ReleaseNotesforCiscoEmbeddedWireless … · ReleaseNotesforCiscoEmbeddedWireless ControlleronCatalystAccessPoints,CiscoIOS XE17.3.x FirstPublished:2020-08-09

Release Notes for Cisco Embedded WirelessController on Catalyst Access Points, Cisco IOSXE 17.3.x

First Published: 2020-08-09

Last Modified: 2020-11-10

ReleaseNotesforCiscoEmbeddedWirelessControlleronCatalystAccessPoints, Cisco IOS XE Amsterdam 17.3.x

Introduction to Cisco Embedded Wireless Controller on Catalyst AccessPoints

The Cisco Embedded Wireless Controller on Catalyst Access Points is a version of the Cisco IOS XE-basedcontroller software on Catalyst access points. In this solution, a Catalyst access point (AP) that is running theCisco Embedded Wireless Controller on Catalyst Access Points software, is designated as the primary AP.Other APs, referred to as subordinate APs, associate to this primary AP.

The Cisco EmbeddedWireless Controller on Catalyst Access Points provides enterprise-levelWLAN featureswhile maintaining operational simplicity and affordability. This solution is targeted at small and medium-sizedbusiness (SMB) customers or distributed enterprises, and can be run at single site deployments.

• The controllers comewith high availability (HA) and seamless software updates. This keeps your serviceson always, both during planned and unplanned events.

• The deployment can be managed using a mobile application, Cisco Digital Network Architecture (DNA)Center, Netconf/YANG, web-based GUI, or CLI.

Explore the Content Hub, the all new portal that offers an enhanced product documentation experience.

• Use faceted search to locate content that is most relevant to you.

• Create customized PDFs for ready reference.

• Benefit from context-based recommendations.

Get started with the Content Hub at content.cisco.com to craft a personalized documentation experience.

Do provide feedback about your experience with the Content Hub.

Note

Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE 17.3.x1

https://content.cisco.com/

https://content.cisco.com/

What's New in Cisco IOS XE Amsterdam 17.3.2aTable 1: Software Features Introduced on Cisco Embedded Wireless Controller on Catalyst Access Points

Description and Documentation LinkFeature Name

An enhanced version of Smart Licensing, with theoverarching objective of providing a licensing solutionthat does not interrupt the operations of your network,rather, one that enables a compliance relationship toaccount for the hardware and software licenses youpurchase and use.

With this licensing model, you do not have tocomplete any licensing-specific operations, such asregistering or generating keys before you start usingthe software and the licenses that are tied to it. Onlyexport-controlled and enforced licenses require Ciscoauthorization before use. License usage is recordedon your device with timestamps and the requiredworkflows can be completed at a later date.

Multiple options are available for license usagereporting – this depends on the topology youimplement. You can use the Cisco Smart LicensingUtility (CSLU)Windows application, or report usageinformation directly to CSSM. A provision for offlinereporting for air-gapped networks, where youdownload usage information and upload to CSSM, isalso available.

Starting with this release, Smart Licensing UsingPolicy is automatically enabled on the device. This isalso the case when you upgrade to this release. Bydefault, your Smart Account and Virtual Account inCSSM is enabled for Smart Licensing Using Policy.

For more information, see the Smart Licensing UsingPolicy chapter.

Smart Licensing Using Policy


Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xWhat's New in Cisco IOS XE Amsterdam 17.3.2a

https://www.cisco.com/c/en/us/td/docs/wireless/controller/ewc/17-3/config-guide/ewc_cg_17_3/m-sl-using-policy.html

https://www.cisco.com/c/en/us/td/docs/wireless/controller/ewc/17-3/config-guide/ewc_cg_17_3/m-sl-using-policy.html

What's New in Cisco IOS XE Amsterdam 17.3.1Table 2: Software Features Introduced on Cisco Embedded Wireless Controller on Catalyst Access Points


The Public Key Infrastructure (PKI) Managementpage now displays the following tabs:

Trustpoints tab: Used to add, create or enroll a newtrustpoint. This also displays the current Trustpointsconfigured on the controller and other details of thetrustpoint. You can also see if the trustpoint is in usefor any of the features.

CA Server tab: Used to enable or disable theCertificate Authority (CA) server functionality on thecontroller. The CA server functionality should beenabled for the controller to generate a Self-SignedCertificate (SSC).

Key Pair Generation tab: Used to generate key pairs.

Certificate Management tab: Used to generate andmanage certificates, and perform all certificate relatedoperations, on the controller.

Enhanced Certificate Management Through GUI

During AP image download, the Embedded WirelessController calculates the current percentage of thedownload and the estimated time of the completionof the download.

The Software Update Status section in the GUIdisplays the update status bar that shows the progressof the software update, such as, Initiate, ControllerImage Download, AP Image Download, NetworkUpgrade, Activate, and Reload.

The following commands were introduced:

• show wireless ewc-ap ap image predownloadstatus

AP Image Predownload Status Enhancement


Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xWhat's New in Cisco IOS XE Amsterdam 17.3.1


Bonjour protocol is an Apple service discoveryprotocol which locates devices and services on a localnetwork with the use of multicast Domain NameSystem (mDNS) service records.

By default, the mDNS gateway is disabled on thecontroller. To enable mDNS gateway functionality,you must explicitly configure mDNS gateway usingCLI or Web UI.

The following commands were introduced:

• mdns-sd

• active-query timer

• mdns-sd-interface

• mdns-sd flex-profile

• wired-vlan-range

• mdns-sd profile

• update-timer

• show mdns-sd summary

• show mdns-sd cache

• show mdns-sd statistics

• show mdns-sd flexconnect summary

• clear mdns-sd cache

• clear mdns-sd statistics

Multicast Domain Name System Gateway Support

Support is added for Cisco Catalyst 9105I and 9105WAPs in this release.

Support for Cisco Catalyst 9105 Series APs

Hot Software Maintenance Upgrade is not supported for Cisco Embedded Wireless Controller on CatalystAccess Points, in the Cisco IOS XE Amsterdam 17.3.1 Release.

Note


Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xWhat's New in Cisco IOS XE Amsterdam 17.3.1

Table 3: Web UI Features Introduced or Modified on Cisco Embedded Wireless Controller on Catalyst Access Points

Web UI PathFeature Name

You can enable Dark Mode in the GUI. Dark Mode(screen with light text in a dark background) is bestsuited for reducing eye strain, especially in low-lightconditions. Screen glare and flickering is also reduced.

Click the Preferences icon (the gear icon) > DarkMode option

Dark Mode option

Configuration > Security > PKI ManagementEnhanced Certificate Management Through the GUI

Administration > Software Management > SoftwareUpgrade

AP Image Predownload Status Enhancement

Behavior Changes

• From Cisco IOS XE Amsterdam 17.3.1 onwards, the AP name can only be up to 32 characters.

• When EoGRE AAA-proxy is used, AAA ports are set to 1645 and 1646 by default. To change this portconfiguration, use the following command: tunnel eogre interface tunnel-intf aaa proxy key keykey-name auth-port auth_port acct-port acct_port

• Adding support for the LED blink in Cisco Catalyst 9800 Wireless Controllers.

• Log viewer window added to the GUI, to view radioactive trace logs.

• New field added to display AP configuration state in the GUI.

• Column header in rogue detection changed from MFP Required to PMF Required.

• TheCentral Forwarding field that was present in the EoGRE > Tunnel Profiles > Edit Tunnel Profile> General tab, has been removed.

Important Notes

Licensing Information Missing In Case of Simultaneous Dual Failure of the Active and Standby EmbeddedWireless Controller - AP Controller

In a network of Cisco Embedded Wireless Controller on Catalyst Access Points (EWC) - AP, one of the APswill be elected as the controller (you can configure the same by giving priority to one of the APs). If the activeand standby EWCs fail simultaneously, a couple of other APs become the new active and standby EWCs. Insuch a case, the licensing information stored in the original active and standby EWCs will not be available inthe new active-standby pair controllers.

To resolve this issue manually, do the following:

1. Recover the previously active or standby controller.

2. Wait for it to become the standby controller, and perform a failover to make it an active controller.


Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xImportant Notes

3. If this method fails, or if it is not possible due to the original failure, then install the trust code on thenewly active controller.

Supported Cisco Access Point PlatformsThe following Cisco access points are supported in the Cisco Embedded Wireless Controller on CatalystAccess Points network. Note that the APs listed as primary APs can also function as subordinate APs.

Table 4: Cisco APs Supported in Cisco Embedded Wireless Controller on Catalyst Access Points

Subordinate APPrimary AP

Cisco Aironet 1540 Series


Cisco Aironet 1815i

Cisco Aironet 1815w







Cisco Catalyst 9115 Series




Cisco Catalyst 9105AXW





Table 5: Image Types and Supported APs in Cisco Embedded Wireless Controller on Catalyst Access Points

Supported APsImage Type




ap1g4

Cisco Aironet 1815i

Cisco Aironet 1815w



ap1g5


Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xSupported Cisco Access Point Platforms

Supported APsImage Type

Cisco Catalyst 9117 Seriesap1g6

Cisco Catalyst 9130 Seriesap1g6a



ap1g7

Cisco Catalyst 9105 Seriesap1g8





ap3g3

Maximum APs and Clients SupportedTable 6: Scale Supported in Cisco EWC Network

Maximum ClientsSupported

Maximum APsSupported

Primary AP Model

100050Cisco Catalyst 9105 AWI

100050Cisco Catalyst 9115Series




If 25 to 100 APs have joined the EWC network, the maximum clients on the EWC internal AP is limited to20.

Note

Compatibility MatrixThe following table provides software compatibility information:


Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xMaximum APs and Clients Supported

Table 7: Compatibility Information

Cisco DNA CenterCisco CMXCisco ISECisco Embedded WirelessController on CatalystAccess Points

2.1.26010.6.2

10.6

10.5.1

2.6

2.4

2.3

Amsterdam 17.3.x

Supported Browsers and Operating Systems for Web UI

The following list of Supported Browsers and Operating Systems is not comprehensive at the time of writingthis document and the behavior of various browser for accessing the GUI of the EWC is as listed below.

Note

Table 8: Supported Browsers and Operating Systems

WorkaroundStatusOperating SystemVersionBrowser

Proceed through thebrowser warning.

Works77.0.3865.120GoogleChrome


WorksmacOS Mojave Version10.14.6

13.0.2(14608.2.40.1.3)

Safari

Set the exception.Works only ifexception is added.

macOS Mojave Version10.14.6

69.0.1MozillaFirefox


macOS Mojave Version10.14.6



WorksWindows 10 Version 1903(OS Build 18362.267)

77.0.3865.90GoogleChrome



44.18362.267.0MicrosoftEdge





Windows 10 Version 1903(OS Build 18362.267)


NADoes not workmacOS Catalina 10.15.178.0.3904.108GoogleChrome


Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xSupported Browsers and Operating Systems for Web UI

Upgrading the Controller SoftwareThis section covers the various aspects of upgrading the controller software.

For information on upgrading the controller software, see the "Software Management" section in the CiscoEmbedded Wireless Controller on Catalyst Access Points Online Help.

Before converting from CAPWAP to embedded wireless controller (EWC), ensure that you upgrade thecorresponding AP with the CAPWAP image in Cisco AireOS Release 8.10.105.0. If this upgrade is notperformed, the conversion will fail.

Note

Finding the Software VersionThe following table lists the Cisco IOS XE 17.3.x software for Cisco Embedded Wireless Controller onCatalyst Access Points.

Choose the appropriate AP software based on the following:

• Cisco Embedded Wireless Controller on Catalyst Access Points software to be used for converting theAP from an unified wireless network CAPWAP lightweight AP to a Cisco EmbeddedWireless Controlleron Catalyst Access Points-capable AP (primary AP)

• AP software image bundle to be used either for upgrading the Cisco Embedded Wireless Controller onCatalyst Access Points software on the primary AP or for updating the software on the subordinate APsor both

Prior to ordering Cisco APs, see the corresponding ordering guide for your Catalyst or Aironet access point.

Table 9: Cisco Embedded Wireless Controller on Catalyst Access Points Software

AP Softwarein the Bundle

AP Software Image Bundle forUpgrade

AP Software for Conversion fromCAPWAP to Cisco EWC

Primary AP

ap1g7C9800-AP-universalk9.17.03.2a.zip

C9800-AP-universalk9.17.03.01.zip

C9800-AP-universalk9.17.03.2a.zip


Cisco Catalyst 9115Series











ap1g6aC9800-AP-universalk9.17.03.2a.zip






Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xUpgrading the Controller Software

https://www.cisco.com/c/dam/en/us/td/docs/wireless/controller/ewc/17-3/olh/Default.htm


Guidelines and RestrictionsInternet Group Management Protocol (IGMP)v3 is not supported on Cisco Aironet Wave 2 APs.

Embedded Wireless Controller SNMP configuration is supported in DNAC.

Highmemory usage onAP running EmbeddedWireless Controller. Enabling crash kernel on the AP consumesadditional memory on the AP. Hence, if crash kernel is enabled, the overall memory usage of the device willincrease and will impact the scale numbers. On Cisco Catalyst 9130 Series Access Points, the memoryconsumption is a high of 128 MB.

While upgrading EWC, if you have enabled crash kernel on the AP, disable the feature and then enable itagain post upgrade. Ensure that you reboot the AP post enable or disable.

Note

Interoperability with ClientsThis section describes the interoperability of the controller software with client devices.

The following table describes the configurations used for testing client devices.

Table 10: Test Configuration for Interoperability

Hardware or Software TypeHardware or Software Parameter

Cisco IOS XE Amserdam 17.3.1Release


Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xGuidelines and Restrictions

Hardware or Software TypeHardware or Software Parameter

• Cisco Aironet Series Access Points

• 1540

• 1560

• 1815i

• 1815w

• 1830

• 1840

• 1850

• 2800

• 3800

• 4800

• Cisco Catalyst 9105AX Access Points





Access Points

• 802.11ax

• 802.11ac

• 802.11a

• 802.11g

• 802.11n (2.4 GHz or 5 GHz)

Radio

Open, PSK (WPA2-AES), 802.1X (WPA2-AES)(EAP-FAST, EAP-TLS), WPA3.

Security

See Compatibility Matrix, on page 7RADIUS

Connectivity, traffic (ICMP), and roaming betweentwo APs

Types of tests

The following table lists the client types on which the tests were conducted. Client types included laptops,hand-held devices, phones, and printers.


Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xInteroperability with Clients

Table 11: Client Types

Driver/Software VersionClient Type and Name

Laptop Model

Qc Atheros Qca9377 11.0.0.492 and laterAcer Aspire 15 Windows 8 Home

Qc Atheros Qca9377 15.1.1.1 and laterAcer Aspire E15 Windows 8

QC Atheros Qca9377 11.0.0.492 and laterAcer Aspire E 15 Windows 8.1

Qc Atheros Qca9377 11.0.0.492 and laterAcer Aspire E15 Windows 8.1 Pro

Broadcom 802.11ac 6.30.224.217 and laterApple MAC mini Windows 7 Professional

Broadcom 802.11n Network Adapter and laterDell 80TJ

Intel Ac 3165 18.32.0.5 and laterDell Inspiron 15 7569 Windows 10 Home

Intel 6205w8 15.16.0.2 and laterDell Latitude 6430 Windows 8.1 Pro

Intel Wifi Link 5300 AGN 12.4.1.4 and laterDell Latitude E5400 Windows 7 Professional

Intel Centrino N 6205 15.17.0.1 and laterDell Latitude E5430 Windows 7

Intel 7260 18.33.6.2 and laterDell Latitude E5450 Windows 7 Professional

TU2-ET100 (Version v5.0R) and laterDell Latitude E5530

Intel Dualband Ac7260 1.566.0.0 and laterDell Latitude E5540 Windows 7

Intel Wifi Link 5300 AGN 14.2.1.4 and laterDell Latitude E6430 Windows 10 Enterprise

Linksys AE2500 N 5.100.68.46 and laterDell Latitude E6430 Windows 10 Enterprise



Broadcom 1560 15.1.1.1 and laterDell Latitude E7450 Windows 7 Professional

Intel Ac7260 18.33.3.2 and laterDell Latitude Windows 8.1 Pro

Intel 8260 11.0.0.492 and laterFujitsu Lifebook E556 Windows 10 Pro

TU3-ETG (Version v1.0R) and laterLenovo Ideapad T420

Intel Ac8260 19.1.0.4 and laterLenovo T420 Windows 10 Pro

Intel Centrino Ultimate-N6300 AGN 13.5.0.6 andlater

Lenovo T420 Windows 7 Enterprise

Linksys AE6000 5.0.7.0 and laterLenovo T420 Windows 7 Enterprise

Intel Ac8260 19.1.0.4 and laterLenovo Yoga 460 Windows 10 Pro

Broadcom Bcm43xx 1.0 6.30.225.29.1 and laterMacbook Air Mac OS Sierra 10.12.3

Broadcom Bcm43xx 1.0 7.21.171.68.1a4 and laterMacbook Air Macos Sierra 10.12.6

Broadcom Bcm43xx 1.0 7.15.166.24.3 and laterMacbook Air OS X Yosemite (10.10.5)

Broadcom Bcm43xx 1.0 5.106.98.100.17 and laterMacbook Mac OS Mojave 10.8.5




Broadcom Bcm43xx 1.0 7.21.149.34.1a7 and laterMacbook Mac OS Sierra 10.12 Beta

Broadcom Bcm43xx 1.0 7.21.171.68.1a4 and laterMacbook Pro Mac OS Sierra 10.12.4

Broadcom Bcm43xx 1.0 5.106.98.100.17 and laterMacbook Pro OS X 10.8.5

Broadcom Bcm43xx 1.0 7.15.166.24.3 and laterMacbook Pro Retina Mac OS Sierra 10.12.3

Tablet Model

iOS 12.0.1 and laterApple iPad

iOS 12.0 and laterApple iPad mini

iOS 10.3.1 and laterApple iPad mini 2

iOS 10.1.1 and laterApple iPad Air

iOS 10.2.1 and laterApple iPad Air 2

Mobile Phone Model

iOS 10.3.1 and laterApple iPhone 5

iOS 11.4.1 and laterApple iPhone 5S


iOS 12.0.1 and laterApple iPhone 6 Plus


iOS 12.0.1 and laterApple iPhone 7 Plus


iOS 10.3.1 and laterApple iPhone SE

iOS 12.2 and laterApple iPhone X

iOS 12.2 and laterApple iPhone XR

CP7925G-1.4.8.4.LOADS and laterCisco 7925G-EX

CP7925G-1.4.8.4.LOADS and laterCisco 7926G

SIP8821.11-0-3SR4-3 6.50.0.3 (r ) and laterCisco 8821

Android 6.0.1 and laterGoogle Nexus 5

Android 8.1.0 and laterMi A1

Windows 8 and laterMicrosoft Lumia

Andriod 6.0.1 and laterMoto G 3rd Gen

Andriod 7.0.1 and laterMoto G 4

Andriod 7.0.1 and laterMoto G4 Plus

Android 5.0 and laterMoto X 2nd Gen

Android 9.0.1 and laterNokia 6.1 Plus




Windows 8 and laterNokia Lumia 730

Android 6.0.1 and laterOne Plus 3


Android 8.1.0 and laterOne Plus 5T


Android 4.3 and laterOne Plus One

Android 6.0.1 and laterRedmi Note 3

Android 4.2.2 and laterSamsung Galaxy S4

Android 7.0 and laterSamsung Galaxy S6

Android 8.0.0 and laterSamsung Galaxy S7


Android 6.0.1 and laterSamsung Galaxy S Duos 2

Android 4.4.2 and laterSamsung Tab Pro


CaveatsCaveats describe unexpected behavior in Cisco IOS releases. Caveats that are listed as Open in a prior releaseare carried forward to the next release as either Open or Resolved.

All incremental releases will cover fixes from the current release.Note

Cisco Bug Search ToolThe Cisco Bug Search Tool (BST) allows partners and customers to search for software bugs based on product,release, and keyword, and aggregates key data such as bug details, product, and version. The BST is designedto improve the effectiveness in network risk management and device troubleshooting. The tool has a provisionto filter bugs based on credentials to provide external and internal bug views for the search input.

To view the details of a caveat, click the corresponding identifier.

Open Caveats for Cisco IOS XE Amsterdam 17.3.2a

DescriptionCaveat ID

Cisco Aironet 9130 APs are not sending DHCPmessages over the air.CSCvu66043


Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xCaveats

https://www.cisco.com/cisco/psn/bssprt/bss

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvu66043


Cisco Catalyst 9115 Series Wi-Fi 6 Access Point:Clients are unable to connect due to persistent Tx erroron radio.

CSCvv93995

Cisco Catalyst 9130AXE Series Access Points are nottaking RF tag power settings on slot 2.CSCvv99213

Cisco Catalyst 9130AX Series Access Points are notsending M1 over the air.CSCvw01612

Cisco Catalyst 9130AX Series Access Point isdropping packets and the AP is not able to push packetto click module.

CSCvw10308

Cisco Catalyst 9130AX Series Access Points aredropping some uplink packets from macbooks.CSCvv97156

AP location string is truncated during join.CSCvw13174

Cisco EmbeddedWireless Controller for an AP is notforwarding downstream traffic after active APfailover.

CSCvw15298

The licensing data of Cisco Embedded WirelessController is not replicated to all the AP members.CSCvu82365

Open Caveats for Cisco IOS XE Amsterdam 17.3.1


Support for three-step install upgrade with ap imagepredownload is required.CSCvr96755

Device is crashing while executing the copy flash:<>.cfg running-config command.CSCvs62309

Disallow Webauth WLANs from being tagged toauthentication servers with load-balancing enabled.CSCvt35141

Interface speed for the AP is showing asNone in CiscoPrime Infrastructure.CSCvu17521

The dot11n and dot11ac are disabled andconfiguration is saved. When the controller reloads,they are enabled again.

CSCvu22410

Configuration slot 0 output is updating wrong valuesfor XOR radio when mapped to the custom rf-profile.CSCvu40188

Radio objects are missing from the RRMradSlot tableif AP tag is in mis-configured state.CSCvu40529


Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xOpen Caveats for Cisco IOS XE Amsterdam 17.3.1

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvv93995


https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw01612






https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvr96755

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvs62309

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvt35141






Cisco Aironet 1570 APs are not allowing clients toconnect in 5 GHz.CSCvu41319

AP kernel panic crash (PC is at vfp_reload_hw).CSCvu53070

Cisco Aironet 3800 AP with data DTLS encryptiondisconnects from the controller due to CAPWAPkeepalive after rx PMTU discovery.

CSCvu58082

CAPWAP multi-window support: AP disconnectspost switchover when AP image predownload is inprogress.

CSCvu65440

Auto-contain doesn't resume after rogue-client isremoved.CSCvu69426

Rogue rule created is overridden with latest priority.CSCvu70630

Cisco Catalyst 9800-80 Controller is sending clienttraffic out of the AP manager interface.CSCvu73873

Client is connected through dot11n or dot11n evenwhen dot11 options are disabled.CSCvu76954

AP disjoins after client connects to SSID using LDAPwith secure mode.CSCvu89996

The show command for AP tri-radio Feature is notavailable in Cisco Embedded Wireless Controller onCatalyst Access Points.

CSCvu91948

Cisco Aironet 2800 AP:Wpa2-psk-aesWLAN clientis getting disturbed when AP moves from flex.CSCvu92134

Spectrum intelligence interference detected by AP isnot seen on the controller.CSCvu95179

Small VM install of controller loses its managementtrustpoint after every reboot.CSCvv01407

AP is not rejecting incorrect Fast Transition Authrequest.CSCvv02099

AP is not sending reassociation response.CSCvv02121

Controller is showing incorrect AP cisco discoveryprotocol (CDP) information.CSCvv02670

Cisco Embedded Wireless Controller on CatalystAccess Points: AP image predownload status is emptyfor most of the APs.

CSCvv03370


Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xOpen Caveats for Cisco IOS XE Amsterdam 17.3.1



















Cisco Aironet 3800h AP: Jitter issue with MS-Teamsapplication.CSCvv03668

Cisco Catalyst 9105 AP: LED is turned off by default.CSCvv04072

Last switchover reason is shown as active unitremoved during ISSU upgrade.CSCvv04911

Private Pre-Shared-Key (PSK) Pairwise Master Key(PMK) is retained resulting in client delete. Controlleris crashing with scaled PPSK join.

CSCvv09143

Cisco DNA-Centre: When AP fails to pre-downloadimage; further attempts to pre-download are gettingstuck.

CSCvv14121

Resolved Caveats for Cisco IOS XE Amsterdam 17.3.2a


Max Transmit Power Level is set to 128 dBm inCountry IE.

CSCvt06712

AP PnP does not try to sync time with public NTPserver.

CSCvu43631

IP address of configured nameserver seen flipped oncontroller after AP tears-down the connection.

CSCvu75470

Webauth redirect URL is getting looped for the client.CSCvu78608

AP marks the Wi-Fi Multimedia (WMM) UP valueas 0 despite receiving DSCP value as 46 (EF).

CSCvu81034

AP should reject incorrect fast transitionauthentication requests.

CSCvv02099

AP is not sending re-association response.CSCvv02121

Client association fails when changing the connectedWLAN from 802.1X WLAN to PSK+MAC filteringWLAN.

CSCvv18778

Cisco Catalyst 9130AXSeries Access Point:Multicasttraffic failures are observed after Group Transient Key(GTK) key index rotation for Vocera clients.

CSCvv22110

Client moves to RUN state without ExtensibleAuthentication Protocol (EAP).

CSCvv22536

Cisco Embedded Wireless Controller: WPA3 SAEdoes not work.

CSCvv35000


Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xResolved Caveats for Cisco IOS XE Amsterdam 17.3.2a


















Flex Opportunistic Key Caching (OKC) roam M1 isnot sent out.

CSCvv37072

Cisco Catalyst 9105, 9115, and 9120 Access Pointsstarts beaconing during the Call Admission Control(CAC) time on Dynamic Frequency Selection (DFS)channel if 802.11h is disabled on the controller

CSCvv39762

Cisco Catalyst 9105, 9115, and 9120 Access Points:APs unexpectedly experience "assert" kernel panics,when Target Wait Time is enabled.

CSCvv51321

Cisco Catalyst 9120 Access Point is crashing with thefollowing message: + assert:\"dma_txactive(di) ==0\" failed: file \"wlc_tx.c:13678\".

CSCvv54538

Pixel client de-authenticates as NO ARP responsesare received during NUD checks to Virtual RouterRedundancy Protocol (VRRP) gateway.

CSCvv55733

Cisco Catalyst 9130 Access Point: Scale performanceis worse than Cisco Catalyst 9120 APs with less thansixty active clients.

CSCvv58057

Cisco Catalyst 9120 Access Point crashes due tostation data base entry becoming NULL.

CSCvv62762

Cisco Catalyst 9115AX Access Point unexpectedlyreloads.

CSCvv73396

Cisco Catalyst 9120 Access Point is crashingunexpectedly: assert:\"0\" failed: file\"wlc_amsdu.c:4709\".

CSCvv82544

AP performs DHCP reset after 5 failed attempts ofCAPWAPDiscovery, but still responds to subsequentpings.

CSCvw23306

Resolved Caveats for Cisco IOS XE Amsterdam 17.3.1


Cisco Aironet 3700 AP series reloads unexpectedly.CSCvq99108

High Availability fails to initialize NVRAM aftermultiple power cycles.CSCvr68729

IPv6 dual stack is not working.CSCvs63467

Cisco Aironet 3800 AP: Manufacturing InstalledCertificate (MIC) errors observed for CiscoCentralized Key Management (CCKM) roams inFlexConnect local switch mode.

CSCvs31212


Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xResolved Caveats for Cisco IOS XE Amsterdam 17.3.1











https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvq99108

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvr68729




btman process at 100% while running show techcommand.CSCvs52625

WNCd unexpectedly reboots after association failure.CSCvs55102

AP Ethernet link flaps at 5G speed due to Fast Retrainfailure.CSCvs55109

Cisco Catalyst 9120AXI AP unexpectedly reloadswith watchdog or grpc_server tainted.CSCvs56849

Controller with more than 4000 APs in one site-tag(not default-site) is not allowing to do APconfiguration changes.

CSCvs62464

Cisco Catalyst 9115AX AP: Rogue containment isnot working when AP is in monitor mode.CSCvs66107

-Q domain APs in Japan are advertising J4 as thecountry in beacon, instead of JP.CSCvs70091

Controller crashes on receiving username with 246characters on the third attempt.CSCvs71784

Control packets are not honoring mobility Path MTUDiscovery.CSCvs83955

WNCd process goes down due to assert for basic SSID(BSSID) magic check.CSCvs93903

WNCd crash is observed with roaming of longduration fabric clients.CSCvs98528

Controller crashes when a 11r client tries to performover-the-air or over-the-ds roam.CSCvt05007

Multicast replicates over CAPWAP when globalmulticast is disabled.CSCvt08645

Client gets excluded after VLAN changes followingthe machine and user authentication.CSCvt17820

The show tech wireless command output is showingincomplete information for the sub-commands: showap auto-rf dot11 5ghz and show ap auto-rf dot112.

CSCvt29348

Controller unexpectedly reloads when an AP joinsand does not report the correct radios.CSCvt31484

The Cisco Catalyst 9800-80 HA cluster crashesfrequently.CSCvt34987





















Controller is not allowing Wi-Fi Protected Access(WPA)/Temporal Key Integrity Protocol (TKIP) onlyconfiguration.

CSCvt35766

Cisco Catalyst 9130 AP: Channel/Mode mismatchbetween WCP and WLAN driver.CSCvt35811

Client is unable to associate due toDOT11_STATUS_DENIED_RATESwhen extendedrates are used.

CSCvt37835

CiscoWave 2 APs: EAP-PEAP (Protected ExtensibleAuthentication Protocol) flex-auth fails occasionallybecause of low EAP timeout.

CSCvt38486

Clients are assigned to native VLAN instead of clientVLAN.CSCvt41053

Controller crashes due to AP with the same name anddifferent existing radio mac.CSCvt41519

Address Resolution Protocol (ARP) handling allowsfor the ARP entry to be removed for a wireless DHCPclient.

CSCvt46733

Cisco Catalyst 9130 AP: Cisco OfficeExtend accesspoint (OEAP) GUI is not accessible.CSCvt68112

Controller crashes on Wi-Fi Multimedia (WMM)action, while roaming.CSCvt75205

Cisco Catalyst 9800-L Controller goesadministratively down after a reload following factoryreset using CLI.

CSCvu19000

Memory leak is observed under processSACRcvWQWrk2 when Smart Licensing is enabled.CSCvu44330

Controller crash is observed in CPP (data path).CSCvu57730

Cisco Catalyst 9800-80 Controller crashes withSIGSEGV while removing timer RB tree color.CSCvu71871

Controller crash is observed during WNCd process.CSCvu78070

Controller is not honoring timezone when configuringdynamic channel allocation (DCA) anchortime.CSCvp76426

Controller is not sending SNMP trap when AP is resetusing GUI or CLI.CSCvs29013

Cisco Catalyst 9800-L-C fails to install authorizationcode due to NO_AUTH_CODE_FOUND.

CSCvs40004

















https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvp76426




Improve the show wireless stats loadbalancesummary command.CSCvs50689

The show wlan client stats command output showswrong WLAN with similar WLAN name on specialconditions.

CSCvs52655

Client count shows zero for the show ap dot115ghz/2.4ghz load-info command output whenCoverage Hole Detection (CHD) is disabled.

CSCvs73952

Global AP pre-image download is not working.CSCvs75087

Frequent channel changes observed on the CiscoAironet 4800 AP slot 0 radio while using 5 GHz.CSCvs77734

Upgrading to Cisco IOS XE 16.12.2s deletes WLANto policy profile mapping under default-policy-tag.CSCvs81826

Support tspec processing when voice acm is disabledor with no tgr tspec.CSCvs93963

Cisco Wave 1 APs: Client traffic is stuck after clientis in RUN state for Central Web Authentication(CWA) or Local Web Authentication (LWA).

CSCvt01659

Cisco Catalyst 9800-CLController is unable to displaymedium power when AP sends a 25W message.CSCvt13127

Guest anchor fails to load balance clients acrossanchors.CSCvt19605

Cisco Catalyst 9120AX AP is not use the correctdatarates.CSCvt23051

Cannot remove AdvIPServices license.CSCvt27421

UDP Port 5246 based Access Control List (ACL)filter fails to select DatagramTransport Layer Security(DTLS) encrypted CAPWAP control packets.

CSCvt29373

Current Tx rate for 802.11AX clients is displayedincorrectly.CSCvt29596

Controller crashes with the following reason: \Criticalprocess cpp_cp_svr fault on fp_0_0 (rc=134)\.CSCvt30657

The factory-reset all command deletes the actualimage when controller is in install mode.CSCvt37462

Roaming is not successful when NAC is enabled inthe policy profile.CSCvt47787





















Ethernet over GRE (EoGRE) tunnel is not copyingDifferentiated Services Code Point (DSCP) from innerpayload IP header on injected packet.

CSCvt56911

Cisco Aironet 3700 AP is unable to join controller asthe VLAN interface name exceeds character limit inflex profile.

CSCvt61509

Authentication fails for some clients, when localauthentication is configured in the policy profile.CSCvt63940

Cisco Catalyst 9117AX AP: 802.1x authentication isnot working for clients.CSCvu18085

Various models of Android 10 devices fail toassociate.CSCvu24770

AP uses non-allowed channel on dual radio whenchange setting to 5 GHz.CSCvu58564

TroubleshootingFor the most up-to-date, detailed troubleshooting information, visit the Cisco TAC website at:

https://www.cisco.com/en/US/support/index.html

Go to Product Support and select your product from the list, or enter the name of your product. Look underTroubleshoot and Alerts to find information about the problem that you are experiencing.

Related DocumentationInformation about Cisco IOS XE 16 is available at:

https://www.cisco.com/c/en/us/products/ios-nx-os-software/ios-xe/index.html

All the support documentation for Cisco Catalyst 9100 Access Points are available at: https://www.cisco.com/c/en/us/support/wireless/catalyst-9100ax-access-points/tsd-products-support-series-home.html

Cisco Validated Designs documents are available at:

https://www.cisco.com/go/designzone

Cisco Embedded Wireless Controller on Catalyst Access Points

For support information, see the following documents:

• Cisco Wireless Solutions Software Compatibility Matrix

• Cisco Embedded Wireless Controller on Catalyst Access Points Online Help

• Cisco Embedded Wireless Controller on Catalyst Access Points Software Configuration Guide


Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xTroubleshooting







https://www.cisco.com/en/US/support/index.html

https://www.cisco.com/c/en/us/products/ios-nx-os-software/ios-xe/index.html

https://www.cisco.com/c/en/us/support/wireless/catalyst-9100ax-access-points/tsd-products-support-series-home.html

https://www.cisco.com/c/en/us/support/wireless/catalyst-9100ax-access-points/tsd-products-support-series-home.html

https://www.cisco.com/go/designzone

https://www.cisco.com/c/en/us/td/docs/wireless/compatibility/matrix/compatibility-matrix.html


https://www.cisco.com/c/en/us/td/docs/wireless/controller/ewc/16-12/config-guide/ewc_cg_16_12.html

• Cisco Embedded Wireless Controller on Catalyst Access Points Command Reference Guide

Installation guides for Catalyst Access Points are available at:

https://www.cisco.com/c/en/us/support/wireless/catalyst-9100ax-access-points/products-installation-guides-list.html

For all Cisco Wireless Controller software-related documentation, see:

https://www.cisco.com/c/en/us/support/wireless/catalyst-9800-series-wireless-controllers/tsd-products-support-series-home.html

Wireless Products Comparison

• Use this tool to compare the specifications of Cisco wireless APs and controllers:

https://www.cisco.com/c/en/us/products/wireless/wireless-lan-controller/product-comparison.html

• Product Approval Status:

https://prdapp.cloudapps.cisco.com/cse/prdapp/jsp/externalsearch.do?action=externalsearch&page=EXTERNAL_SEARCH

• Wireless LAN Compliance Lookup:

https://www.cisco.com/c/dam/assets/prod/wireless/wireless-compliance-tool/index.html

Cisco Connected Mobile Experiences

Cisco Connected Mobile Experiences Documentation

Cisco DNA Center

Cisco DNA Center Documentation

Communications, Services, and Additional Information• To receive timely, relevant information from Cisco, sign up at Cisco Profile Manager.

• To get the business impact you’re looking for with the technologies that matter, visit Cisco Services.

• To submit a service request, visit Cisco Support.

• To discover and browse secure, validated enterprise-class apps, products, solutions and services, visitCisco Marketplace.

• To obtain general networking, training, and certification titles, visit Cisco Press.

• To find warranty information for a specific product or product family, access Cisco Warranty Finder.

Cisco Bug Search Tool

Cisco Bug Search Tool (BST) is a web-based tool that acts as a gateway to the Cisco bug tracking systemthat maintains a comprehensive list of defects and vulnerabilities in Cisco products and software. BST providesyou with detailed defect information about your products and software.


Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.xCommunications, Services, and Additional Information

https://www.cisco.com/c/en/us/td/docs/wireless/controller/ewc/16-12/cmd-ref/ewc_cr_16_12.html





https://www.cisco.com/c/en/us/products/wireless/wireless-lan-controller/product-comparison.html



https://www.cisco.com/c/dam/assets/prod/wireless/wireless-compliance-tool/index.html

https://www.cisco.com/c/en/us/support/wireless/connected-mobile-experiences/tsd-products-support-series-home.html

https://www.cisco.com/c/en/us/support/cloud-systems-management/dna-center/tsd-products-support-series-home.html

https://www.cisco.com/offer/subscribe

https://www.cisco.com/go/services

https://www.cisco.com/c/en/us/support/index.html

https://www.cisco.com/go/marketplace/

https://www.cisco.com/go/marketplace/

http://www.ciscopress.com

http://www.cisco-warrantyfinder.com

https://www.cisco.com/c/en/us/support/web/tools/bst/bsthelp/index.html

Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL:https://www.cisco.com/c/en/us/about/legal/trademarks.html. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply apartnership relationship between Cisco and any other company. (1721R)

© 2020 Cisco Systems, Inc. All rights reserved.

https://www.cisco.com/c/en/us/about/legal/trademarks.html

Documents

ReleaseNotesforCiscoEmbeddedWireless … · ReleaseNotesforCiscoEmbeddedWireless ControlleronCatalystAccessPoints,CiscoIOS XE17.3.x FirstPublished:2020-08-09