Upload
others
View
2
Download
0
Embed Size (px)
Citation preview
Release Notes for Cisco Embedded WirelessController on Catalyst Access Points, Cisco IOSXE 17.3.x
First Published: 2020-08-09
Last Modified: 2020-11-10
ReleaseNotesforCiscoEmbeddedWirelessControlleronCatalystAccessPoints, Cisco IOS XE Amsterdam 17.3.x
Introduction to Cisco Embedded Wireless Controller on Catalyst AccessPoints
The Cisco Embedded Wireless Controller on Catalyst Access Points is a version of the Cisco IOS XE-basedcontroller software on Catalyst access points. In this solution, a Catalyst access point (AP) that is running theCisco Embedded Wireless Controller on Catalyst Access Points software, is designated as the primary AP.Other APs, referred to as subordinate APs, associate to this primary AP.
The Cisco EmbeddedWireless Controller on Catalyst Access Points provides enterprise-levelWLAN featureswhile maintaining operational simplicity and affordability. This solution is targeted at small and medium-sizedbusiness (SMB) customers or distributed enterprises, and can be run at single site deployments.
• The controllers comewith high availability (HA) and seamless software updates. This keeps your serviceson always, both during planned and unplanned events.
• The deployment can be managed using a mobile application, Cisco Digital Network Architecture (DNA)Center, Netconf/YANG, web-based GUI, or CLI.
Explore the Content Hub, the all new portal that offers an enhanced product documentation experience.
• Use faceted search to locate content that is most relevant to you.
• Create customized PDFs for ready reference.
• Benefit from context-based recommendations.
Get started with the Content Hub at content.cisco.com to craft a personalized documentation experience.
Do provide feedback about your experience with the Content Hub.
Note
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x1
What's New in Cisco IOS XE Amsterdam 17.3.2aTable 1: Software Features Introduced on Cisco Embedded Wireless Controller on Catalyst Access Points
Description and Documentation LinkFeature Name
An enhanced version of Smart Licensing, with theoverarching objective of providing a licensing solutionthat does not interrupt the operations of your network,rather, one that enables a compliance relationship toaccount for the hardware and software licenses youpurchase and use.
With this licensing model, you do not have tocomplete any licensing-specific operations, such asregistering or generating keys before you start usingthe software and the licenses that are tied to it. Onlyexport-controlled and enforced licenses require Ciscoauthorization before use. License usage is recordedon your device with timestamps and the requiredworkflows can be completed at a later date.
Multiple options are available for license usagereporting – this depends on the topology youimplement. You can use the Cisco Smart LicensingUtility (CSLU)Windows application, or report usageinformation directly to CSSM. A provision for offlinereporting for air-gapped networks, where youdownload usage information and upload to CSSM, isalso available.
Starting with this release, Smart Licensing UsingPolicy is automatically enabled on the device. This isalso the case when you upgrade to this release. Bydefault, your Smart Account and Virtual Account inCSSM is enabled for Smart Licensing Using Policy.
For more information, see the Smart Licensing UsingPolicy chapter.
Smart Licensing Using Policy
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x2
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xWhat's New in Cisco IOS XE Amsterdam 17.3.2a
What's New in Cisco IOS XE Amsterdam 17.3.1Table 2: Software Features Introduced on Cisco Embedded Wireless Controller on Catalyst Access Points
Description and Documentation LinkFeature Name
The Public Key Infrastructure (PKI) Managementpage now displays the following tabs:
Trustpoints tab: Used to add, create or enroll a newtrustpoint. This also displays the current Trustpointsconfigured on the controller and other details of thetrustpoint. You can also see if the trustpoint is in usefor any of the features.
CA Server tab: Used to enable or disable theCertificate Authority (CA) server functionality on thecontroller. The CA server functionality should beenabled for the controller to generate a Self-SignedCertificate (SSC).
Key Pair Generation tab: Used to generate key pairs.
Certificate Management tab: Used to generate andmanage certificates, and perform all certificate relatedoperations, on the controller.
Enhanced Certificate Management Through GUI
During AP image download, the Embedded WirelessController calculates the current percentage of thedownload and the estimated time of the completionof the download.
The Software Update Status section in the GUIdisplays the update status bar that shows the progressof the software update, such as, Initiate, ControllerImage Download, AP Image Download, NetworkUpgrade, Activate, and Reload.
The following commands were introduced:
• show wireless ewc-ap ap image predownloadstatus
AP Image Predownload Status Enhancement
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x3
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xWhat's New in Cisco IOS XE Amsterdam 17.3.1
Description and Documentation LinkFeature Name
Bonjour protocol is an Apple service discoveryprotocol which locates devices and services on a localnetwork with the use of multicast Domain NameSystem (mDNS) service records.
By default, the mDNS gateway is disabled on thecontroller. To enable mDNS gateway functionality,you must explicitly configure mDNS gateway usingCLI or Web UI.
The following commands were introduced:
• mdns-sd
• active-query timer
• mdns-sd-interface
• mdns-sd flex-profile
• wired-vlan-range
• mdns-sd profile
• update-timer
• show mdns-sd summary
• show mdns-sd cache
• show mdns-sd statistics
• show mdns-sd flexconnect summary
• clear mdns-sd cache
• clear mdns-sd statistics
Multicast Domain Name System Gateway Support
Support is added for Cisco Catalyst 9105I and 9105WAPs in this release.
Support for Cisco Catalyst 9105 Series APs
Hot Software Maintenance Upgrade is not supported for Cisco Embedded Wireless Controller on CatalystAccess Points, in the Cisco IOS XE Amsterdam 17.3.1 Release.
Note
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x4
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xWhat's New in Cisco IOS XE Amsterdam 17.3.1
Table 3: Web UI Features Introduced or Modified on Cisco Embedded Wireless Controller on Catalyst Access Points
Web UI PathFeature Name
You can enable Dark Mode in the GUI. Dark Mode(screen with light text in a dark background) is bestsuited for reducing eye strain, especially in low-lightconditions. Screen glare and flickering is also reduced.
Click the Preferences icon (the gear icon) > DarkMode option
Dark Mode option
Configuration > Security > PKI ManagementEnhanced Certificate Management Through the GUI
Administration > Software Management > SoftwareUpgrade
AP Image Predownload Status Enhancement
Behavior Changes
• From Cisco IOS XE Amsterdam 17.3.1 onwards, the AP name can only be up to 32 characters.
• When EoGRE AAA-proxy is used, AAA ports are set to 1645 and 1646 by default. To change this portconfiguration, use the following command: tunnel eogre interface tunnel-intf aaa proxy key keykey-name auth-port auth_port acct-port acct_port
• Adding support for the LED blink in Cisco Catalyst 9800 Wireless Controllers.
• Log viewer window added to the GUI, to view radioactive trace logs.
• New field added to display AP configuration state in the GUI.
• Column header in rogue detection changed from MFP Required to PMF Required.
• TheCentral Forwarding field that was present in the EoGRE > Tunnel Profiles > Edit Tunnel Profile> General tab, has been removed.
Important Notes
Licensing Information Missing In Case of Simultaneous Dual Failure of the Active and Standby EmbeddedWireless Controller - AP Controller
In a network of Cisco Embedded Wireless Controller on Catalyst Access Points (EWC) - AP, one of the APswill be elected as the controller (you can configure the same by giving priority to one of the APs). If the activeand standby EWCs fail simultaneously, a couple of other APs become the new active and standby EWCs. Insuch a case, the licensing information stored in the original active and standby EWCs will not be available inthe new active-standby pair controllers.
To resolve this issue manually, do the following:
1. Recover the previously active or standby controller.
2. Wait for it to become the standby controller, and perform a failover to make it an active controller.
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x5
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xImportant Notes
3. If this method fails, or if it is not possible due to the original failure, then install the trust code on thenewly active controller.
Supported Cisco Access Point PlatformsThe following Cisco access points are supported in the Cisco Embedded Wireless Controller on CatalystAccess Points network. Note that the APs listed as primary APs can also function as subordinate APs.
Table 4: Cisco APs Supported in Cisco Embedded Wireless Controller on Catalyst Access Points
Subordinate APPrimary AP
Cisco Aironet 1540 Series
Cisco Aironet 1560 Series
Cisco Aironet 1815i
Cisco Aironet 1815w
Cisco Aironet 1830 Series
Cisco Aironet 1840 Series
Cisco Aironet 1850 Series
Cisco Aironet 2800 Series
Cisco Aironet 3800 Series
Cisco Aironet 4800 Series
Cisco Catalyst 9115 Series
Cisco Catalyst 9117 Series
Cisco Catalyst 9120 Series
Cisco Catalyst 9130 Series
Cisco Catalyst 9105AXW
Cisco Catalyst 9115 Series
Cisco Catalyst 9117 Series
Cisco Catalyst 9120 Series
Cisco Catalyst 9130 Series
Table 5: Image Types and Supported APs in Cisco Embedded Wireless Controller on Catalyst Access Points
Supported APsImage Type
Cisco Aironet 1810 Series
Cisco Aironet 1830 Series
Cisco Aironet 1850 Series
ap1g4
Cisco Aironet 1815i
Cisco Aironet 1815w
Cisco Aironet 1540 Series
Cisco Aironet 1850 Series
ap1g5
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x6
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xSupported Cisco Access Point Platforms
Supported APsImage Type
Cisco Catalyst 9117 Seriesap1g6
Cisco Catalyst 9130 Seriesap1g6a
Cisco Catalyst 9115 Series
Cisco Catalyst 9120 Series
ap1g7
Cisco Catalyst 9105 Seriesap1g8
Cisco Aironet 2800 Series
Cisco Aironet 3800 Series
Cisco Aironet 4800 Series
Cisco Aironet 1560 Series
ap3g3
Maximum APs and Clients SupportedTable 6: Scale Supported in Cisco EWC Network
Maximum ClientsSupported
Maximum APsSupported
Primary AP Model
100050Cisco Catalyst 9105 AWI
100050Cisco Catalyst 9115Series
100050Cisco Catalyst 9117Series
2000100Cisco Catalyst 9120Series
2000100Cisco Catalyst 9130Series
If 25 to 100 APs have joined the EWC network, the maximum clients on the EWC internal AP is limited to20.
Note
Compatibility MatrixThe following table provides software compatibility information:
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x7
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xMaximum APs and Clients Supported
Table 7: Compatibility Information
Cisco DNA CenterCisco CMXCisco ISECisco Embedded WirelessController on CatalystAccess Points
2.1.26010.6.2
10.6
10.5.1
2.6
2.4
2.3
Amsterdam 17.3.x
Supported Browsers and Operating Systems for Web UI
The following list of Supported Browsers and Operating Systems is not comprehensive at the time of writingthis document and the behavior of various browser for accessing the GUI of the EWC is as listed below.
Note
Table 8: Supported Browsers and Operating Systems
WorkaroundStatusOperating SystemVersionBrowser
Proceed through thebrowser warning.
Works77.0.3865.120GoogleChrome
Proceed through thebrowser warning.
WorksmacOS Mojave Version10.14.6
13.0.2(14608.2.40.1.3)
Safari
Set the exception.Works only ifexception is added.
macOS Mojave Version10.14.6
69.0.1MozillaFirefox
Set the exception.Works only ifexception is added.
macOS Mojave Version10.14.6
69.0.3MozillaFirefox
Proceed through thebrowser warning.
WorksWindows 10 Version 1903(OS Build 18362.267)
77.0.3865.90GoogleChrome
Proceed through thebrowser warning.
WorksWindows 10 Version 1903(OS Build 18362.267)
44.18362.267.0MicrosoftEdge
Proceed through thebrowser warning.
WorksWindows 10 Version 1903(OS Build 18362.267)
68.0.2MozillaFirefox
Set the exception.Works only ifexception is added.
Windows 10 Version 1903(OS Build 18362.267)
69.0.3MozillaFirefox
NADoes not workmacOS Catalina 10.15.178.0.3904.108GoogleChrome
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x8
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xSupported Browsers and Operating Systems for Web UI
Upgrading the Controller SoftwareThis section covers the various aspects of upgrading the controller software.
For information on upgrading the controller software, see the "Software Management" section in the CiscoEmbedded Wireless Controller on Catalyst Access Points Online Help.
Before converting from CAPWAP to embedded wireless controller (EWC), ensure that you upgrade thecorresponding AP with the CAPWAP image in Cisco AireOS Release 8.10.105.0. If this upgrade is notperformed, the conversion will fail.
Note
Finding the Software VersionThe following table lists the Cisco IOS XE 17.3.x software for Cisco Embedded Wireless Controller onCatalyst Access Points.
Choose the appropriate AP software based on the following:
• Cisco Embedded Wireless Controller on Catalyst Access Points software to be used for converting theAP from an unified wireless network CAPWAP lightweight AP to a Cisco EmbeddedWireless Controlleron Catalyst Access Points-capable AP (primary AP)
• AP software image bundle to be used either for upgrading the Cisco Embedded Wireless Controller onCatalyst Access Points software on the primary AP or for updating the software on the subordinate APsor both
Prior to ordering Cisco APs, see the corresponding ordering guide for your Catalyst or Aironet access point.
Table 9: Cisco Embedded Wireless Controller on Catalyst Access Points Software
AP Softwarein the Bundle
AP Software Image Bundle forUpgrade
AP Software for Conversion fromCAPWAP to Cisco EWC
Primary AP
ap1g7C9800-AP-universalk9.17.03.2a.zip
C9800-AP-universalk9.17.03.01.zip
C9800-AP-universalk9.17.03.2a.zip
C9800-AP-universalk9.17.03.01.zip
Cisco Catalyst 9115Series
ap1g6C9800-AP-universalk9.17.03.2a.zip
C9800-AP-universalk9.17.03.01.zip
C9800-AP-universalk9.17.03.2a.zip
C9800-AP-universalk9.17.03.01.zip
Cisco Catalyst 9117Series
ap1g7C9800-AP-universalk9.17.03.2a.zip
C9800-AP-universalk9.17.03.01.zip
C9800-AP-universalk9.17.03.2a.zip
C9800-AP-universalk9.17.03.01.zip
Cisco Catalyst 9120Series
ap1g6aC9800-AP-universalk9.17.03.2a.zip
C9800-AP-universalk9.17.03.01.zip
C9800-AP-universalk9.17.03.2a.zip
C9800-AP-universalk9.17.03.01.zip
Cisco Catalyst 9130Series
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x9
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xUpgrading the Controller Software
Guidelines and RestrictionsInternet Group Management Protocol (IGMP)v3 is not supported on Cisco Aironet Wave 2 APs.
Embedded Wireless Controller SNMP configuration is supported in DNAC.
Highmemory usage onAP running EmbeddedWireless Controller. Enabling crash kernel on the AP consumesadditional memory on the AP. Hence, if crash kernel is enabled, the overall memory usage of the device willincrease and will impact the scale numbers. On Cisco Catalyst 9130 Series Access Points, the memoryconsumption is a high of 128 MB.
While upgrading EWC, if you have enabled crash kernel on the AP, disable the feature and then enable itagain post upgrade. Ensure that you reboot the AP post enable or disable.
Note
Interoperability with ClientsThis section describes the interoperability of the controller software with client devices.
The following table describes the configurations used for testing client devices.
Table 10: Test Configuration for Interoperability
Hardware or Software TypeHardware or Software Parameter
Cisco IOS XE Amserdam 17.3.1Release
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x10
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xGuidelines and Restrictions
Hardware or Software TypeHardware or Software Parameter
• Cisco Aironet Series Access Points
• 1540
• 1560
• 1815i
• 1815w
• 1830
• 1840
• 1850
• 2800
• 3800
• 4800
• Cisco Catalyst 9105AX Access Points
• Cisco Catalyst 9115AX Access Points
• Cisco Catalyst 9117AX Access Points
• Cisco Catalyst 9120AX Access Points
• Cisco Catalyst 9130AX Access Points
Access Points
• 802.11ax
• 802.11ac
• 802.11a
• 802.11g
• 802.11n (2.4 GHz or 5 GHz)
Radio
Open, PSK (WPA2-AES), 802.1X (WPA2-AES)(EAP-FAST, EAP-TLS), WPA3.
Security
See Compatibility Matrix, on page 7RADIUS
Connectivity, traffic (ICMP), and roaming betweentwo APs
Types of tests
The following table lists the client types on which the tests were conducted. Client types included laptops,hand-held devices, phones, and printers.
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x11
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xInteroperability with Clients
Table 11: Client Types
Driver/Software VersionClient Type and Name
Laptop Model
Qc Atheros Qca9377 11.0.0.492 and laterAcer Aspire 15 Windows 8 Home
Qc Atheros Qca9377 15.1.1.1 and laterAcer Aspire E15 Windows 8
QC Atheros Qca9377 11.0.0.492 and laterAcer Aspire E 15 Windows 8.1
Qc Atheros Qca9377 11.0.0.492 and laterAcer Aspire E15 Windows 8.1 Pro
Broadcom 802.11ac 6.30.224.217 and laterApple MAC mini Windows 7 Professional
Broadcom 802.11n Network Adapter and laterDell 80TJ
Intel Ac 3165 18.32.0.5 and laterDell Inspiron 15 7569 Windows 10 Home
Intel 6205w8 15.16.0.2 and laterDell Latitude 6430 Windows 8.1 Pro
Intel Wifi Link 5300 AGN 12.4.1.4 and laterDell Latitude E5400 Windows 7 Professional
Intel Centrino N 6205 15.17.0.1 and laterDell Latitude E5430 Windows 7
Intel 7260 18.33.6.2 and laterDell Latitude E5450 Windows 7 Professional
TU2-ET100 (Version v5.0R) and laterDell Latitude E5530
Intel Dualband Ac7260 1.566.0.0 and laterDell Latitude E5540 Windows 7
Intel Wifi Link 5300 AGN 14.2.1.4 and laterDell Latitude E6430 Windows 10 Enterprise
Linksys AE2500 N 5.100.68.46 and laterDell Latitude E6430 Windows 10 Enterprise
Intel 6250 15.11.0.7 and laterDell Latitude E6430 Windows 7 Professional
Intel 3160 6.30.223.215 and laterDell Latitude E6430 Windows 7 Professional
Broadcom 1560 15.1.1.1 and laterDell Latitude E7450 Windows 7 Professional
Intel Ac7260 18.33.3.2 and laterDell Latitude Windows 8.1 Pro
Intel 8260 11.0.0.492 and laterFujitsu Lifebook E556 Windows 10 Pro
TU3-ETG (Version v1.0R) and laterLenovo Ideapad T420
Intel Ac8260 19.1.0.4 and laterLenovo T420 Windows 10 Pro
Intel Centrino Ultimate-N6300 AGN 13.5.0.6 andlater
Lenovo T420 Windows 7 Enterprise
Linksys AE6000 5.0.7.0 and laterLenovo T420 Windows 7 Enterprise
Intel Ac8260 19.1.0.4 and laterLenovo Yoga 460 Windows 10 Pro
Broadcom Bcm43xx 1.0 6.30.225.29.1 and laterMacbook Air Mac OS Sierra 10.12.3
Broadcom Bcm43xx 1.0 7.21.171.68.1a4 and laterMacbook Air Macos Sierra 10.12.6
Broadcom Bcm43xx 1.0 7.15.166.24.3 and laterMacbook Air OS X Yosemite (10.10.5)
Broadcom Bcm43xx 1.0 5.106.98.100.17 and laterMacbook Mac OS Mojave 10.8.5
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x12
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xInteroperability with Clients
Driver/Software VersionClient Type and Name
Broadcom Bcm43xx 1.0 7.21.149.34.1a7 and laterMacbook Mac OS Sierra 10.12 Beta
Broadcom Bcm43xx 1.0 7.21.171.68.1a4 and laterMacbook Pro Mac OS Sierra 10.12.4
Broadcom Bcm43xx 1.0 5.106.98.100.17 and laterMacbook Pro OS X 10.8.5
Broadcom Bcm43xx 1.0 7.15.166.24.3 and laterMacbook Pro Retina Mac OS Sierra 10.12.3
Tablet Model
iOS 12.0.1 and laterApple iPad
iOS 12.0 and laterApple iPad mini
iOS 10.3.1 and laterApple iPad mini 2
iOS 10.1.1 and laterApple iPad Air
iOS 10.2.1 and laterApple iPad Air 2
Mobile Phone Model
iOS 10.3.1 and laterApple iPhone 5
iOS 11.4.1 and laterApple iPhone 5S
iOS 12.0.1 and laterApple iPhone 6
iOS 12.0.1 and laterApple iPhone 6 Plus
iOS 12.0.1 and laterApple iPhone 7
iOS 12.0.1 and laterApple iPhone 7 Plus
iOS 12.0.1 and laterApple iPhone 8
iOS 10.3.1 and laterApple iPhone SE
iOS 12.2 and laterApple iPhone X
iOS 12.2 and laterApple iPhone XR
CP7925G-1.4.8.4.LOADS and laterCisco 7925G-EX
CP7925G-1.4.8.4.LOADS and laterCisco 7926G
SIP8821.11-0-3SR4-3 6.50.0.3 (r ) and laterCisco 8821
Android 6.0.1 and laterGoogle Nexus 5
Android 8.1.0 and laterMi A1
Windows 8 and laterMicrosoft Lumia
Andriod 6.0.1 and laterMoto G 3rd Gen
Andriod 7.0.1 and laterMoto G 4
Andriod 7.0.1 and laterMoto G4 Plus
Android 5.0 and laterMoto X 2nd Gen
Android 9.0.1 and laterNokia 6.1 Plus
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x13
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xInteroperability with Clients
Driver/Software VersionClient Type and Name
Windows 8 and laterNokia Lumia 730
Android 6.0.1 and laterOne Plus 3
Android 8.1.0 and laterOne Plus 5
Android 8.1.0 and laterOne Plus 5T
Android 8.1.0 and laterOne Plus 6
Android 4.3 and laterOne Plus One
Android 6.0.1 and laterRedmi Note 3
Android 4.2.2 and laterSamsung Galaxy S4
Android 7.0 and laterSamsung Galaxy S6
Android 8.0.0 and laterSamsung Galaxy S7
Android 7.0 and laterSamsung Galaxy S8
Android 6.0.1 and laterSamsung Galaxy S Duos 2
Android 4.4.2 and laterSamsung Tab Pro
Android 9.0 and laterSamsung Galaxy S10
CaveatsCaveats describe unexpected behavior in Cisco IOS releases. Caveats that are listed as Open in a prior releaseare carried forward to the next release as either Open or Resolved.
All incremental releases will cover fixes from the current release.Note
Cisco Bug Search ToolThe Cisco Bug Search Tool (BST) allows partners and customers to search for software bugs based on product,release, and keyword, and aggregates key data such as bug details, product, and version. The BST is designedto improve the effectiveness in network risk management and device troubleshooting. The tool has a provisionto filter bugs based on credentials to provide external and internal bug views for the search input.
To view the details of a caveat, click the corresponding identifier.
Open Caveats for Cisco IOS XE Amsterdam 17.3.2a
DescriptionCaveat ID
Cisco Aironet 9130 APs are not sending DHCPmessages over the air.CSCvu66043
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x14
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xCaveats
DescriptionCaveat ID
Cisco Catalyst 9115 Series Wi-Fi 6 Access Point:Clients are unable to connect due to persistent Tx erroron radio.
CSCvv93995
Cisco Catalyst 9130AXE Series Access Points are nottaking RF tag power settings on slot 2.CSCvv99213
Cisco Catalyst 9130AX Series Access Points are notsending M1 over the air.CSCvw01612
Cisco Catalyst 9130AX Series Access Point isdropping packets and the AP is not able to push packetto click module.
CSCvw10308
Cisco Catalyst 9130AX Series Access Points aredropping some uplink packets from macbooks.CSCvv97156
AP location string is truncated during join.CSCvw13174
Cisco EmbeddedWireless Controller for an AP is notforwarding downstream traffic after active APfailover.
CSCvw15298
The licensing data of Cisco Embedded WirelessController is not replicated to all the AP members.CSCvu82365
Open Caveats for Cisco IOS XE Amsterdam 17.3.1
DescriptionCaveat ID
Support for three-step install upgrade with ap imagepredownload is required.CSCvr96755
Device is crashing while executing the copy flash:<>.cfg running-config command.CSCvs62309
Disallow Webauth WLANs from being tagged toauthentication servers with load-balancing enabled.CSCvt35141
Interface speed for the AP is showing asNone in CiscoPrime Infrastructure.CSCvu17521
The dot11n and dot11ac are disabled andconfiguration is saved. When the controller reloads,they are enabled again.
CSCvu22410
Configuration slot 0 output is updating wrong valuesfor XOR radio when mapped to the custom rf-profile.CSCvu40188
Radio objects are missing from the RRMradSlot tableif AP tag is in mis-configured state.CSCvu40529
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x15
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xOpen Caveats for Cisco IOS XE Amsterdam 17.3.1
DescriptionCaveat ID
Cisco Aironet 1570 APs are not allowing clients toconnect in 5 GHz.CSCvu41319
AP kernel panic crash (PC is at vfp_reload_hw).CSCvu53070
Cisco Aironet 3800 AP with data DTLS encryptiondisconnects from the controller due to CAPWAPkeepalive after rx PMTU discovery.
CSCvu58082
CAPWAP multi-window support: AP disconnectspost switchover when AP image predownload is inprogress.
CSCvu65440
Auto-contain doesn't resume after rogue-client isremoved.CSCvu69426
Rogue rule created is overridden with latest priority.CSCvu70630
Cisco Catalyst 9800-80 Controller is sending clienttraffic out of the AP manager interface.CSCvu73873
Client is connected through dot11n or dot11n evenwhen dot11 options are disabled.CSCvu76954
AP disjoins after client connects to SSID using LDAPwith secure mode.CSCvu89996
The show command for AP tri-radio Feature is notavailable in Cisco Embedded Wireless Controller onCatalyst Access Points.
CSCvu91948
Cisco Aironet 2800 AP:Wpa2-psk-aesWLAN clientis getting disturbed when AP moves from flex.CSCvu92134
Spectrum intelligence interference detected by AP isnot seen on the controller.CSCvu95179
Small VM install of controller loses its managementtrustpoint after every reboot.CSCvv01407
AP is not rejecting incorrect Fast Transition Authrequest.CSCvv02099
AP is not sending reassociation response.CSCvv02121
Controller is showing incorrect AP cisco discoveryprotocol (CDP) information.CSCvv02670
Cisco Embedded Wireless Controller on CatalystAccess Points: AP image predownload status is emptyfor most of the APs.
CSCvv03370
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x16
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xOpen Caveats for Cisco IOS XE Amsterdam 17.3.1
DescriptionCaveat ID
Cisco Aironet 3800h AP: Jitter issue with MS-Teamsapplication.CSCvv03668
Cisco Catalyst 9105 AP: LED is turned off by default.CSCvv04072
Last switchover reason is shown as active unitremoved during ISSU upgrade.CSCvv04911
Private Pre-Shared-Key (PSK) Pairwise Master Key(PMK) is retained resulting in client delete. Controlleris crashing with scaled PPSK join.
CSCvv09143
Cisco DNA-Centre: When AP fails to pre-downloadimage; further attempts to pre-download are gettingstuck.
CSCvv14121
Resolved Caveats for Cisco IOS XE Amsterdam 17.3.2a
DescriptionCaveat ID
Max Transmit Power Level is set to 128 dBm inCountry IE.
CSCvt06712
AP PnP does not try to sync time with public NTPserver.
CSCvu43631
IP address of configured nameserver seen flipped oncontroller after AP tears-down the connection.
CSCvu75470
Webauth redirect URL is getting looped for the client.CSCvu78608
AP marks the Wi-Fi Multimedia (WMM) UP valueas 0 despite receiving DSCP value as 46 (EF).
CSCvu81034
AP should reject incorrect fast transitionauthentication requests.
CSCvv02099
AP is not sending re-association response.CSCvv02121
Client association fails when changing the connectedWLAN from 802.1X WLAN to PSK+MAC filteringWLAN.
CSCvv18778
Cisco Catalyst 9130AXSeries Access Point:Multicasttraffic failures are observed after Group Transient Key(GTK) key index rotation for Vocera clients.
CSCvv22110
Client moves to RUN state without ExtensibleAuthentication Protocol (EAP).
CSCvv22536
Cisco Embedded Wireless Controller: WPA3 SAEdoes not work.
CSCvv35000
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x17
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xResolved Caveats for Cisco IOS XE Amsterdam 17.3.2a
DescriptionCaveat ID
Flex Opportunistic Key Caching (OKC) roam M1 isnot sent out.
CSCvv37072
Cisco Catalyst 9105, 9115, and 9120 Access Pointsstarts beaconing during the Call Admission Control(CAC) time on Dynamic Frequency Selection (DFS)channel if 802.11h is disabled on the controller
CSCvv39762
Cisco Catalyst 9105, 9115, and 9120 Access Points:APs unexpectedly experience "assert" kernel panics,when Target Wait Time is enabled.
CSCvv51321
Cisco Catalyst 9120 Access Point is crashing with thefollowing message: + assert:\"dma_txactive(di) ==0\" failed: file \"wlc_tx.c:13678\".
CSCvv54538
Pixel client de-authenticates as NO ARP responsesare received during NUD checks to Virtual RouterRedundancy Protocol (VRRP) gateway.
CSCvv55733
Cisco Catalyst 9130 Access Point: Scale performanceis worse than Cisco Catalyst 9120 APs with less thansixty active clients.
CSCvv58057
Cisco Catalyst 9120 Access Point crashes due tostation data base entry becoming NULL.
CSCvv62762
Cisco Catalyst 9115AX Access Point unexpectedlyreloads.
CSCvv73396
Cisco Catalyst 9120 Access Point is crashingunexpectedly: assert:\"0\" failed: file\"wlc_amsdu.c:4709\".
CSCvv82544
AP performs DHCP reset after 5 failed attempts ofCAPWAPDiscovery, but still responds to subsequentpings.
CSCvw23306
Resolved Caveats for Cisco IOS XE Amsterdam 17.3.1
DescriptionCaveat ID
Cisco Aironet 3700 AP series reloads unexpectedly.CSCvq99108
High Availability fails to initialize NVRAM aftermultiple power cycles.CSCvr68729
IPv6 dual stack is not working.CSCvs63467
Cisco Aironet 3800 AP: Manufacturing InstalledCertificate (MIC) errors observed for CiscoCentralized Key Management (CCKM) roams inFlexConnect local switch mode.
CSCvs31212
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x18
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xResolved Caveats for Cisco IOS XE Amsterdam 17.3.1
DescriptionCaveat ID
btman process at 100% while running show techcommand.CSCvs52625
WNCd unexpectedly reboots after association failure.CSCvs55102
AP Ethernet link flaps at 5G speed due to Fast Retrainfailure.CSCvs55109
Cisco Catalyst 9120AXI AP unexpectedly reloadswith watchdog or grpc_server tainted.CSCvs56849
Controller with more than 4000 APs in one site-tag(not default-site) is not allowing to do APconfiguration changes.
CSCvs62464
Cisco Catalyst 9115AX AP: Rogue containment isnot working when AP is in monitor mode.CSCvs66107
-Q domain APs in Japan are advertising J4 as thecountry in beacon, instead of JP.CSCvs70091
Controller crashes on receiving username with 246characters on the third attempt.CSCvs71784
Control packets are not honoring mobility Path MTUDiscovery.CSCvs83955
WNCd process goes down due to assert for basic SSID(BSSID) magic check.CSCvs93903
WNCd crash is observed with roaming of longduration fabric clients.CSCvs98528
Controller crashes when a 11r client tries to performover-the-air or over-the-ds roam.CSCvt05007
Multicast replicates over CAPWAP when globalmulticast is disabled.CSCvt08645
Client gets excluded after VLAN changes followingthe machine and user authentication.CSCvt17820
The show tech wireless command output is showingincomplete information for the sub-commands: showap auto-rf dot11 5ghz and show ap auto-rf dot112.
CSCvt29348
Controller unexpectedly reloads when an AP joinsand does not report the correct radios.CSCvt31484
The Cisco Catalyst 9800-80 HA cluster crashesfrequently.CSCvt34987
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x19
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xResolved Caveats for Cisco IOS XE Amsterdam 17.3.1
DescriptionCaveat ID
Controller is not allowing Wi-Fi Protected Access(WPA)/Temporal Key Integrity Protocol (TKIP) onlyconfiguration.
CSCvt35766
Cisco Catalyst 9130 AP: Channel/Mode mismatchbetween WCP and WLAN driver.CSCvt35811
Client is unable to associate due toDOT11_STATUS_DENIED_RATESwhen extendedrates are used.
CSCvt37835
CiscoWave 2 APs: EAP-PEAP (Protected ExtensibleAuthentication Protocol) flex-auth fails occasionallybecause of low EAP timeout.
CSCvt38486
Clients are assigned to native VLAN instead of clientVLAN.CSCvt41053
Controller crashes due to AP with the same name anddifferent existing radio mac.CSCvt41519
Address Resolution Protocol (ARP) handling allowsfor the ARP entry to be removed for a wireless DHCPclient.
CSCvt46733
Cisco Catalyst 9130 AP: Cisco OfficeExtend accesspoint (OEAP) GUI is not accessible.CSCvt68112
Controller crashes on Wi-Fi Multimedia (WMM)action, while roaming.CSCvt75205
Cisco Catalyst 9800-L Controller goesadministratively down after a reload following factoryreset using CLI.
CSCvu19000
Memory leak is observed under processSACRcvWQWrk2 when Smart Licensing is enabled.CSCvu44330
Controller crash is observed in CPP (data path).CSCvu57730
Cisco Catalyst 9800-80 Controller crashes withSIGSEGV while removing timer RB tree color.CSCvu71871
Controller crash is observed during WNCd process.CSCvu78070
Controller is not honoring timezone when configuringdynamic channel allocation (DCA) anchortime.CSCvp76426
Controller is not sending SNMP trap when AP is resetusing GUI or CLI.CSCvs29013
Cisco Catalyst 9800-L-C fails to install authorizationcode due to NO_AUTH_CODE_FOUND.
CSCvs40004
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x20
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xResolved Caveats for Cisco IOS XE Amsterdam 17.3.1
DescriptionCaveat ID
Improve the show wireless stats loadbalancesummary command.CSCvs50689
The show wlan client stats command output showswrong WLAN with similar WLAN name on specialconditions.
CSCvs52655
Client count shows zero for the show ap dot115ghz/2.4ghz load-info command output whenCoverage Hole Detection (CHD) is disabled.
CSCvs73952
Global AP pre-image download is not working.CSCvs75087
Frequent channel changes observed on the CiscoAironet 4800 AP slot 0 radio while using 5 GHz.CSCvs77734
Upgrading to Cisco IOS XE 16.12.2s deletes WLANto policy profile mapping under default-policy-tag.CSCvs81826
Support tspec processing when voice acm is disabledor with no tgr tspec.CSCvs93963
Cisco Wave 1 APs: Client traffic is stuck after clientis in RUN state for Central Web Authentication(CWA) or Local Web Authentication (LWA).
CSCvt01659
Cisco Catalyst 9800-CLController is unable to displaymedium power when AP sends a 25W message.CSCvt13127
Guest anchor fails to load balance clients acrossanchors.CSCvt19605
Cisco Catalyst 9120AX AP is not use the correctdatarates.CSCvt23051
Cannot remove AdvIPServices license.CSCvt27421
UDP Port 5246 based Access Control List (ACL)filter fails to select DatagramTransport Layer Security(DTLS) encrypted CAPWAP control packets.
CSCvt29373
Current Tx rate for 802.11AX clients is displayedincorrectly.CSCvt29596
Controller crashes with the following reason: \Criticalprocess cpp_cp_svr fault on fp_0_0 (rc=134)\.CSCvt30657
The factory-reset all command deletes the actualimage when controller is in install mode.CSCvt37462
Roaming is not successful when NAC is enabled inthe policy profile.CSCvt47787
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x21
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xResolved Caveats for Cisco IOS XE Amsterdam 17.3.1
DescriptionCaveat ID
Ethernet over GRE (EoGRE) tunnel is not copyingDifferentiated Services Code Point (DSCP) from innerpayload IP header on injected packet.
CSCvt56911
Cisco Aironet 3700 AP is unable to join controller asthe VLAN interface name exceeds character limit inflex profile.
CSCvt61509
Authentication fails for some clients, when localauthentication is configured in the policy profile.CSCvt63940
Cisco Catalyst 9117AX AP: 802.1x authentication isnot working for clients.CSCvu18085
Various models of Android 10 devices fail toassociate.CSCvu24770
AP uses non-allowed channel on dual radio whenchange setting to 5 GHz.CSCvu58564
TroubleshootingFor the most up-to-date, detailed troubleshooting information, visit the Cisco TAC website at:
https://www.cisco.com/en/US/support/index.html
Go to Product Support and select your product from the list, or enter the name of your product. Look underTroubleshoot and Alerts to find information about the problem that you are experiencing.
Related DocumentationInformation about Cisco IOS XE 16 is available at:
https://www.cisco.com/c/en/us/products/ios-nx-os-software/ios-xe/index.html
All the support documentation for Cisco Catalyst 9100 Access Points are available at: https://www.cisco.com/c/en/us/support/wireless/catalyst-9100ax-access-points/tsd-products-support-series-home.html
Cisco Validated Designs documents are available at:
https://www.cisco.com/go/designzone
Cisco Embedded Wireless Controller on Catalyst Access Points
For support information, see the following documents:
• Cisco Wireless Solutions Software Compatibility Matrix
• Cisco Embedded Wireless Controller on Catalyst Access Points Online Help
• Cisco Embedded Wireless Controller on Catalyst Access Points Software Configuration Guide
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x22
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xTroubleshooting
• Cisco Embedded Wireless Controller on Catalyst Access Points Command Reference Guide
Installation guides for Catalyst Access Points are available at:
https://www.cisco.com/c/en/us/support/wireless/catalyst-9100ax-access-points/products-installation-guides-list.html
For all Cisco Wireless Controller software-related documentation, see:
https://www.cisco.com/c/en/us/support/wireless/catalyst-9800-series-wireless-controllers/tsd-products-support-series-home.html
Wireless Products Comparison
• Use this tool to compare the specifications of Cisco wireless APs and controllers:
https://www.cisco.com/c/en/us/products/wireless/wireless-lan-controller/product-comparison.html
• Product Approval Status:
https://prdapp.cloudapps.cisco.com/cse/prdapp/jsp/externalsearch.do?action=externalsearch&page=EXTERNAL_SEARCH
• Wireless LAN Compliance Lookup:
https://www.cisco.com/c/dam/assets/prod/wireless/wireless-compliance-tool/index.html
Cisco Connected Mobile Experiences
Cisco Connected Mobile Experiences Documentation
Cisco DNA Center
Cisco DNA Center Documentation
Communications, Services, and Additional Information• To receive timely, relevant information from Cisco, sign up at Cisco Profile Manager.
• To get the business impact you’re looking for with the technologies that matter, visit Cisco Services.
• To submit a service request, visit Cisco Support.
• To discover and browse secure, validated enterprise-class apps, products, solutions and services, visitCisco Marketplace.
• To obtain general networking, training, and certification titles, visit Cisco Press.
• To find warranty information for a specific product or product family, access Cisco Warranty Finder.
Cisco Bug Search Tool
Cisco Bug Search Tool (BST) is a web-based tool that acts as a gateway to the Cisco bug tracking systemthat maintains a comprehensive list of defects and vulnerabilities in Cisco products and software. BST providesyou with detailed defect information about your products and software.
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x23
Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xCommunications, Services, and Additional Information
Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL:https://www.cisco.com/c/en/us/about/legal/trademarks.html. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply apartnership relationship between Cisco and any other company. (1721R)
© 2020 Cisco Systems, Inc. All rights reserved.