconf/Restconf, web-based GUI, or CLI.
What's New in Cisco IOS XE Bengaluru 17.6.7
There are no new features in this release.
What's New in Cisco IOS XE Bengaluru 17.6.6a
There are no new features in this release. This release provides a fix for CSCwh87343: Cisco IOS XE Software Web UI Privilege Escalation Vulnerability. For more information, see Security Advisory: cisco-sa-iosxe-webui-privesc-j22SaA4z.
What's New in Cisco IOS XE Bengaluru 17.6.6
There are no new features in this release.
What's New in Cisco IOS XE Bengaluru 17.6.5
There are no new features in this release.
What's New in Cisco IOS XE Bengaluru 17.6.4
There are no new features in this release.
What's New in Cisco IOS XE Bengaluru 17.6.3
|
Feature Name |
Description and Documentation Link |
|---|---|
|
Automated Software Download Version 4 (ASDv4) Migration |
Cisco Embedded Wireless Controller on Catalyst Access Points requires Automated Software Download Version 3 (ASDv3) to download software from Cisco.com. However, ASDv3 is being replaced by ASDv4 from July 2022. Consequently, the software download feature will not work on older Cisco IOS XE releases. We recommend that you upgrade your device software image to Cisco IOS XE Amsterdam 17.3.5a, Cisco IOS XE Bengaluru 17.6.3, Cisco IOS XE Cupertino 17.8.1 (when available), or a later release to enable the software download feature with ASDv4. |
This release also includes critical bug fixes relating to scale and stability improvements.
What's New in Cisco IOS XE Bengaluru 17.6.2
|
Feature Name |
Description and Documentation Link |
|---|---|
| Embedded Wireless Controller (EWC) support for Cisco Catalyst 9124AXE Outdoor Access Points |
Cisco Catalyst 9124AXE Outdoor Access Points is supported in EWC, from Cisco IOS XE Bengaluru 17.6.2 onwards. |
| Mesh and Mesh + Flex Support for Cisco Catalyst 9124AXE Outdoor Access Points |
Mesh feature and Mesh + Flex feature is supported in Cisco Catalyst 9124AXE outdoor Access Points. For more information, see the chapter Mesh Access Points. |
| Mesh and Mesh + Flex Support for Cisco Catalyst 9124AXI/D Outdoor Access Points |
Mesh feature and Mesh + Flex feature is supported in Cisco Catalyst 9124AXI/D outdoor Access Points. For more information, see the chapter Mesh Access Points. |
 Note |
The following is recommended for EWC deployments: In a normal EWC (EWC on AP) network, the controller image is transferred to all EWC capable APs. However, in a mesh topology, it adds additional traffic flow on the wireless backhaul when there are EWC capable MAPs. This could make the image download procedure slow and error prone. To alleviate the issue, an option has been added, where the controller image is not copied to the EWC capable MAPs, when they are in CAPWAP mode. Changing the EWC capable MAPs to CAPWAP APs, does not impact the EWC network redundancy design, as MAPs do not spawn the controller. |
What's New in Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Bengaluru 17.6.1b
There are no new features in this release.
Note |
What's New in Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Bengaluru 17.6.1
|
Feature Name |
Description and Documentation Link |
|---|---|
|
Access Point Tag Persistency |
In Cisco IOS XE Bengaluru 17.6.1, AP tag persistency is enabled globally on the controller. When APs join a controller with the tag persistency enabled, the mapped tags are saved on the AP without having to write the tag configurations on each AP, individually. The following command is introduced:
For more information, see the chapter Access Point Tag Persistency. |
|
AP Group NTP Server |
The global NTP server configuration is replaced with per-AP group NTP server configuration. Now, you cannot configure the Cisco Hyperlocation feature without the per-AP group NTP server. The following commands are introduced:
For more information, see the chapter AP Group NTP Server. |
|
IPv6 Ready Certification |
The IPv6 feature is enhanced with the implementation of various IPv6 functionalities that are required to comply with the latest RFC specifications. For more information, see the chapter IPv6 Ready Certification. |
|
MAC Address Consistency |
The format of the MAC addresses of some of the fields in the following CLIs are updated from xx:xx:xx:xx:xx to xxxx.xxxx.xxxx.
|
|
Regulatory Compliance (Rest of World) for Domain Reduction |
This feature enhancement helps to reduce the number of regulatory domains by modifying the existing preprovision domain workflow to determine regulatory domain at runtime per country code. A new ROW domain is introduced and merged to include nine domains. Every AP can determine its own regulatory domain from one of the 9 domains with regulated power table and allowed radio channels. Until Cisco IOS XE Bengaluru 17.5.x, AP used the global controller country list to configure and validate all the country codes. For more information, see the chapter Regulatory Complaince Rest of the World for Domain Reduction. |
|
Mesh Support for Cisco Catalyst 9124AXI/D Outdoor Access Points |
From Cisco IOS XE Bengaluru 17.6.1 onwards, the mesh feature is supported in Cisco Catalyst 9124AXI/D outdoor Access Points with EFT quality. For queries on this feature, reach out to the mailer: wireless-9124-ithaca-mesh-eft-support For more information, see the chapter Mesh Access Points. |
|
Mesh support on Cisco Catalyst Wireless Mobile Application |
With the introduction of the mesh feature in the EWC platform for Cisco Catalyst 9124AXI/D outdoor Access Points with EFT quality, the mobile application supports the following mesh use cases:
For more information, see the EWC Mob App User Guide. |
|
Support for WiFi6 Pluggable Module in EWC |
The newly introduced WiFi6 Pluggable Module is supported in EWC. |
| Embedded Wireless Controller (EWC) support for Cisco Catalyst 9124AXI/D Outdoor Access Points |
Cisco Catalyst 9124AXI/D Outdoor Access Points is supported in EWC, from Cisco IOS XE Bengaluru 17.6.1 onwards. |
Note |
Cisco Embedded Wireless Controller on Catalyst Access Points with C-ANT9104 Antenna, is not supported in Cisco IOS XE Bengaluru 17.6.1 Release. |
|
Feature Name |
GUI Path |
|---|---|
|
Access Point Tag Persistency |
|
|
MAC Address Consistency |
|
|
Mesh Support for Cisco Catalyst 9124AX Outdoor Access Points |
|
Interactive Help
The Cisco Embedded Wireless Controller on Catalyst Access Points GUI features an interactive help that walks you through the GUI and guides you through complex configurations.
You can start the interactive help in the following ways:
-
By hovering your cursor over the blue flap at the right-hand corner of a window in the GUI and clicking Interactive Help.
-
By clicking Walk-me Thru in the left pane of a window in the GUI.
-
By clicking Show me How displayed in the GUI. Clicking Show me How triggers a specific interactive help that is relevant to the context you are in.
For instance, Show me How in Configure > AAA walks you through the various steps for configuring a RADIUS server. Choose Configuration> Wireless Setup > Advanced and click Show me How to trigger the interactive help that walks you through the steps relating to various kinds of authentication.
The following features have an associated interactive help:
-
Configuring AAA
-
Configuring FlexConnect Authentication
-
Configuring 802.1x Authentication
-
Configuring Local Web Authentication
-
Configuring OpenRoaming
-
Configuring Mesh APs
Note |
If the WalkMe launcher is unavailable on Safari, modify the settings as follows:
|
Behavior Change
If the APs already have Cisco IOS XE Bengaluru 17.6.1 image, you need not upgrade the APs to the 17.6.1b image. However, if there are Cisco Catalyst 9124 Series APs with the 17.6.1b image loaded, in an EWC deployment, then all the APs should be upgraded to the 17.6.1b image.
Supported Cisco Access Point Platforms
The following Cisco access points are supported in the Cisco Embedded Wireless Controller on Catalyst Access Points network. Note that the APs listed as primary APs can also function as subordinate APs.
|
Primary AP |
Subordinate AP |
|---|---|
|
Cisco Catalyst 9115 Series Cisco Catalyst 9117 Series Cisco Catalyst 9120 Series Cisco Catalyst 9124AXE/I/D Cisco Catalyst 9130 Cisco Catalyst 9105AXI |
Cisco Aironet 1540 Series Cisco Aironet 1560 Series Cisco Aironet 1815i Cisco Aironet 1815w Cisco Aironet 1830 Series Cisco Aironet 1840 Series Cisco Aironet 1850 Series Cisco Aironet 2800 Series Cisco Aironet 3800 Series Cisco Aironet 4800 Series Cisco Catalyst 9115 Series Cisco Catalyst 9117 Series Cisco Catalyst 9120 Series Cisco Catalyst 9124AXE/I/D Cisco Catalyst 9130 Cisco Catalyst 9105AXW Cisco Catalyst 9105AXI Cisco Catalyst Industrial Wireless 6300 Heavy Duty Series Access Points Cisco 6300 Series Embedded Services Access Points |
|
Image Type |
Supported APs |
|---|---|
|
ap1g4 |
Cisco Aironet 1810 Series Cisco Aironet 1830 Series Cisco Aironet 1850 Series |
|
ap1g5 |
Cisco Aironet 1815i Cisco Aironet 1815w Cisco Aironet 1540 Series Cisco Aironet 1850 Series |
|
ap1g6 |
Cisco Catalyst 9117 Series |
|
ap1g6a |
Cisco Catalyst 9130 Cisco Catalyst 9124AXE/I/D |
|
ap1g7 |
Cisco Catalyst 9115 Series Cisco Catalyst 9120 Series |
|
ap1g8 |
Cisco Catalyst 9105 Series |
|
ap3g3 |
Cisco Aironet 2800 Series Cisco Aironet 3800 Series Cisco Aironet 4800 Series Cisco Aironet 1560 Series Cisco Catalyst Industrial Wireless 6300 Heavy Duty Series Access Points Cisco 6300 Series Embedded Services Access Points |
Maximum APs and Clients Supported
|
Primary AP Model |
Maximum APs Supported |
Maximum Clients Supported |
|---|---|---|
|
Cisco Catalyst 9105 AWI |
50 |
1000 |
|
Cisco Catalyst 9115 Series |
50 |
1000 |
|
Cisco Catalyst 9117 Series |
50 |
1000 |
|
Cisco Catalyst 9120 Series |
100 |
2000 |
|
Cisco Catalyst 9124AXE/I/D |
100 |
2000 |
|
Cisco Catalyst 9130 |
100 |
2000 |
Note |
If 25 to 100 APs have joined the EWC network, the maximum clients on the EWC internal AP is limited to 20. |
Compatibility Matrix
The following table provides software compatibility information:
|
Cisco Embedded Wireless Controller on Catalyst Access Points |
Cisco ISE |
Cisco CMX |
Cisco DNA Center |
|---|---|---|---|
|
Bengaluru 17.6.x |
3.0 2.7 2.6 2.4 2.3 |
10.6.3 10.6.2 10.6 10.5.1 |
Supported Browsers and Operating Systems for Web UI
Note |
The following list of Supported Browsers and Operating Systems is not comprehensive at the time of writing this document and the behavior of various browser for accessing the GUI of the EWC is as listed below. |
|
Browser |
Version |
Operating System |
Status |
Workaround |
|---|---|---|---|---|
|
Google Chrome |
77.0.3865.120 |
macOS Mojave Version 10.14.6 |
Works |
Proceed through the browser warning. |
|
Safari |
13.0.2 (14608.2.40.1.3) |
macOS Mojave Version 10.14.6 |
Works |
Proceed through the browser warning. |
|
Mozilla Firefox |
69.0.1 |
macOS Mojave Version 10.14.6 |
Works only if exception is added. |
Set the exception. |
|
Mozilla Firefox |
69.0.3 |
macOS Mojave Version 10.14.6 |
Works only if exception is added. |
Set the exception. |
|
Google Chrome |
77.0.3865.90 |
Windows 10 Version 1903 (OS Build 18362.267) |
Works |
Proceed through the browser warning. |
|
Microsoft Edge |
44.18362.267.0 |
Windows 10 Version 1903 (OS Build 18362.267) |
Works |
Proceed through the browser warning. |
|
Mozilla Firefox |
68.0.2 |
Windows 10 Version 1903 (OS Build 18362.267) |
Works |
Proceed through the browser warning. |
|
Mozilla Firefox |
69.0.3 |
Windows 10 Version 1903 (OS Build 18362.267) |
Works only if exception is added. |
Set the exception. |
|
Google Chrome |
78.0.3904.108 |
macOS Catalina 10.15.1 |
Does not work |
NA |
Upgrading the Controller Software
This section covers the various aspects of upgrading the controller software.
For information on ASDv4 migration, see the What's New in Cisco IOS XE Bengaluru 17.6.3 section.
Note |
Before converting from CAPWAP to embedded wireless controller (EWC), ensure that you upgrade the corresponding AP with the CAPWAP image in Cisco AireOS Release 8.10.105.0. If this upgrade is not performed, the conversion will fail. |
Finding the Software Version
The following table lists the Cisco IOS XE 17.6.x software for Cisco Embedded Wireless Controller on Catalyst Access Points.
Choose the appropriate AP software based on the following:
-
Cisco Embedded Wireless Controller on Catalyst Access Points software to be used for converting the AP from an unified wireless network CAPWAP lightweight AP to a Cisco Embedded Wireless Controller on Catalyst Access Points-capable AP (primary AP)
-
AP software image bundle to be used either for upgrading the Cisco Embedded Wireless Controller on Catalyst Access Points software on the primary AP or for updating the software on the subordinate APs or both
Prior to ordering Cisco APs, see the corresponding ordering guide for your Catalyst or Aironet access point.
|
Primary AP |
AP Software for Conversion from CAPWAP to Cisco EWC |
AP Software Image Bundle for Upgrade |
AP Software in the Bundle |
|---|---|---|---|
|
Cisco Catalyst 9115 Series |
C9800-AP-universalk9.17.06.07.zip C9800-AP-universalk9.17.06.6a.zip C9800-AP-universalk9.17.06.06.zip C9800-AP-universalk9.17.06.05.zip C9800-AP-universalk9.17.06.04.zip C9800-AP-universalk9.17.06.03.zip C9800-AP-universalk9.17.06.02.zip C9800-AP-universalk9.17.06.1b.zip C9800-AP-universalk9.17.06.01.zip |
C9800-AP-universalk9.17.06.07.zip C9800-AP-universalk9.17.06.6a.zip C9800-AP-universalk9.17.06.06.zip C9800-AP-universalk9.17.06.05.zip C9800-AP-universalk9.17.06.04.zip C9800-AP-universalk9.17.06.03.zip C9800-AP-universalk9.17.06.02.zip C9800-AP-universalk9.17.06.1b.zip C9800-AP-universalk9.17.06.01.zip |
ap1g7 |
|
Cisco Catalyst 9117 Series |
C9800-AP-universalk9.17.06.07.zip C9800-AP-universalk9.17.06.6a.zip C9800-AP-universalk9.17.06.06.zip C9800-AP-universalk9.17.06.05.zip C9800-AP-universalk9.17.06.04.zip C9800-AP-universalk9.17.06.03.zip C9800-AP-universalk9.17.06.02.zip C9800-AP-universalk9.17.06.1b.zip C9800-AP-universalk9.17.06.01.zip |
C9800-AP-universalk9.17.06.07.zip C9800-AP-universalk9.17.06.6a.zip C9800-AP-universalk9.17.06.06.zip C9800-AP-universalk9.17.06.05.zip C9800-AP-universalk9.17.06.04.zip C9800-AP-universalk9.17.06.03.zip C9800-AP-universalk9.17.06.02.zip C9800-AP-universalk9.17.06.1b.zip C9800-AP-universalk9.17.06.01.zip |
ap1g6 |
|
Cisco Catalyst 9120 Series |
C9800-AP-universalk9.17.06.07.zip C9800-AP-universalk9.17.06.6a.zip C9800-AP-universalk9.17.06.06.zip C9800-AP-universalk9.17.06.05.zip C9800-AP-universalk9.17.06.04.zip C9800-AP-universalk9.17.06.03.zip C9800-AP-universalk9.17.06.02.zip C9800-AP-universalk9.17.06.1b.zip C9800-AP-universalk9.17.06.01.zip |
C9800-AP-universalk9.17.06.07.zip C9800-AP-universalk9.17.06.6a.zip C9800-AP-universalk9.17.06.06.zip C9800-AP-universalk9.17.06.05.zip C9800-AP-universalk9.17.06.04.zip C9800-AP-universalk9.17.06.03.zip C9800-AP-universalk9.17.06.02.zip C9800-AP-universalk9.17.06.1b.zip C9800-AP-universalk9.17.06.01.zip |
ap1g7 |
|
Cisco Catalyst 9124AXE/I/D |
C9800-AP-universalk9.17.06.07.zip C9800-AP-universalk9.17.06.6a.zip C9800-AP-universalk9.17.06.06.zip C9800-AP-universalk9.17.06.05.zip C9800-AP-universalk9.17.06.04.zip C9800-AP-universalk9.17.06.03.zip C9800-AP-universalk9.17.06.02.zip C9800-AP-universalk9.17.06.1b.zip C9800-AP-universalk9.17.06.01.zip |
C9800-AP-universalk9.17.06.07.zip C9800-AP-universalk9.17.06.6a.zip C9800-AP-universalk9.17.06.06.zip C9800-AP-universalk9.17.06.05.zip C9800-AP-universalk9.17.06.04.zip C9800-AP-universalk9.17.06.03.zip C9800-AP-universalk9.17.06.02.zip C9800-AP-universalk9.17.06.1b.zip C9800-AP-universalk9.17.06.01.zip |
ap1g6a |
|
Cisco Catalyst 9130 Series |
C9800-AP-universalk9.17.06.07.zip C9800-AP-universalk9.17.06.7.zip C9800-AP-universalk9.17.06.6a.zip C9800-AP-universalk9.17.06.06.zip C9800-AP-universalk9.17.06.05.zip C9800-AP-universalk9.17.06.04.zip C9800-AP-universalk9.17.06.03.zip C9800-AP-universalk9.17.06.02.zip C9800-AP-universalk9.17.06.1b.zip C9800-AP-universalk9.17.06.01.zip |
C9800-AP-universalk9.17.06.07.zip C9800-AP-universalk9.17.06.7.zip C9800-AP-universalk9.17.06.6a.zip C9800-AP-universalk9.17.06.06.zip C9800-AP-universalk9.17.06.05.zip C9800-AP-universalk9.17.06.04.zip C9800-AP-universalk9.17.06.03.zip C9800-AP-universalk9.17.06.02.zip C9800-AP-universalk9.17.06.1b.zip C9800-AP-universalk9.17.06.01.zip |
ap1g6a |
Guidelines and Restrictions
Internet Group Management Protocol (IGMP)v3 is not supported on Cisco Aironet Wave 2 APs.
Embedded Wireless Controller SNMP configuration is supported in DNAC.
High memory usage on AP running Embedded Wireless Controller. Enabling crash kernel on the AP consumes additional memory on the AP. Hence, if crash kernel is enabled, the overall memory usage of the device will increase and will impact the scale numbers. On Cisco Catalyst 9130 Access Points, the memory consumption is a high of 128 MB.
During the EWC HA pair selection, after a power outage, the standby AP fails to come up in the new EWC HA pair. Another EWC capable AP becomes the standby AP and fails to come up as well. To avoid this situation, ensure that the same IP address is enforced on the active or standby APs during HA pair selection.
Interoperability with Clients
This section describes the interoperability of the controller software with client devices.
The following table describes the configurations used for testing client devices.
|
Hardware or Software Parameter |
Hardware or Software Type |
|---|---|
|
Release |
Cisco IOS XE Bengaluru 17.6.x |
|
Access Points |
|
|
Radio |
|
|
Security |
Open, PSK (WPA2-AES), 802.1X (WPA2-AES) (EAP-FAST, EAP-TLS), WPA3. |
|
Cisco ISE |
See Compatibility Matrix. |
|
Types of tests |
Connectivity, traffic (ICMP), and roaming between two APs |
The following table lists the client types on which the tests were conducted. Client types included laptops, hand-held devices, phones, and printers.
|
Client Type and Name |
Driver / Software Version |
||
|---|---|---|---|
|
Wi-Fi 6 Devices (Mobile Phone and Laptop) |
|||
| Apple iPhone 11 | iOS 14.1 | ||
|
Apple iPhone SE 2020 |
iOS 14.1 | ||
| Dell Intel AX1650w | Windows 10 ( 21.90.2.1) | ||
| DELL LATITUDE 5491 (Intel AX200) | Windows 10 Pro (21.40.2) | ||
| Samsung S20 | Android 10 | ||
| Samsung S10 (SM-G973U1) | Android 9.0 (One UI 1.1) | ||
| Samsung S10e (SM-G970U1) | Android 9.0 (One UI 1.1) | ||
| Samsung Galaxy S10+ | Android 9.0 | ||
|
Samsung Galaxy Fold 2 |
Android 10 | ||
|
Samsung Galaxy Flip Z |
Android 10 | ||
|
Samsung Note 20 |
Android 10 | ||
|
Laptops |
|||
| Acer Aspire E 15 E5-573-3870 (Qualcomm Atheros QCA9377) | Windows 10 Pro (12.0.0.832) | ||
| Apple Macbook Air 11 inch | OS Sierra 10.12.6 | ||
| Apple Macbook Air 13 inch | OS Catalina 10.15.4 | ||
| Apple Macbook Air 13 inch | OS High Sierra 10.13.4 | ||
| Macbook Pro Retina | OS Mojave 10.14.3 | ||
| Macbook Pro Retina 13 inch early 2015 | OS Mojave 10.14.3 | ||
|
Dell Inspiron 2020 Chromebook |
Chrome OS 75.0.3770.129 |
||
|
Google Pixelbook Go |
Chrome OS 84.0.4147.136 |
||
|
HP chromebook 11a |
Chrome OS 76.0.3809.136 |
||
|
Samsung Chromebook 4+ |
Chrome OS 77.0.3865.105 |
||
| DELL Latitude 3480 (Qualcomm DELL wireless 1820) | Win 10 Pro (12.0.0.242) | ||
| DELL Inspiron 15-7569 (Intel Dual Band Wireless-AC 3165) | Windows 10 Home (18.32.0.5) | ||
| DELL Latitude E5540 (Intel Dual Band Wireless AC7260) | Windows 7 Professional (21.10.1) | ||
| DELL XPS 12 v9250 (Intel Dual Band Wireless AC 8260 ) | Windows 10 (19.50.1.6) | ||
| DELL Latitude 5491 (Intel AX200) | Windows 10 Pro (21.40.2) | ||
| DELL XPS Latitude12 9250 (Intel Dual Band Wireless AC 8260) | Windows 10 Home (21.40.0) | ||
|
Lenovo Yoga C630 Snapdragon 850 (Qualcomm AC 2x2 Svc) |
Windows 10(1.0.10440.0) |
||
| Lenovo Thinkpad Yoga 460 (Intel Dual Band Wireless-AC 9260) | Windows 10 Pro ( 21.40.0) | ||
|
|||
|
Tablets |
|||
| Apple iPad Pro | iOS 13.5 | ||
| Apple iPad Air2 MGLW2LL/A | iOS 12.4.1 | ||
| Apple iPad Mini 4 9.0.1 MK872LL/A | iOS 11.4.1 | ||
| Apple iPad Mini 2 ME279LL/A | iOS 12.0 | ||
| Microsoft Surface Pro 3 – 11ac | Qualcomm Atheros QCA61x4A | ||
| Microsoft Surface Pro 3 – 11ax | Intel AX201 chipset. Driver v21.40.1.3 | ||
| Microsoft Surface Pro 7 – 11ax | Intel Wi-Fi chip (HarrisonPeak AX201) (11ax, WPA3) | ||
| Microsoft Surface Pro X – 11ac & WPA3 | WCN3998 Wi-Fi Chip (11ac, WPA3) | ||
|
Mobile Phones |
|||
| Apple iPhone 5 | iOS 12.4.1 | ||
| Apple iPhone 6s | iOS 13.5 | ||
| Apple iPhone 8 | iOS 13.5 | ||
| Apple iPhone X MQA52LL/A | iOS 13.5 | ||
| Apple iPhone 11 | iOS 14.1 | ||
| Apple iPhone SE MLY12LL/A | iOS 11.3 | ||
| ASCOM SH1 Myco2 | Build 2.1 | ||
| ASCOM SH1 Myco2 | Build 4.5 | ||
| ASCOM Myco 3 v1.2.3 | Android 8.1 | ||
| Drager Delta | VG9.0.2 | ||
| Drager M300.3 | VG2.4 | ||
| Drager M300.4 | VG2.4 | ||
| Drager M540 | DG6.0.2 (1.2.6) | ||
| Google Pixel 2 | Android 10 | ||
| Google Pixel 3 | Android 11 | ||
|
Google Pixel 3a |
Android 11 |
||
| Google Pixel 4 | Android 11 | ||
| Huawei Mate 20 pro | Android 9.0 | ||
| Huawei P20 Pro | Android 9.0 | ||
|
Huawei P40 |
Android 10 |
||
| LG v40 ThinQ | Android 9.0 | ||
|
One Plus 8 |
Android 10 |
||
|
Oppo Find X2 |
Android 10 |
||
|
Redmi K20 Pro |
Android 10 |
||
| Samsung Galaxy S7 | Andriod 6.0.1 | ||
| Samsung Galaxy S7 SM - G930F | Android 8.0 | ||
| Samsung Galaxy S8 | Android 8.0 | ||
| Samsung Galaxy S9+ - G965U1 | Android 9.0 | ||
| Samsung Galaxy SM - G950U | Android 7.0 | ||
|
Sony Experia 1 ii |
Android 10 |
||
| Sony Experia xz3 | Android 9.0 | ||
|
Xiaomi Mi10 |
Android 10 |
||
| Spectralink 8744 | Android 5.1.1 | ||
| Spectralink Versity Phones 9540 | Android 8.1 | ||
| Vocera Badges B3000n | 4.3.2.5 | ||
| Vocera Smart Badges V5000 | 5.0.4.30 | ||
| Zebra MC40 | Android 5.0 | ||
| Zebra MC40N0 | Android Ver: 4.1.1 | ||
| Zebra MC92N0 | Android Ver: 4.4.4 | ||
| Zebra TC51 | Android 7.1.2 | ||
| Zebra TC52 | Android 8.1.0 | ||
| Zebra TC55 | Android 8.1.0 | ||
| Zebra TC57 | Android 8.1.0 | ||
| Zebra TC70 | Android 6.1 | ||
| Zebra TC75 | Android 6.1.1 | ||
| Printers | |||
| Zebra QLn320 Printer | LINK OS 6.3 | ||
| Zebra ZT230 Printer | LINK OS 6.3 | ||
| Zebra ZQ310 Printer | LINK OS 6.3 | ||
| Zebra ZD410 Printer | LINK OS 6.3 | ||
| Zebra ZT410 Printer | LINK OS 6.3 | ||
| Zebra ZQ610 Printer | LINK OS 6.3 | ||
| Zebra ZQ620 Printer | LINK OS 6.3 | ||
|
Wireless Module |
|||
|
Intel 11ax 200 |
Driver v22.20.0 | ||
|
Intel AC 9260 |
Driver v21.40.0 | ||
|
Intel Dual Band Wireless AC 8260 |
Driver v19.50.1.6 |
||
Issues
Issues describe unexpected behavior in Cisco IOS releases. Issues that are listed as Open in a prior release are carried forward to the next release as either Open or Resolved.
Note |
All incremental releases will cover fixes from the current release. |
Cisco Bug Search Tool
The Cisco Bug Search Tool (BST) allows partners and customers to search for software bugs based on product, release, and keyword, and aggregates key data such as bug details, product, and version. The BST is designed to improve the effectiveness in network risk management and device troubleshooting. The tool has a provision to filter bugs based on credentials to provide external and internal bug views for the search input.
To view the details of a caveat, click the corresponding identifier.
Open Caveats for Cisco IOS XE Bengaluru 17.6.7
|
Identifier |
Headline |
|---|---|
| CSCwh57076 |
The controller does not forward the broadcast Address Resolution Protocol (ARP) request to the wireless client. |
| CSCwh80060 |
The Cisco Wave 2 APs connected to the controller lose the flex WLAN-VLAN mapping |
| CSCwi03442 |
Cisco Catalyst 9130 AP does not honor the Unscheduled automatic power save delivery (U-APSD) trigger frame causing RTP stream disruption. |
| CSCwi19804 |
Cisco Catalyst 9105/9115/9120 APs: AP radio is misconfigured after the AP reloads while in administrative state down. |
| CSCwi81972 |
Cisco Wave 2 APs to check DELETE_VAP_PAYLOAD CAPWAP payload sanity before blindly deleting. |
| CSCwf83515 |
Unification of country information in the 802.11 beacon. |
| CSCwh02986 |
Cisco Catalyst 9120 AP transmit power value in dBm does not match with the readings shown in the controller and and Ekahau site survey. |
| CSCwi47294 |
Per client rate limit with FlexConnect local switching APs does not work. |
| CSCwi48980 |
Local password policy of the controller does not take effect as expected for the GUI login. |
| CSCwi64010 |
The controller accepts reserved IPv6 multicast address to be configured as Mobility Multicast IPv6 address. |
| CSCwi64652 |
Cisco Catalyst 9105 APs do not reset the Bluetooth Low Energy (BLE) interface even after 100 attempts |
| CSCwi83124 |
Pop-up windows of the contoller GUI are not displayed correctly in the Dark mode. |
Open Caveats for Cisco IOS XE Bengaluru 17.6.6a
|
Identifier |
Headline |
|---|---|
|
Cisco Wave 2 APs stop PMTU discovery after reaching the maximum hard-coded value. |
|
|
The rogue rule configuration for delete classification does not take effect. |
|
|
AP transmit power in dBm does not match with the reading shown in the controller/AP and Ekahau site survey. |
|
|
Certifcate failure issues observed when joining APs to the controller using CMCA III certificate structure. |
|
|
Association ID leak observed in Cisco Wave 2 FlexConnect APs. |
|
|
The show wireless client summary detail command does not show all IPv6 addresses. |
|
|
Cisco Aironet 4800 Series AP beacons are missed intermittently on multiple BSSIDs. |
|
|
Cisco Aironet 3800 Series AP experiences radio firmware crash. |
|
|
Cisco Catalyst 9120 Series AP: XOR mode is not updated on the database. |
|
|
Cisco Catalyst 9105 Series AP WGB does not send PMKID during reassociation. |
|
|
Cisco Catalyst 9130 Series APs crash observed due to radio failure. |
|
|
Cisco Wave 2 APs are not encrypting EAP identity requests after maximum retries. |
|
|
Cisco Catalyst 9130 Series AP does not forward 802.1x identity request with wireless phones. |
|
|
Allow RRM to assign channels and power levels on mesh APs. |
|
|
Unable to remove port security configurations under Interface through NETCONF. |
|
|
Kernel panic crash observed on Cisco Aironet 1815 Series AP. |
|
|
The controller pushes accounting information for PSK local authentication WLANs. |
|
|
Profile mismatch counter does not increase. |
|
|
Cisco Aironet 1832 Series AP does not forward packets to the radio. |
|
|
Cisco Aironet 1840 Series AP: OfficeExtend Access Point (OEAP) crashes due to radio recovery failure. |
|
|
Cisco Catalyst 9130 Series APs: Inconsistent TX power levels advertised in the beacons. |
|
|
Accounting session ID missing from the Cisco Wave 2 APs. |
|
|
Cisco Aironet 2800 Series FlexConnect APs do not process EAP-TLS fragmented packets if there is a delay of more than 50 milliseconds. |
Open Caveats for Cisco IOS XE Bengaluru 17.6.6
|
Identifier |
Headline |
|---|---|
|
Cisco Wave 2 APs stop PMTU discovery after reaching the maximum hard-coded value. |
|
|
The rogue rule configuration for delete classification does not take effect. |
|
|
AP transmit power in dBm does not match with the reading shown in the controller/AP and Ekahau site survey. |
|
|
Certifcate failure issues observed when joining APs to the controller using CMCA III certificate structure. |
|
|
Association ID leak observed in Cisco Wave 2 FlexConnect APs. |
|
|
The show wireless client summary detail command does not show all IPv6 addresses. |
|
|
Cisco Aironet 4800 Series AP beacons are missed intermittently on multiple BSSIDs. |
|
|
Cisco Aironet 3800 Series AP experiences radio firmware crash. |
|
|
Cisco Catalyst 9120 Series AP: XOR mode is not updated on the database. |
|
|
Cisco Catalyst 9105 Series AP WGB does not send PMKID during reassociation. |
|
|
Cisco Catalyst 9130 Series APs crash observed due to radio failure. |
|
|
Cisco Wave 2 APs are not encrypting EAP identity requests after maximum retries. |
|
|
Cisco Catalyst 9130 Series AP does not forward 802.1x identity request with wireless phones. |
|
|
Allow RRM to assign channels and power levels on mesh APs. |
|
|
Unable to remove port security configurations under Interface through NETCONF. |
|
|
Kernel panic crash observed on Cisco Aironet 1815 Series AP. |
|
|
The controller pushes accounting information for PSK local authentication WLANs. |
|
|
Profile mismatch counter does not increase. |
|
|
Cisco Aironet 1832 Series AP does not forward packets to the radio. |
|
|
Cisco Aironet 1840 Series AP: OfficeExtend Access Point (OEAP) crashes due to radio recovery failure. |
|
|
Cisco Catalyst 9130 Series APs: Inconsistent TX power levels advertised in the beacons. |
|
|
Accounting session ID missing from the Cisco Wave 2 APs. |
|
|
Cisco Aironet 2800 Series FlexConnect APs do not process EAP-TLS fragmented packets if there is a delay of more than 50 milliseconds. |
Open Caveats for Cisco IOS XE Bengaluru 17.6.5
|
Caveat ID |
Description |
|---|---|
|
Cisco Aironet 1852 Access Point experiences radio firmware crash. |
|
|
Cisco Aironet 4800 Access Point experiences radio firmware crash. |
|
|
Cisco Catalyst 9115AXI Access Point deteccts invalid cookie and resets to ux domain. |
|
|
The N+1 High Availability setup for FlexConnect APs are not working. |
|
|
EAP-TLS is failing for the wired clients behind Mesh Access Points (MAP) in 2800/3800/4800/1562/6300 series APs. |
|
|
Cisco Aironet 3802 Access Point experiences kernel crash. |
|
|
Cisco Aironet 3800 Access Point experiences radio crash due to stuck beacon. |
|
|
Controller is tracking stale entries due to which anchored client is getting IPv4 and IPv6 addresses at different VLANs. |
|
|
Cisco Catalyst 9130 Access Point is not sending EAP_ID_RESP next assoc-req after Protected Management Frames (PMF) client tx deauth in middle of Extensible Authentication Protocol (EAP) handshake. |
|
|
ICAP: Anomaly capture events for a client on Cisco Catalyst 9130 Access Point is often missing Packet Capture (PCAP). |
|
|
FlexConnect client is intermittently unable to reconnect to an AP. |
|
|
CleanAir statistics are not visible in Cisco Catalyst 9130 Access Points when joined to EWC. |
|
|
Channel 165 is not allowed on Cisco Aironet 2800, 3800, 4800 Access Points. |
|
|
Cisco Catalyst 9120 Access Point experiences vernel panic crash. |
|
|
Cisco Aironet 3800 and 4800 Access Points stop sending Internet Group Management Protocol (IGMP) membership report. |
|
|
Cisco Aironet 3800 Access Point is consistently reporting high QoS Basic Set Service (QBSS) load. |
|
|
Wireless clients unable to connect to Cisco Aironet 1830 Access Point. |
|
|
Cisco Aironet 1815W Access Point is crashing due to Out of Memory (OOM). |
|
|
Rogue rule delete classification configuration is not working. |
|
|
Profile mismatch counter is not increasing. |
Open Caveats for Cisco IOS XE Bengaluru 17.6.4
|
Caveat ID |
Description |
|---|---|
|
Controller does not send the right Association IDentifier (AID) causing APs to not accept new clients. |
|
|
High channel utilization is observed when 9 or more clients use MS TEAMS in a Cisco Catalyst 9130 AP. |
|
|
Cisco Catalyst 9130 AP does not transmit Extensible Authentication Protocol (EAP) identity request. |
|
|
Cisco Catalyst 9120 AP stops beaconing in either of the radios 2.4GHz or 5GHz. |
|
|
Anomaly Capture events for a client in Cisco Catalyst 9130 AP is often missing Packet CAPture (PCAP). |
|
|
Cisco Catalyst 9130 AP does not transmit beacons randomly. |
|
|
Cisco Catalyst 9105AXW AP introduces latency when clients use RLAN ports. |
|
|
CAPWAP MTU flapping occurs in COS APs due to asymmetric MTU between AP to controller and vice-versa. |
|
|
Missing CleanAir data for 2.4GHz in Cisco Catalyst 9120 or 9130 series APs. |
|
|
Four-way handshake is not completed in controller or Cisco Catalyst 9115 AP. |
|
|
Wireless clients cannot reach each other as the ARP resolution fails when performing dynamic VLAN assignment using AAA. |
|
|
High Availability split brain is observed in the controller due to multiple secondary address in the interface. |
|
|
Users connecting to the dot1x SSID are disconnected with CO_CLIENT_DELETE_REASON_EXCLUDE_IP_THEFT delete code. |
|
|
Client fails to connect when protocol based Quality of Service (QoS) is configured. |
|
|
APs are unable to broadcast SSID after provisioning from Cisco DNAC. |
|
|
Standby controller becomes the new active but does not send GARPs for Wireless Management Interface after joining High Availability pair again after network disconnection. |
|
|
FlexConnect WLAN VLAN mapping disappears when using VLAN name defined in the Flex Profile. |
|
|
Controller does not update RFID location properly. |
|
|
6 GHz channels are displayed as 2.4 GHz when executing show ap wlan summary command. |
|
|
AAA VLAN override is not considered during Identity PSK (iPSK) authentication and anchor WLAN. |
|
|
Controller does not send Logical Link Control (LLC) or eXchange IDentifier (XID) spoofed frames after a mobility event. |
|
|
Crash happens intermittently in the controller when WNCd critical process failed. |
|
|
Site tags are not load balanced correctly for each WNCd process. |
|
|
Radio Resource Management (RRM) startup mode is triggered in every reboot as the controller does not keep track of the last state. |
|
|
The LISP RELIABLE REGISTRATION related Syslog needs to be enhanced. |
|
|
Cisco Catalyst 9124 MAP fails to connect to Cisco Aironet 1562 RAP after the first reload of MAP. |
|
|
Cisco Catalyst 9100 AP Plug and Play (PnP) is unable to resolve any public Network Time Protocol (NTP) server. |
|
|
Upstream video traffic drops in Cisco Catalyst 9124 AP. |
|
|
The Local Web Authentication (LWA) client gets deleted immediately when joining the Flex WLAN after a Site or Policy Tag update. |
|
|
Cisco Catalyst 9115 and 9120 APs are stuck in boot loop due to signature verification failure. |
|
|
Cisco Catalyst 9130 Series AP experiences kernel panic crash in NSS. |
|
|
Cisco Catalyst 9100 AP does not transmit the directed broadcast over-the-air. |
Open Caveats for Cisco IOS XE Bengaluru 17.6.3
|
Caveat ID |
Description |
|---|---|
|
Improving false radar detection in Cisco Catalyst 9105 Series APs, Cisco Catalyst 9115 Series APs, and Cisco Catalyst 9120 Series APs. |
|
|
Controller does not send the correct association ID (AID), causing APs to reject new client associations. |
|
|
Cisco Catalyst 9130 Series high channel utilization and client lags with 9 or more clients using MS Teams. |
|
|
Cisco Catalyst 9130 Series APs drop packets on air, for Phoenix WinNonlin application. |
|
|
Cisco Catalyst 9120 Series APs show high client count while the neighboring APs have very few clients associated. |
|
|
Tx power for Microcell created by AP for slot 2 of Cisco Catalyst 9130 Series AP. |
|
|
Cisco Catalyst 9800 wireless controller rejects clients with the wrong PMKID, when the client moves from FT-AKM to dot1x-AKM. |
|
|
Cisco Catalyst 9115 Series APs report DFS on channels incorrectly. |
|
|
Cisco Catalyst 9130 AP causes unexpected fragmentation of packets when using data encryption. |
|
|
AP crashes due to null pointer de-reference. |
|
|
Cisco Catalyst 9115 AP displays CAC behavior when it moves to another wireless controller. |
|
|
Central Web Authentication clients in the Run state cannot go online. |
|
|
Unmarking of dirty VLAN by link-local or any IPv6 address, in the controller VLAN pool. |
|
|
Cisco Catalyst 9800 wireless controller deletes clients when DHCP RELEASE is sent by the client when WLAN is configured for 802.1x + Posture. |
|
|
Memory leak in the WNCD process after the number of AP clients increase and decrease. |
|
|
Cisco Catalyst 9800 wireless controller delays the transmission of the EAPOL M1 key. |
|
|
Memory depletion observed in the FlexConnect deployment and high WAN latency. |
|
|
The Celsius and Fahrenheit temperature ranges are swapped in the Information tab. |
|
|
Country codes JP/J3/J2 to be removed from the configuration setup wizard. |
|
|
Cisco Catalyst 9800 wireless controller deletes AVC statistics every 5 minutes. |
|
|
Cisco Catalyst 9800 wireless controller sends incorrect payload information to the AP, when mesh RRM is enabled or disabled. |
|
|
Traceback encountered on Cisco Catalyst 9800 wireless controller standby running 17.3.5EFT. |
|
|
The controller crashes during the NMSPD process. |
|
|
FlexConnect WLAN-VLAN mapping disappears if the same VLAN name defined in the Flex profile is used. |
|
|
Fast Transition roaming fails due to PMKID validation failure. |
|
|
The Stealthwatch netflow template does not export wireless netflow on the controller. |
|
|
Clients unable to pass traffic completely after roaming using WPA2 OKC. |
Open Caveats for Cisco IOS XE Bengaluru 17.6.2
|
Caveat ID |
Description |
|---|---|
|
Cisco Catalyst 9800 wireless controller (17.6.1) with Cisco Catalyst 9120 AP and Cisco Wireless IP Phone 8821, faces delays in voice downstream and has signalling issues. |
|
| Firmware crash observed in Cisco Catalyst 9117 Series APs. | |
|
In Cisco Catalyst 9130 Series APs, Sensord crash is observed after off_channel RX timeout request is sent. |
|
|
Software crashes during WCPD process, when Cisco Catalyst 9130 Series APs are connected to the Cisco IOS XE Bengaluru 17.6.1 controller. |
|
|
Cisco Catalyst 9120 Series APs crash due to kernel panic after an upgrade from Cisco IOS XE 17.3.3.26 to Cisco IOS XE 17.3.4.30. |
|
|
The Cisco CleanAir interference devices are not merged in clusters. |
Open Caveats for Cisco IOS XE Bengaluru 17.6.1b
There are no new open caveats for this release.
Open Caveats for Cisco IOS XE Bengaluru 17.6.1
|
Caveat ID |
Description |
|---|---|
|
Cisco Catalyst 9120 AP reloads unexpectedly after upgrading to 8.10.158.38. |
|
|
Cisco Catalyst 9130 AP reloads unexpectedly due to kernel panic. |
|
|
Controller reloads unexpectedly on Pubd process in evlib. |
|
|
Cisco Catalyst 9115 AP reloads unexpectedly after loading the 17.3.3 ES6 image. |
|
|
AP data for \"total frame error over air\" & \"multicast/broadcast counter\" are missing. |
|
|
Ping loss increases after two days of reboot. |
|
|
Cisco Aironet 4800 APs in Enhanced Local Mode (ELM) and Local Mode on same controller/RF group are detecting each other as honeypot. |
|
|
Cisco AP is not accepting clients in 2.4 GHz. |
|
|
Cisco Catalyst 9130 AP running 17.5.1 fast-locate records are not sent even when client is connected to the AP. |
|
|
RRM AP transmit power is not moving into the maximum or minimum configured power. |
|
|
Cisco Catalyst 9120 AP stops transmitting frames to Macbook after session reauth. |
|
|
Memory leak is observed due to linux_iosd-imag. |
|
|
Cisco AP with non-EWC image is being factory reset due to DHCP 43 option with type f2 is set. |
|
|
Cisco Catalyst 9120 AP fails to forward packets. |
|
|
Cisco Catalyst 9130 APs display 100% channel utilization. |
|
|
Cisco Catalyst 9120 AP fimware crash is observed on radio 1. |
|
|
Controller crashes after client connection timeout. |
|
|
Wired Phones connected to mesh APs not able to pass the traffic with tagged VLAN. |
Resolved Caveats for Cisco IOS XE Bengaluru 17.6.7
|
Identifier |
Headlines |
|---|---|
| CSCwe42200 |
The controller configured on the radius server using Fully Qualified Domain Names (FQDN) is not properly updated on the Domain Name System (DNS) periodic update. |
| CSCwe81552 |
Transmit Power Control (TPC) not working as expected on the secondary radio operating on the 5-GHz band. |
| CSCwh58099 |
The controller allows the client to reconnect after client deletion and Change of Authorization (CoA) termination. |
| CSCwh68219 |
AP clients fail to authenticate through 802.1x using EAP-TLS. |
| CSCwh09642 |
IP theft seen in some site tags as the zone ID shows 0x00000000. |
| CSCwh33056 |
Policy tag description disappears after deleting WLAN location entries. |
| CSCwi08147 |
The controller GUI does not allow modifying QoS policies without setting the QoS SSID policy. |
| CSCwe11213 |
Cisco Catalyst 9130 AP crashes due to radio recovery failure. |
| CSCwf13107 |
SCB Mismatch: Radio ends abnormally during longevity test with Cisco Catalyst 9105 AP. |
| CSCwf13804 |
APs randomly fail to onboard new client associations with netlink_socket_receive multicast_group 1 return failure: No buffer space available errors. |
| CSCwf53520 |
Cisco Aironet 1815 AP experiences kernel panic crash. |
| CSCwh19988 |
CG platforms require AP806 WDT to allow reboot. |
| CSCwh33190 |
Cisco Catalyst 9115 AP (Local mode) ends abnormally due to kernel panic. |
| CSCwh54762 |
Cisco Catalyst 9120 AP ends abnormally due to kernel panic. |
| CSCwh59543 |
Radio firmware and CAPWAPd ends abnormally during scale longevitiy in Cisco Catalyst 9120 AP. |
| CSCwh61011 |
Cisco Catalyst 9120 APs and 9115 APs unexpectedly disjoin from the controller and are not able to establish DTLS again. |
| CSCwh63270 |
Cisco Catalyst 9130AXI APs crash due to radio failure. |
| CSCwh68360 |
Cisco Catalyst 9120 AP experiences kernel panic. |
| CSCwh74663 |
Cisco Aironet 2800/3800/4800 APs, Cisco Aironet 1560 Outdoor AP, and Cisco Catalyst IW6300 Heavy Duty Series APs do not send QoS data frames downstream. |
| CSCwh81332 |
Cisco Catalyst 9130 APs experience kernel panic crash after an upgrade to Cisco IOS XE Bengaluru 17.6.6. |
| CSCwh92425 |
Cisco Catalyst 9130 or 9136 APs do not respect the Power Save mode. |
| CSCwi19481 |
Cisco Catalyst 9130 APs in Flex mode stop forwarding router advertisements after 4 to 6 hours of uptime. |
| CSCwi28172 |
Cisco Catalyst 9120 AP kernel panic observed. |
| CSCwi67013 |
Cisco Aironet 2800 AP in Taiwan domain does not send WiFi signals in channel 52, 120, 124, and 128. |
| CSCwi92439 |
Cisco Aironet 1815 APs are reporting high channel utilization in 5Ghz. |
| CSCwi96089 |
Cisco Wave 2 APs do not plumb keys after session timeout reauthentication. |
| CSCwf91445 |
Controller pushes RADIUS accounting information to the AP when SSID is configured for local authentication with PSK as AKM. |
| CSCwh20944 |
Cisco Catalyst 9120 AP ends abnormally due to kernel panic. |
| CSCwh27366 |
Cisco Aironet 3800 AP radio firmware crash reset code 2 with crash signature gdp |
| CSCwh27425 |
Cisco Catalyst 9115AX AP does not forward a part of the CAPWAP data packets to the uplink direction. |
| CSCwh50681 |
New SSID is broadcasted after a wireless upgrade. |
| CSCwh50813 |
The channel set fails when Cisco Aironet 1800 or 1500 APs try to come out after Dynamic Frequency Selection (DFS) NOL list. |
| CSCwh62342 |
AP FlexConnect as mDNS gateway does not respond correctly when the LSS filter is enabled in 5-GHz band. |
| CSCwh75431 |
Cisco Aironet 1830 and 1850 APs report false high channel utilization causing performance issues in 5-GHz band. |
| CSCwi05672 |
Cisco Catalyst 9130 AP wireless driver does not decrypt the packet when IP packets are sourced from some wireless clients. |
| CSCwi06055 | Cisco Cisco Industrial Wireless 3702 AP radios are reset and remain down when the board temperature is less than -20 C. |
| CSCwi22270 |
Cisco Catalyst 9120 AP: Radio crash observed during longevity run. |
| CSCwi52692 |
Cisco Catalyst 9130 AP UPOE Spare Pair turn off CDP TLV message. |
| CSCwi91970 |
Transmission stuck issue is observed when Cisco Catalyst 9120 AP detects any radar event. |
| CSCwi92913 |
Cisco Catalyst 9105 and 9115 Series APs report false radar detection. |
Resolved Caveats for Cisco IOS XE Bengaluru 17.6.6a
|
Identifier |
Headline |
|---|---|
|
Cisco IOS XE Software Web UI Privilege Escalation Vulnerability. For more information, see Security Advisory: cisco-sa-iosxe-webui-privesc-j22SaA4z. |
Resolved Caveats for Cisco IOS XE Bengaluru 17.6.6
|
Identifier |
Headline |
|---|---|
|
Controller remarks SIP packets from CS3 to CS0 in upstream or downstream when voice Call Admission Control (CAC) is configured. |
|
|
Cisco Aironet 1852 AP experiences radio firmware crash. |
|
|
Cisco Aironet 1572EAC AP does not respond to the Canadian EIRP regulation. |
|
|
Samsung device (Galaxy Tab S6 Lite - P610K) association is rejected with status code 40. |
|
|
Cisco Catalyst 9120 AP reloads unexpectedly due to radio firmware crash. |
|
|
Channel 165 is not allowed in Cisco Aironet 2800, 3800, and 4800 Series APs. |
|
|
Cisco Catalyst 9130 AP does not include the management frame count calculation across Access Points chipsets. |
|
|
Cisco Catalyst 9120 AP does not disable High Efficiency (HE) with dual 5-GHz in Slot 0. |
|
|
Cisco Aironet 3800 AP radio reloads unexpectedly when beacon is stuck. |
|
|
Controller Quality of Service (QoS) page does not load when ACL has double quotes as special character in the name. |
|
|
Controller crashes after failing to match the interface ID in the anchor message. |
|
|
Cisco Catalyst 9115 AP does not transmit the first CAPWAP data keepalive on wire during Flex N+1 failover. |
|
|
Controller does not send the group temporal key (GTK) M5 packet to 8821 phone after Fast Transition (FT) roaming between wncds. |
|
|
Client is unable to roam successfully and pass traffic in SDA environment. |
|
|
Client traffic fails with N+1 when Cisco Catalyst 9120 AP sends CLIENT_DEL_STOP_REASSOC. |
|
|
Cisco Aironet 3800 AP consistently reports high QoS Basic Set Service (QBSS) load. |
|
|
Cisco Catalyst 9120 AP deauthenticates the workgroup bridge continuously after roam. |
|
|
Controller does not plumb IPv4 address in IP Source Guard (IPSG) datapath in CWA SSIDs for clients with single IPv4 address. |
|
|
The show wireless client detail sum command displays ipad (10 generation) as not classified and unknown device. |
|
|
Cisco Catalyst 9120 Access Point sometimes fail the EAP-TLS port authentication as password cannot be decrypted. |
|
|
Access Point does not send packets from wired interface to subnet 192.168.129.0/24. |
|
|
Wireless clients are unable to connect to Cisco Aironet 1830 AP. |
|
|
Cisco Aironet 3802 AP experiences kernel crash. |
|
|
Cisco Catalyst 9130 APs display incorrect Local power constraint value in management frames. |
|
|
Cisco Aironet 3802 AP broadcasts different power values in beacon country IE. |
|
|
Cisco Catalyst 9105AXW AP fails to boot when number of bad blocks are greater than 90. |
|
|
The device-tracking binding reachable-lifetime command does not work on the controller. |
|
|
FlexConnect client is unable to reconnect to an AP. |
|
|
Aeroscout T15e (Third-party device) tags attached to medical devices do not report temperature data due to extra bytes. |
|
|
Bursts of Virtual Router Redundancy Protocol (VRRP) traffic sent from controller and switch port remains down when storm-control action is configured. |
|
|
CSV file import fails when static AP mapping table already contains few entries. |
|
|
Wired client behind Cisco Catalyst 9105 AP fails to pass traffic. |
|
|
Controller GUI hangs when Application Visibility and Control (AVC) profile is enabled with special characters. |
|
|
Cisco Aironet 1852 AP crashes due to radio failure. |
|
|
Cisco Catalyst 9130 AP experiences random radio firmware reload. |
|
|
WNCd crash is observed when accessing Crimson database. |
|
|
One-shot error is displayed when applying AP Model Service Pack (APSP) on controller. |
|
|
Cisco Wave 2 APs in FlexConnect standalone mode experiences client disconnections for DHCP renewal after 18 CAPWAP discovery request without any response. |
|
|
Spectralink Versity 9553 phones experience sporadic and robotic voice delays during a short period after Fast Transition (FT) roaming between Cisco Aironet 3802 APs. |
|
|
Cisco Catalyst 9130 (VID03) AP does not have the "iox.tar.gz" file in Day 0 factory image. |
|
|
Higher Packet loss is observed during 8821 voice call. |
|
|
The Monitoring > Wireless > AP Statistics page does not load in the GUI for Cisco Aironet 3800 AP. |
|
|
Wireless device tracking fails while adding static IP and MAC bindings. |
|
|
Clients after a Change of Authorization (CoA) is allowed network access for a short duration using cached PMK. |
|
|
Wireless client cannot communicate after session timeout when AP drops once during the session. |
|
|
Controller GUI login screen appears blank when ampersand is used in username. |
|
|
APs intermittently report high channel usage in 5-GHz radio with 40 MHz. |
|
|
Cisco Wave 2 APs improve PMTU discovery mechanism to honor the ICMP unreachable maximum transmission unit (MTU) value. |
|
|
Controller does not provide RSSI location data for some of the RFID tags in database. |
|
|
Cisco Catalyst 9105 AP randomly reloads with Kernel panic - not syncing: Fatal exception error message. |
|
|
The image download space check in /tmp is 40000 only, most of the AP image has more than 60-MB. |
|
|
Clients are unable to roam between APs with WPA3 enterprise SSID and SuiteB192. |
|
|
Mobile devices cannot prompt incorrect password in Cisco Catalyst 9130 AP or controller after PSK SSID password is changed. |
|
|
Client data rate displays greater value in Assurance Client dashboard. |
|
|
Controller does not send reassociation response for Fast Transition (FT) reassociation request with RIC for TID 0. |
|
|
Cisco IOx application experiences installation failure during application activation phase. |
|
|
Cisco Catalyst 9120 AP reloads unexpectedly with kernel panic - not syncing: fatal exception. |
|
|
Cisco Wave 2 APs radio firmware reloads unexpectedly when queue is stuck. |
|
|
Cisco Catalyst 9120 AP sends RTS with 6 Mbps when the rate is configured as unsupported. |
|
|
AP does not allow a PMF WPA3 client to associate after the client sends deauthentication by itself. |
|
|
Cisco Wave 2 APs leak Network Address Translation (NAT) IP from Cisco IOx application. |
|
|
Cisco Catalyst 9130AX AP experiences kernel panic. |
|
|
Cisco Wave 2 APs are not encrypting EAP_ID_REQ after M1 to M4 and not updating PMKID for dot1x OKC. |
|
|
Cisco Catalyst 9115 AP experiences kernel panic when PC or LR is at drop_pagecache_sb+0x78/0x110. |
|
|
Wireless client is deauthenticated after idle timeout. |
|
|
Single band BCM WGB radio 0 Transmission power decrease by nearly 20 dBm while configuring the antenna number. |
|
|
AP crashes when PC and LR are at get_partial_node.isra. |
|
|
Controller and Cisco Catalyst 9124 AP are unable to get wired client information from workgroup bridge. |
|
|
Cisco Wave 2 APs drop upstream Extensible Authentication Protocol (EAP) packets. |
|
|
Cisco Catalyst 9130 AP does not transmit beacons. |
|
|
Crash is observed in the standby controller when saving QoS table to standby. |
|
|
Cisco Catalyst 9124 AP does not forward traffic to workgroup bridge after a session timeout. |
|
|
% Error: AP is already in the requested state syslog message is printed while changing AP location using controller GUI. |
|
|
The username is missing randomly for wireless 802.1x clients in GUI or CLI. |
|
|
APs intermittently stops sending Internet Group Management Protocol (IGMP) membership report. |
|
|
Cisco Catalyst 9105AXW AP experiences large number of bad blocks. |
|
|
AP crashes due to CALLBACK FULL reset radio error. |
|
|
Cisco Catalyst Cellular Gateway 522 device lost certificate after each reload. |
|
|
Root certificates of Cisco Catalyst Cellular Gateway (CG) 522 are lost after each reload. |
|
|
Cisco Catalyst 9120 Series AP experiences kernel panic crash. |
|
|
Controller reloads unexpectedly. |
|
|
Cisco Aironet 1815W AP crashes due to out-of-memory issue. |
|
|
WGB wired clients connected to RAP in local mode, sends upstream broadcast packets and causes out-of-memory on the RAP. |
|
|
Cisco Catalyst 9105AXW Series APs do not recover after upgrade. |
|
|
Cisco Aironet 3800 Series AP reloads unexpectedly due to FIQ/NMI reset. |
|
|
Cisco Aironet 2800/3800/4800/1562 Series APs and Cisco Catalyst IW6300 Heavy Duty Series APs: EAP-TLS fails for wired clients behind MAP. |
|
|
Radio core crashes due to TCQ stuck state with frequent channel changes. |
|
|
Controller reloads unexpectedly with "Critical process wncd fault on rp_0_0 (rc=134)". |
|
|
Clients connected to FlexConnect AP with profile policy having VLAN 1 ID is assigned to VLAN 1 instead of native VLAN. |
|
|
Controller EVENTLIB-3-CPUHOG Traceback observed. |
|
|
Cisco Catalyst 9124AXI AP does not forward RLAN traffic to the upstream network. |
|
|
Unexpected reboot due to Wireless Network Control Daemon (WNCD) in Cisco Catalyst 9000 Switches. |
|
|
Embedded Wireless Controller (EWC) preferred active configuration is lost after updating CAPWAP AP configuration on GUI. |
|
|
Not possible to delete EWC core system report files, if AP is changed to CAPWAP mode. |
|
|
Radio firmware crash experienced in Cisco Catalyst 9117 Series AP. |
|
|
Cisco Catalyst 9120 Series AP experiences kernel panic. |
|
|
Segmentation fault on the controller due to NULL timer. |
|
|
Cisco Catalyst 9130AXI Series AP Slot 1 does not announce High Throughput (HT)/Very High Throughput (VHT)/High-Efficiency (HE) capabilities when dual radio is enabled. |
|
|
Cisco Wave 2 AP logs display CAPWAP MTU discovery issues. |
|
|
Rogue containment details not shown in the show wireless wps rogue ap detail command. |
|
|
WNCD process crashes unexpectedly in a large scale setup. |
|
|
Dynamic Channel Assignment (DCA) assigns wrong channels after Dynamic Frequency Selection (DFS) events. |
|
|
Controller to delete client for the EAP authentication to go through. |
|
|
Cisco Catalyst 9800-CL Wireless Controller crashes unexpectedly. |
|
|
AP manager crashes due to ISSU upgrade, causing the controller to go into boot loop. |
|
|
Cisco Catalyst 9800-CL Wireless Controller crashes with "Last reload reason: Critical process wncd fault on rp_0_0 (rc=139)". |
|
|
Cisco Aironet 1815W AP crashes due to kernel panic. |
|
|
Cisco Aironet 3800 Series AP reloads unexpectedly due to FIQ/NMI reset. |
|
|
Kernel panic observed on Cisco Catalyst 9120 Series AP. |
|
|
Wireless clients are unable to connect to Cisco Aironet 1830 Series AP after an input or output error message. |
|
|
The 5-GHz radio is operationally down in the -A domain APs in Panama. |
|
|
Controller sends two CAPWAP control payloads for DOT11R_WLC_MAC_IP_PAYLOAD with the same sequence numbers. |
|
|
WCPd reloads unexpectedly due to reuse of freed packets. |
|
|
Unable to login to the controller GUI or command line interface with a user created by Day 0 wizard. |
|
|
AP LED flash automatically turns on after reboot. |
|
|
APs may not detect radar on the required levels after CAC time. |
|
|
EWC Time Offset is not updated on the GUI. |
|
|
LED on APs turning white randomly. |
|
|
Cisco Catalyst 9120 Series AP: Probes and beacons are not included in the management frame count across AP chipsets. |
|
|
Controller crashes when running AP packet capture. |
|
|
Cisco Catalyst 9120 Series AP: AP does not respond to client's probe or authentication due to the TX STUCK issue. |
|
|
Unable to downgrade the Cellular Gateway device through the vManage GUI. |
|
|
Cisco Catalyst 9120 Series AP experiences kernel panic crash. |
|
|
Controller reboots due to memory corruption when processing DHCP Option 82. |
|
|
Controller device tracks stale entry due to the anchored client receiving IPv4 and IPv6 in different VLANs. |
|
|
Login error observed in macOS with guest login. |
|
|
The controller EPC inner filter captures CAPWAP data fragments and CAPWAP control not filtered by MAC. |
|
|
Cisco Wave 2 AP radio reloads unexpectedly due to the beacon being stuck. |
|
|
Cisco Catalyst 9130 Series APs fail to start CAPWAP due to interface reset every 52 seconds, during the DHCP process. |
|
|
The controller reloads unexpectedly with CAPWAP window size set to 0. |
|
|
Cisco Catalyst 9120 Series AP: Firmware crashes when running multicast and longevity with more than 80 clients. |
|
|
Cisco Aironet 1815 Series AP drops RLAN and VLAN traffic with looped port. |
|
|
Cisco Wave 2 APs do not send the delete reason to the controller, resulting in stale entries. |
|
|
Kernal panic crash observed on Cisco Aironet 1830 Series AP. |
|
|
Cisco Catalyst 9105 Series AP and Cisco Aironet 1815 Series APs MAC device can not get an IP address in the Ethernet port after AAA VLAN override. |
|
|
Firmware radio reloads unexpectedly on Cisco Aironet 4800 AP. |
|
|
Cisco Catalyst 9130 Series AP do not send EAP_ID_RESP after PMF client TX deauthentication, in the middle of EAP handshake. |
|
|
The controller does not respond to keepalive from the AP after AP disconnect. |
|
|
Cisco Wave 2 AP reloads due to Systemd critical process crash. |
|
|
The starting position of each attribute in the show command should be fixed irrespective of size of the string. |
|
|
RRM process crashes on the controller. |
|
|
Cisco Catalyst 9130 Series AP drops EAP-TLS frames. |
Resolved Caveats for Cisco IOS XE Bengaluru 17.6.5
|
Caveat ID |
Description |
|---|---|
|
AP reloads due to kernel panic. |
|
|
Cisco Wave1 APs are stuck in bootup loop due to image checksum verification failure. |
|
|
iOX app fails to install on the Cisco Catalyst 9130, 9120, and Cisco Aironet 4800 APs. |
|
|
Cisco Aironet 2802 and 3802 APs are crashing due to kernel panic. |
|
|
Cisco Aironet 3800 AP crashes due to kernel panic. |
|
|
Cisco Catalyst 9124 MAP is failing to connect to Cisco Aironet 1562 RAP after first reload of MAP. |
|
|
AP conversion to CAPWAP via DHCP Option 43 is not working. |
|
|
Cisco Catalyst 9130 AP is sending incorrect channel list on out of band Dynamic Frequency Selection (DFS) event causing client connectivity issues. |
|
|
A workgroup bridge (WGB) AP is stuck in Extensible Authentication Protocol over LAN (EAPOL) state. |
|
|
Cisco Aironet 2802 AP crash is observed. |
|
|
Cisco Catalyst 9300 switch is not flushing remote MAC address after roaming to a local AP. |
|
|
Cisco Catalyst 9120, 9115, and 9105 APs: Radio firmware crash is observed. |
|
|
Cisco Catalyst 9130 AP sends beacon with incorrect datarates; different rates are sent for same slot on different BSSIDs. |
|
|
IPReassembler element strips last 20 bytes of last fragment. |
|
|
Cisco Catalyst 9117 AP reloads unexpectedly due to kernel panic. |
|
|
Wave 2 APs are crashing: Systemd critical process crash - dnsmasq-host.service failed. |
|
|
WCPd crash is seen on Cisco Aironet 3800 APs. |
|
|
AP drops packets addressed to 10.128.128.127 or 10.128.128.128. |
|
|
Cisco Catalyst 9166I AP in FlexConnect local-auth mode keeps rebooting when Federal Information Processing Standard (FIPS) is enabled with dot1x security client. |
|
|
AppHost: App install fails when USB state is disabled in ap-join profile. |
|
|
Cisco Wave 2 APs: CAPWAP maximum transmission unit (MTU) flaps due to asymmetric MTU from AP to controller and vice versa. |
|
|
Cisco Catalyst 9120 and 9130 APs: CleanAir data for 2.4-GHz is missing. |
|
|
Cisco Catalyst 9130 AP unexpectedly reloads. |
|
|
Local Web Authentication (LWA) client is immediately deleted when joining FlexConnect WLAN after a change in site tag or policy tag. |
|
|
Cisco Catalyst 9117 AP reloads unexpectedly due to kernel panic. |
|
|
A WGB with static IP loses its IP address after multiple roams. |
|
|
CAPWAP flap occurs when Virtual Router Redundancy Protocol (VRRP) version3 is present in the network. |
|
|
Cisco Catalyst 9120 AP: Radio core dump is observed. |
|
|
In FlexConnect groups configuration, backslash(\) at the end of the shared secret (for Radius servers) is not allowed. |
|
|
Cisco Catalyst 9130 AP: Kernel panic crash is observed with memory corruption with ICAP. |
|
|
Cisco Catalyst 9120 AP shows high noise levels on 5-GHz radio. |
|
|
Cisco Aironet 1832 AP crashes due to radio failure. |
|
|
Cisco Wave1 APs n FlexConnect local-switching mode is not forwarding IP fragmented packets received with DF. |
|
|
Cisco Aironet 1815I AP is rebooting -PC is at edma_poll / LR is at dma_cache_maint_page |
|
|
Cisco Catalyst 9120 AP cannot operate in mGig when EEE is enabled on switchport. |
|
|
Cisco Catalyst 9120 AP: CleanAir sensor is crashing. |
|
|
Cisco Catalyst 9105AXI AP is requesting 30 watts of power instead of 15.4 watts. |
|
|
AP saves only 31 characters instead of 32 for site tag causing the AP to go into misconfiguration state. |
|
|
AP is not initiating Google Remote Procedure Calls (gRPC) connection to Cisco DNA Centre correctly after token expiry. |
|
|
Cisco Catalyst 9120 AP: Kernel panic is observed. |
|
|
A pubd crash is observed in 200-AP mesh configuration with telemetry subscriptions. |
|
|
Controller crashes in WNCd process when handling an EAP-NAK. |
|
|
Client is not able to pass traffic after roaming using Wi-Fi Protected Access Version 2 (WPA2) Opportunistic Key Caching (OKC). |
|
|
Wireless AAA Dynamic VLAN Assignment: Wireless clients cannot reach each other. |
|
|
Continuous wncmgrd CPUHOG traceback with scale Flexible NetFlow (FNF) mapping to policy profile 100% wncd utilization. |
|
|
Multicast data is not sent to clients; some APs unable to join. |
|
|
cEdge device pushes wrong syntax. |
|
|
Client fails to connect when protocol based QoS is configured. |
|
|
Packet destined for Layer2 socket application gets delivered to Layer3 socket application. |
|
|
Stale entry is observed in the show wireless device tracking database ip command output after client deletion. |
|
|
Controller wncd crash is observed. |
|
|
Cisco Catalyst 9800-80 controller crashes with the reason: Critical process wncd fault on rp_0_3 (rc=134). |
|
|
Link goes down due to local fault. |
|
|
Memory leak is observed in wncd process when under load. |
|
|
Linux iosd crash is observed on standby controller during reload of the Cisco Catalyst 9800-L controller. |
|
|
Controller is accounting wrong class attribute in accounting packets. |
|
|
Timer is not running; stale client are not deleted by the controller. |
|
|
IOSXE crash on Pubd core@green_be_rec_marshal_inline while remove/add telemetry server hostname. |
|
|
Multicast Domain Name System (mDNS)-gw Location Specific Services (LSS) is not filtering correctly if AP with services and Radio Resource Management (RRM) neighbor radio start 00XX. |
|
|
IP theft occurs due to client stale entries in ODM database. |
|
|
Cisco Catalyst 9800-80 controller shows consistent high CPU utilization in wncd with 200 APs. |
|
|
SIGSEGV crash is observed when incrementing roaming statistics. |
|
|
AAA VLAN override is not considered during Identity PSK (iPSK) authentication and anchor WLAN. |
|
|
PI is not displaying/process AP disassociate snmp-trap from controller. |
|
|
Controller is not sending Logical Link Control (LLC) or XID spoofed frames after a mobility event. |
|
|
WNCD crash on co_fetch_mbssid_from_rbssid. |
|
|
PI 3.10.1: APs associated with controller is showing interface as \"Half duplex\". |
|
|
Controller fails to update AP configuration with error \"% Error: no ap_name exists\". |
|
|
Ignore CAPWAP_PAYLOAD: AP_LAN_CONFIG payload has wrong RLAN port enable value from Cisco Aironet 2700 AP. |
|
|
Clients are getting deauthenticated imediately after getting IP address in a configuration that has local web authentication + local switching + central authetication. |
Resolved Caveats for Cisco IOS XE Bengaluru 17.6.4
|
Caveat ID |
Description |
|---|---|
|
Controller reloads unexpectedly due to Multicast Domain Name System (mDNS). |
|
|
PMK-Propagation bulk sync failures are observed with scaled setup. |
|
|
Improve serviceability to figure out the reason as to why the controller blacklists 802.11w client. |
|
|
Controller deletes client when DHCP RELEASE is sent by client during posture. |
|
|
WNCD platform state displays as DEAD for show aaa servers output. |
|
|
WLANs do not get pushed to APs in a single instance because wlan status is not updated and remains FALSE. |
|
|
Client gets stuck in Authenticating state after failing GTK broadcast rotation. |
|
|
Controller blacklists 802.11w client due to CO_CLIENT_DELETE_REASON_EXCLUDE_VLAN_FAIL. |
|
|
AAA server does not mark as UP even when it is reachable and client does not get authenticated using this server. |
|
|
Controller initiates Extensible Authentication Protocol over LAN (EAPOL) reties for the client in RUN state. |
|
|
Clients are unable to pass traffic in RUN state after CoA is completed. |
|
|
WNCD process experiences memory leak due to unknown responses from the RADIUS server. |
|
|
Controller sends the wrong payload information to AP when mesh RRM is enabled or disabled. |
|
|
Controller sends duplicate NS frame as unicast to wireless client or WGB and blocks the duplicate address detection (DAD) process. |
|
|
Logging message is not seen when load profile threshold is moved to passed or failed for 2.4GHz radio. |
|
|
Static workgroup bridge (WGB) client does not move to RUN state in the controller. |
|
|
MAC authentication bypass (MAB) client does not move to the exclude state during a MAB failure. |
|
|
Packets drop in Cisco Catalyst 9800-CL or 9800-L Wireless Controller when call snooping and SIP CAC is enabled. |
|
|
Samsung devices with more than 1 character Country code do not get classified properly. |
|
|
wireless wlan clear-refcount command does not accept WLAN or policy names with special characters. |
|
|
Controller discards location updates from radio frequency identification (RFID) tags. |
|
|
The show process cpu platform sorted command is critical to monitor some Cisco Catalyst 9800 Series Wireless Controller platform issues. |
|
|
Stale client entries are not deleted automatically nor by clear commands and stuck on device-tracking database. |
|
|
Cisco Catalyst 9130 AP radio experiences a radioFW crash causing network down. |
|
|
Cisco Aironet 4800 AP crash core file observed after 4 days uptime with console message: '[cmd timeout] wifi0: 0x9201=GetRadioStatus'. |
|
|
Cisco Catalyst 9130 APs drop traffic on air for Phoenix WinNonlin application. |
|
|
COS APs with RLAN port connecting to the device running LLDP reboots due to Out of Memory. |
|
|
Transmission power for slot2 is set to the lowest power level (-2dbm or -4dbm) due to which clients are unable to join. |
|
|
Radio recovery fails when Cisco Catalyst 9117 beacon is stuck. |
|
|
Cisco Catalyst 9120AXI AP - capwapd.service failed. |
|
|
Cisco Catalyst 9120 AP running Cisco IOS XE 17.7.1.11 experiences software crash in wcpd process. |
|
|
Central Web Authentication (CWA) clients with Run state cannot go online even though it is in Run state. |
|
|
COS AP disconnects from the controller after CTS switchport configuration. |
|
|
AP does not send multicast data till it snoops IGMPv2. |
|
|
Cisco Catalyst 9130 or 9120 AP in FlexConnect mode does not send Security Association (SA) query. |
|
|
High latency and drops observed when associated with Cisco Catalyst 9130 AP. |
|
|
Cisco Catalyst 9120 or 9130 APs in FlexConnect send Association reject after first successful connection. |
|
|
Cisco Catalyst 9117 AP crashes due to kernel panic in cisco_wlan_crypto_decap. |
|
|
Cisco Catalyst 9117 AP crashes due to Kernel Panic dp_print_host_stats. |
|
|
Cisco Catalyst 9117AXI-E AP experiences kernel panic crashes. |
|
|
Cisco Catalyst 9130 AP is unable to process fragmented EAP frames from client when performing EAP-TLS. |
|
|
Cisco Catalyst 9124 AP: Sometime MAPs are no longer able to join RAP for security failures. |
|
|
Cisco Catalyst 9130 APs generate radio coredumps. |
|
|
AP sends the address resolution protocol (ARP) packet without VXLAN encapsulation. |
|
|
Cisco Catalyst 9130 AP crashes due to kernel panic. |
|
|
Possible radio reset loop when bootup. |
|
|
Cisco Catalyst 9130 AP crashes due to dp_soc_deinit_wifi3+0x354/0x3c0. |
|
|
Mode reset button does not clear CC mode and console blocking configuration in Cisco Catalyst 9115 AP. |
|
|
Cisco Catalyst 9130 AP Kernal crash - PC is at _ZN10CACMetrics25accumulate. |
|
|
SJC24 Alpha Cisco Catalyst 9105 OEAP RLAN1 poe stopped working in Cisco IOS XE 17.9.0.115. |
|
|
Cisco Catalyst 9120 APs delay authentication response frame. |
|
|
APP-hosting segmentation does not work in Cisco Catalyst 9100 AP or Cisco Catalyst 9800 Series Wireless Controller and Cisco IOS XE 17.6.3. |
|
|
Cisco Catalyst 9120 AP displays ASLR ENTROPY INSUFFICIENT messages. |
|
|
Cisco Catalyst 9130 AP Probe suppression for Macro-Micro cell client steering does not work. |
|
|
Cisco Catalyst 9117AX AP radio reloads unexpectedly due to partial command issues. |
|
|
Wireless devices receive Invalid Fast Transition (FT) IE when using FT over-the-ds to roam. |
|
|
Cisco Catalyst 9117AX AP reloads unexpectedly at cmnos_thread.c:3493. |
|
|
Template attach fails when using authentication type NONE for profile. |
|
|
The "Channel Center Segment 0" value in " VHT Operation Info" is set to "0" using Cisco Aironet 2802 AP. |
|
|
Wired client behind Cisco WGB does not take the DHCP IP address. |
|
|
Kernel panic is observed at wlc_fifo_index_peek+0x68/0xa0 [wl]. |
|
|
Kernel panic is observed at ieee80211_bsscolor_update_bsscolor_list. |
|
|
AP crash is observed when PC is at ppr_create_prealloc+0xbc. |
|
|
Cisco Catalyst 9105 AP displays low throughput in 2.4GHz with AX clients and adjacent channel interference. |
|
|
Cisco Catalyst 9130 AP detects its own BSSID as Rogue in 5GHz channel. |
|
|
Cisco Catalyst 9120 AP radio dumps core. |
|
|
AP crash observed in wlan_objmgr_peer_release_ref running Cisco IOS XE 17.3.5. |
|
|
AP crash kernel panic is observed at pci_generic_config_read. |
|
|
Functional SJC Cisco Catalyst 9136i AP experiences gRPC crash in ap-17.8.0.112. |
Resolved Caveats for Cisco IOS XE Bengaluru 17.6.3
|
Caveat ID |
Description |
|---|---|
|
Cisco Catalyst 9800-80 Wireless Controller crashes on 17.3.4 ES9 image. |
|
|
Cisco Catalyst 9120 or 9130 AP leads to CAPWAP process crash loop when AP management password contains white spaces. |
|
|
Controller crashes after running the show telemetry ietf subscription all command. |
|
|
CPU HOG messages and tracebacks are noticed during RRM noise report process. |
|
|
Missing fields are observed when the controller sends the sleeping client access-request. |
|
|
Cisco Catalyst 9800-80 Wireless Controller crashes when running Cisco IOS-XE 17.3.4. |
|
|
Cisco Catalyst 9120, 9130, and 9124 APs do not send NDP packets on slot 1. |
|
|
The controller gets reloaded when memory corruption occurs in WNCD. |
|
|
The controller drops CAPWAP connections when the WNCD CPU is high. |
|
|
Cisco DNA Center experiences performance issue. Controller sends a large number of events for new clients associating with the AP having maximum number of clients. |
|
|
Cisco Catalyst 9130 APs reload unexpectedly after upgrading to 17.3.4 and applying the ESW7 image. |
|
|
Cisco Catalyst 9117 AP reloads unexpectedly due to kernel panic error. |
|
|
Controller displays multiple interference devices with the same device type and different Cluster IDs detected by CleanAir. |
|
|
Cisco Catalyst 9130I AP reloads unexpectedly in Hostapd due to unhandled level 1 translation fault. |
|
|
Parameter change in WLAN resets the Cisco Catalyst 9120 AP radio. |
|
|
APs stop authenticating clients using Flex Local Authentication. |
|
|
Cisco Catalyst 9124 AP experiences low SNR MAP disconnects with RAP when traffic is executed from MAP to RAP. |
|
|
Cisco Catalyst 9120 AP starts beaconing with client TIM even when the client is replying to QoS Null. |
|
|
Dual Band Radio 0 allows only -3 Tx power when the radio operates in 5-GHz. |
|
|
Controller stops accepting APs to join when no response is received from AP after a DTLS Client Hello. |
|
|
Wired printers cannot discover using flex mdns gateway as AP does not query for universal._sub._ipp and universal._sub._ipps. |
|
|
Controller experiences unexpected reboot with Network Mobility Services Protocol (NMSP). |
|
|
High CPU is observed in the controller when rif_mgr process is provoked. |
|
|
Wireless clients get stuck in the IP Learn state after rebooting the controller. |
|
|
Cisco Catalyst 9130 AP experiences kernel panic crash in the monitor path. |
|
|
Cisco Catalyst 9130 AP crashes due to frequent radio resets. |
|
|
Cisco Catalyst 9117 AP experiences kernel panic crash at dp_rx_process. |
|
|
Cisco Catalyst 9120 APs are unable to complete authentication and get stuck when 802.11w clients join the APs. |
|
|
Standby reloads with low memory and WNCD crash. |
|
|
Cisco Aironet 3802 AP experiences MU sounding errors leading to TCQ stuck issue. |
|
|
HTTP session, SNMP, and show commands stop working in Cisco Catalyst 9800-80 Wireless Controller when dbm process CPU is high at 100%. |
|
|
WLAN stopped broadcasting after a configuration change in the WLAN profile. |
|
|
The controller crashes and reloads when writing an RP core file with wncd in the name. |
|
|
Controller performs incorrect available bandwidth calculations for QBSS_AAC with voice CAC, and FlexConnect AP. |
|
|
Cisco Catalyst 9800-80 Wireless Controller crashes intermittently. |
|
|
The comeback timer is missing when Cisco Catalyst 9130 or 9120 AP is configured in Flexconnect mode. |
|
|
Cisco Catalyst 9130 or 9120 AP in FlexConnect mode does not send SA query. |
|
|
Cisco Catalyst 9120 or 9130 APs in FlexConnect mode sends association reject after the first successful connection. |
|
|
Cisco Catalyst 9117 AP crashes due to kernel panic in cisco_wlan_crypto_decap. |
|
|
Cisco Catalyst 9130 AP driver crashes when PC and LR is at cnss_wlfw_wlan_cfg_send_sync. |
|
|
Cisco Wave 2 and 802.11AX APs syslog is seen when using "Kern" facility value in AP join profile. |
|
|
Dual Radio Assignment is missing for random Cisco Catalyst 9130AXI APs. |
|
|
Probe filter in Cisco Catalyst 9120 AP does not limit unwanted probes from the AP to the controller. |
|
|
Memory leak is observed in Cisco IOS-XE 17.7 throttle images that points to dc_add_dot11_profiles. |
|
|
WGB wired clients cannot reach the standard gateway temporarily when MAC flapping occurs between the actual port and WGB switch port. |
|
|
Roaming issue is observed when there is a PMKID mismatch in the controller. |
|
|
Identitymgmt service in Cisco DNA Center crashes when APs make too many connections to Identitymgmt. |
|
|
Cisco Catalyst 9115 AP reloads unexpectedly due to kernel panic. |
|
|
The controller has stale AP entries that stop further AP configuration. |
|
|
Cleanup client entry in Authenticating state when a client is in RUN state in any controller in the network. |
|
|
Controller profiling does not display the device name from DHCP Option 12. |
|
|
Controller does not display the full certificate when TrustPoint is configured for Webadmin or WebAuth. |
|
|
Client cannot connect to Cisco Catalyst 9130 AP with tri-radio (slot 2) enabled. |
|
|
AP flaps when WNCd to which it maps report high CPU utilization. |
|
|
Cisco Catalyst 9120 AP drops CAPWAP connection when running the debug client. |
|
|
Not able to discover and print using mDNS as SRV, TXT, A/AAAA records are removed based on TTL. |
|
|
Cisco Catalyst 9130AX AP experiences kernel panic crash. |
|
|
Vendor OUI mismatch prints wrong message when receiving an association or a disassociation request. |
|
|
AP does not assign native VLAN when no VLAN IDs are configured in Policy Profile. |
|
|
Cisco Catalyst 9120AX APs display Flexible Radio Assignment (FRA) not capable although FRA is enabled on Cisco IOS-XE 17.3.4c release. |
|
|
Cisco Catalyst 9117AX AP reloads unexpectedly at whal_recv.c:629. |
|
|
Cisco Catalyst 9117AX AP reloads unexpectedly at whal_xmit.c:3663. |
|
|
Flap occurs between DHCP and static IP address when ethernet VLAN tagging is enabled on AP. |
|
|
Cisco Catalyst 9105AX AP introduces latency when clients use RLAN ports. |
Resolved Caveats for Cisco IOS XE Bengaluru 17.6.2
|
Caveat ID |
Description |
|---|---|
|
Controller is unable to send RADIUS packets to the RADIUS server. |
|
|
Cisco Catalyst 9120 Series APs can not send ACK over the air during EAP negotiation. |
|
|
Cisco Catalyst 9800-80 controller crashes due to a CPU HOG in the RRM process. |
|
|
Cisco Catalyst 9800 controller does not send server Hello packets to the AP when enabling DTLS encryption. |
|
|
Cisco Catalyst 9120 AP reloads unexpectedly upgrading to 8.10.158.38. |
|
|
Cisco Catalyst 9130 AP reloads unexpectedly due to kernel panic. |
|
|
When the client tries to join the WPA3 AES-802.1x or SHA256 WLAN, the AP sends corrupted association response. |
|
|
Roaming client stops receiving IP multicast with the new AP. |
|
|
Controller does not send TCP SYN or ACK for web redirect as the banner text has more than 200 characters. |
|
|
The ICAP AP Radio Stats data for Total Frame Error Over Air is missing on Cisco Catalys 9130 Series APs or Cisco Catalyst 9117 Series APs. |
|
|
Ping loss increases two days after reboot. |
|
|
AP location name with more than 32 characters causes the controller to crash. |
|
|
Cisco Catalyst 9120 Series AP unable to send downstream traffic after voice call with tx/rx traffic using TID 6. |
|
|
Cisco Catalyst 9800 controller drops incoming CAPWAP keepalive for random APs. |
|
|
Cisco Catalyst 9130 Series APs running 17.5.1 are unable to send fast-locate records even when the client is connected to the AP. |
|
|
Cisco Catalyst 9800 controller crashes after client connection times out. |
|
|
Cisco Catalyst 9800 controller reloads unexpectedly during the DBM process. DBAL Batch execution stops. |
|
|
Stale clients in the radio driver table of Cisco Catalyst 9130 Series APs causes associations to fail. |
|
|
Cisco Catalyst 9120AXI AP crashes with kernel panic displaying that PC is at _ZN17CapwapReassembler10next in 17.3.4.30. |
|
|
Cisco Catalyst 9800 controller: RA debug shows port 1812 instead of the configured RADSEC port. |
|
|
Controller fails to push all WLAN configurations to the APs due to misconfiguration on just one. |
|
|
802.11r retried authentication packets forwarded to the controller causes duplicate authentication responses sent to the client. |
|
|
COS-AP fragmenting CAPWAP Discovery Packets unable to join the controller. |
|
|
Memory leak observed in the WNCD process running 17.3.3 of around 200 MB per day. |
|
|
Cisco Catalyst 9800 Controller: Memory leak observed in EWLC_OPERATIONAL_DB, causing DBM crash. |
|
|
Cisco Catalyst 9800 Controller: Rogue telemetry updates throttled as the controller punts a number of rogue reports to Cisco DNAC. |
|
|
Cisco Catalyst 9120 Series AP sends packets with QoS TID, when WMM is disabled on the WLAN. |
|
|
Client stuck in IP learn due to stale entry. |
|
|
Cisco Catalyst 9120 Series AP FlexConnect drops ARP request from the client to the gateway after the WLAN configuration is changed from local switching to central switching. |
|
|
Cisco Catalyst 9115 AP crashes due to kernel panic - PC is at put_page+0xc/0x68. |
|
|
Controller does not remove RSSI values and AP from the database if new probes are received in a different slot. |
|
|
Cisco Catalyst 9800 LAN controller crashes due to WNCD process. |
|
|
The show ap cdp neighbours command displays the name of the switch instead of domain name. |
|
|
MacBook clients are stuck in IPLEARN_PENDING status. |
|
|
Cisco Catalyst 9130 AP radio firmware reloads unexpectedly. |
|
|
Send DFS QUIET Event to WCP and reset Logic. |
|
|
Data rates configured using the CLI wizard are different for RF profiles. |
|
|
Cisco Catalyst 9120 AP stops transmitting to MacBook after a session reauthetication. |
|
|
Cisco Catalyst 9130 AP sends packets as TID 6 with DSCP 0 in CAPWAP header when configured with link-encryption. |
|
|
Cisco IOS XE 17.6: 11k on FlexConnect mode is not working as expected. |
|
|
AP authorization RADIUS request missing the calling station ID and NAS port type. |
|
|
Memory leak is observed due to linux_iosd-imag. |
|
|
High Channel Utilization issue seen on AP Device 360 but not on ICAP RF Stats Channel Utilization. |
|
|
WGB cannot associate when PSK password contains special characters. |
|
|
AP with non-EWC image is factory reset when DHCP 43 option with type f2 is set. |
|
|
Cisco Catalyst 9130AXI AP does not connect to the controller after shut/no shut of interface on a Cisco 9300-48H switch. |
|
|
Cisco Catalyst 9120 AP FW crashes on Radio 1. |
|
|
Memory leak in emulated database and during AP join. |
|
|
Opportunistic Key Caching (OKC) configuration does not get pushed from the controller to the AP once it is applied on the controller via CLI. |
|
|
Cisco Catalyst 9130 Series AP: Insufficient Power LED flashes when USB is enabled on PoE+ Switch. |
|
|
Client Location Probe displays error as parsing of probe request failed. |
|
|
Cisco Catalyst 9120AXE AP shows incorrect PID and description for Self Identifying Antenna. |
|
|
Cisco Catalyst 9124 AP does not assign the site tag even when the write tag-config command applied. |
|
| Cisco Catalyst 9120AX Series APs crashes due to radio firmware crash. | |
|
Cisco Catalyst 9130 AP: Radio operates on channel 128, but is published on channel 56. |
|
|
Memory leak is observed in PUBD process with gr_tdl_info > cascaded_hdls subscription. |
|
|
Cisco Catalyst 9120 Series APs in monitor mode cannot update neighbor-list, which is causing false honeypot alarms. |
Resolved Caveats for Cisco IOS XE Bengaluru 17.6.1b
|
Caveat ID |
Description |
|---|---|
|
EWC support on Cisco Catalyst 9124 AXI/D Access Points. |
Resolved Caveats for Cisco IOS XE Bengaluru 17.6.1
|
Caveat ID |
Description |
|---|---|
|
Mobilityd crash is observed in the controller. |
|
|
Incorrect accounting stop class attribute is observed while roaming with non-FT clients. |
|
|
Client data rate is displayed incorrectly in the GUI and CLI. |
|
|
Traceback messages (unable to push WLAN to APs after SSO) are observed after deleting or adding the WLANs in a scaled setup. |
|
|
Static IP on non-Cisco WGB does not work; stuck in IP learn. |
|
|
Controller GUI does not display all locations configured in the Wireless setup. |
|
|
Cisco Catalyst 9115 Series APs: Dynamic Frequency Selection (DFS) detection optimization to avoid false DFS detection. |
|
|
Cisco Catalyst 9800-CL Wireless Controller displays neighbor APs as Rogue in 2.4 GHz band. |
|
|
Apple clients fail to pass Extensible Authentication Protocol over LAN (EAPoL) M2 when 802.11r is enabled after a switchover. |
|
|
CentralWeb Authentication (CWA) clients are not moved back to Web Auth after CoA reauthentication is sent when client is in RUN state. |
|
|
Controller reloads with the reason "Critical process wncd fault on rp_0_0 (rc=139)". |
|
|
Transmission power discrepancies observed in Cisco Catalyst 9130AX and 9117AX Series APs. |
|
|
WNCD process reloads unexpectedly due to traffic distribution statistics. |
|
|
Cisco Catalyst 9800-40 WNCD utilises 100 percent of CPU due to local Extensible Authentication Protocol (EAP) authentication loop. |
|
|
APs are unreachable in the inventory even though they are joined to the controller. |
|
|
Cisco Catalyst 9120AX AP stops allowing new associations on any of the configured SSIDs. |
|
|
Cisco Catalyst 9800-80 Controller crashes due to switch integrated security features (SISF. |
|
|
Unexpected reload is generating pttcd and pubd cores. |
|
|
CPU usage of WNCD reaches 100% due to WNCD_DB stuck. |
|
|
Application communication failure. |
|
|
Cisco Catalyst 9130AX AP connected client is randomly stuck in IP learning state when Basic Service Set (BSS) coloring is enabled. |
|
|
Cisco Catalyst 9130 AP crash kernel panic "Internal error: Oops - SP/PC alignment exception: 8a000000 [#1] SMP" . |
|
|
Static IP address on the AP is not getting changed when static IP failover is disabled or enabled and comes up via DHCP. |
|
|
Controller reloads unexpectedly due to WNCD (AP name length greater and equal to 32 characters). |
|
|
Device-tracking doesn't change interface as the controller drops ARP request after roam and IP theft. |
|
|
Primary controller in HA frequently ends abnormally. |
|
|
Roaming client delete due to dot1x timer expiry and EAPOL discards message with aa:aa:03:00:00:00. |
|
|
Cisco Catalyst 9105, 9115, or 9120 Series APs display 100% channel utilization. |
|
|
Local mode AP deletes client if there is no response to EAP request within 30 seconds. |
|
|
External WebAuth (EWA) ACLs are lost after changing from HTTP or HTTPS server configuration from the GUI. |
|
|
Flex local-sw COS-APs are not plumbing preauth ACL for first client connection attempt for CWA and EWA. |
Troubleshooting
For the most up-to-date, detailed troubleshooting information, visit the Cisco TAC website at:
https://www.cisco.com/en/US/support/index.html
Go to Product Support and select your product from the list, or enter the name of your product. Look under Troubleshoot and Alerts to find information about the problem that you are experiencing.
Related Documentation
Information about Cisco IOS XE is available at:
https://www.cisco.com/c/en/us/products/ios-nx-os-software/ios-xe/index.html
All the support documentation for Cisco Catalyst 9100 Access Points are available at: https://www.cisco.com/c/en/us/support/wireless/catalyst-9100ax-access-points/tsd-products-support-series-home.html
Cisco Validated Designs documents are available at:
https://www.cisco.com/go/designzone
Cisco Embedded Wireless Controller on Catalyst Access Points
For support information, see the following documents:
-
Cisco Embedded Wireless Controller on Catalyst Access Points Software Configuration Guide
-
Cisco Embedded Wireless Controller on Catalyst Access Points Command Reference Guide
Installation guides for Catalyst Access Points are available at:
For all Cisco Wireless Controller software-related documentation, see:
Wireless Products Comparison
-
Use this tool to compare the specifications of Cisco wireless APs and controllers:
https://www.cisco.com/c/en/us/products/wireless/wireless-lan-controller/product-comparison.html
-
Product Approval Status:
-
Wireless LAN Compliance Lookup:
https://www.cisco.com/c/dam/assets/prod/wireless/wireless-compliance-tool/index.html
Cisco Access Points–Statement of Volatility
The STATEMENT OF VOLATILITY is an engineering document that provides information about the device, the location of its memory components, and the methods for clearing device memory. Refer to the data security policies and practices of your organization and take the necessary steps required to protect your devices or network environment.
The Cisco Aironet and Catalyst AP Statement of Volatility (SoV) documents are available on Cisco Trust Portal at https://trustportal.cisco.com/c/r/ctp/trust-portal.html#/.
You can search by the AP model to view the SoV document.
Cisco Connected Mobile Experiences
Cisco DNA Center
Communications, Services, and Additional Information
-
To receive timely, relevant information from Cisco, sign up at Cisco Profile Manager.
-
To get the business impact you’re looking for with the technologies that matter, visit Cisco Services.
-
To submit a service request, visit Cisco Support.
-
To discover and browse secure, validated enterprise-class apps, products, solutions and services, visit Cisco Marketplace.
-
To obtain general networking, training, and certification titles, visit Cisco Press.
-
To find warranty information for a specific product or product family, access Cisco Warranty Finder.
Cisco Bug Search Tool
Cisco Bug Search Tool (BST) is a web-based tool that acts as a gateway to the Cisco bug tracking system that maintains a comprehensive list of defects and vulnerabilities in Cisco products and software. BST provides you with detailed defect information about your products and software.
Feedback