Release Notes for Cisco Embedded Wireless Controller on Catalyst Access Points, Cisco IOS XE Amsterdam 17.3.x
Introduction to Cisco Embedded Wireless Controller on Catalyst Access Points
 Caution |
Problem Description: Authentication fails when attempting to upgrade software using the "CCO mode" in Cisco Embedded Wireless Controller (EWC) on a Cisco Catalyst Access Point (EWC-AP). This issue occurs when attempting to upgrade from a software release prior to one of the following releases: 17.3.x, 17.6.x, 17.9.5, 17.12.3, and 17.14.1. Background: From May 1, 2024, onwards, Cisco Connection Online (CCO, known as cisco.com) will use a new authentication system for EWC-AP. This system is not backward compatible with the earlier EWC-AP software releases. EWC-AP software developed after January 31, 2024, will be able to authenticate with Cisco.com, before and after May 1, 2024. The releases include: 17.9.5 and later, 17.12.3 and later, and 17.14.1 and later. Workaround: Download the desired EWC-AP image and load it into the EWC-AP over TFTP, SFTP, or (Desktop) HTTP. Upgrade to one of the following releases:
After the upgrade, the CCO method for upgrades will work. For more information, see Field Notice: FN74124. |
The Cisco Embedded Wireless Controller on Catalyst Access Points is a version of the Cisco IOS XE-based controller software on Catalyst access points. In this solution, a Catalyst access point (AP) that is running the Cisco Embedded Wireless Controller on Catalyst Access Points software, is designated as the primary AP. Other APs, referred to as subordinate APs, associate to this primary AP.
The Cisco Embedded Wireless Controller on Catalyst Access Points provides enterprise-level WLAN features while maintaining operational simplicity and affordability. This solution is targeted at small and medium-sized business (SMB) customers or distributed enterprises, and can be run at single site deployments.
-
The controllers come with high availability (HA) and seamless software updates. This keeps your services on always, both during planned and unplanned events.
-
The deployment can be managed using a mobile application, Cisco Digital Network Architecture (DNA) Center, Netconf/Restconf, web-based GUI, or CLI.
What's New in Cisco IOS XE Amsterdam 17.3.8a
There are no new features in this release. This release provides a fix for CSCwh87343: Cisco IOS XE Software Web UI Privilege Escalation Vulnerability. For more information, see Security Advisory: cisco-sa-iosxe-webui-privesc-j22SaA4z.
What's New in Cisco IOS XE Amsterdam 17.3.8
This release comprises only PSIRT fixes. There are no new features or enhancements in this release.
What's New in Cisco IOS XE Amsterdam 17.3.7
There are no new features or enhancements in this release.
What's New in Cisco IOS XE Amsterdam 17.3.6
There are no new features or enhancements in this release.
What's New in Cisco IOS XE Amsterdam 17.3.5b
There are no new features or enhancements in this release.
What's New in Cisco IOS XE Amsterdam 17.3.5a
|
Feature Name |
Description and Documentation Link |
|---|---|
|
Automated Software Download Version 4 (ASDv4) Migration |
Cisco Embedded Wireless Controller on Catalyst Access Points requires Automated Software Download Version 3 (ASDv3) to download software from Cisco.com. However, ASDv3 is being replaced by ASDv4 from July 2022. Consequently, the software download feature will not work on older Cisco IOS XE releases. We recommend that you upgrade your device software image to Cisco IOS XE Amsterdam 17.3.5a, Cisco IOS XE Bengaluru 17.6.3 (when available), Cisco IOS XE Cupertino 17.8.1 (when available), or a later release to enable the software download feature with ASDv4. |
This release also includes critical bug fixes relating to scale and stability improvements.
What's New in Cisco IOS XE Amsterdam 17.3.4c
There are no new features or enhancements in this release.
What's New in Cisco IOS XE Amsterdam 17.3.4
There are no new features or enhancements in this release.
What's New in Cisco IOS XE Amsterdam 17.3.3
|
Feature Name |
Description and Documentation Link |
|---|---|
|
Smart Software Manager On-Prem (SSM On-Prem) Support for Smart Licensing Using Policy |
SSM On-Prem is an asset manager, which works in conjunction with CSSM. It enables you to administer products and licenses on your premises instead of having to directly connect to CSSM. Here, a product instance is connected to SSM On-Prem, and SSM On-Prem becomes the single point of interface with CSSM. The product instance can be configured to push the required information to SSM On-Prem. Alternatively, SSM On-Prem can be set-up to pull the required information from a product instance at a configurable frequency. After usage information is available in SSM On-Prem, you must synchronize the same with CSSM, to ensure that the product instance count, license count and license usage information is the same on both, CSSM and SSM On‐Prem. Offline and online options are available for synchronization between CSSM and SSM On‐Prem. Minimum Required SSM On-Prem Version: Version 8, Release 202102 Minimum Required Cisco IOS XE Version: Cisco IOS XE Amsterdam 17.3.3 For more information, see the Smart Licensing Using Policy chapter and the Command Reference guide. |
What's New in Cisco IOS XE Amsterdam 17.3.2a
|
Feature Name |
Description and Documentation Link |
|---|---|
|
Smart Licensing Using Policy |
An enhanced version of Smart Licensing, with the overarching objective of providing a licensing solution that does not interrupt the operations of your network, rather, one that enables a compliance relationship to account for the hardware and software licenses you purchase and use. With this licensing model, you do not have to complete any licensing-specific operations, such as registering or generating keys before you start using the software and the licenses that are tied to it. Only export-controlled and enforced licenses require Cisco authorization before use. License usage is recorded on your device with timestamps and the required workflows can be completed at a later date. Multiple options are available for license usage reporting – this depends on the topology you implement. You can use the Cisco Smart Licensing Utility (CSLU) Windows application, or report usage information directly to CSSM. A provision for offline reporting for air-gapped networks, where you download usage information and upload to CSSM, is also available. Starting with this release, Smart Licensing Using Policy is automatically enabled on the device. This is also the case when you upgrade to this release. By default, your Smart Account and Virtual Account in CSSM is enabled for Smart Licensing Using Policy. For more information, see the Smart Licensing Using Policy chapter. For a more detailed overview on Cisco Licensing, go to cisco.com/go/licensingguide. |
|
Cisco DNA Center Support for Smart Licensing Using Policy |
Cisco DNA Center supports Smart Licensing Using Policy functionality starting with Cisco DNA Center Release 2.2.2. The corresponding minimum required Cisco IOS XE Release for this platform is Cisco IOS XE Amsterdam 17.3.2a. Implement the “Connected to CSSM Through a Controller” topology to have Cisco DNA Center manage a product instance. When you do, the product instance records license usage, but it is the Cisco DNA Center that initiates communication with the product instance to retrieve and report usage to Cisco Smart Software Manager (CSSM), and returns the acknowledgement (RUM ACK). In order to meet reporting requirements, Cisco DNA Center provides ad hoc or on-demand reporting, as well as scheduled reporting options. For more information, see the Smart Licensing Using Policy chapter. |
What's New in Cisco IOS XE Amsterdam 17.3.1
|
Feature Name |
Description and Documentation Link |
|---|---|
|
Enhanced Certificate Management Through GUI |
The Public Key Infrastructure (PKI) Management page now displays the following tabs: Trustpoints tab: Used to add, create or enroll a new trustpoint. This also displays the current Trustpoints configured on the controller and other details of the trustpoint. You can also see if the trustpoint is in use for any of the features. CA Server tab: Used to enable or disable the Certificate Authority (CA) server functionality on the controller. The CA server functionality should be enabled for the controller to generate a Self-Signed Certificate (SSC). Key Pair Generation tab: Used to generate key pairs. Certificate Management tab: Used to generate and manage certificates, and perform all certificate related operations, on the controller. |
|
AP Image Predownload Status Enhancement |
During AP image download, the Embedded Wireless Controller calculates the current percentage of the download and the estimated time of the completion of the download. The Software Update Status section in the GUI displays the update status bar that shows the progress of the software update, such as, Initiate, Controller Image Download, AP Image Download, Network Upgrade, Activate, and Reload. The following commands were introduced:
|
|
Multicast Domain Name System Gateway Support |
Bonjour protocol is an Apple service discovery protocol which locates devices and services on a local network with the use of multicast Domain Name System (mDNS) service records. By default, the mDNS gateway is disabled on the controller. To enable mDNS gateway functionality, you must explicitly configure mDNS gateway using CLI or Web UI. The following commands were introduced:
|
|
Support for Cisco Catalyst 9105 Series APs |
Support is added for Cisco Catalyst 9105I and 9105W APs in this release. |
 Note |
Hot Software Maintenance Upgrade is not supported for Cisco Embedded Wireless Controller on Catalyst Access Points, in the Cisco IOS XE Amsterdam 17.3.1 Release. |
|
Feature Name |
Web UI Path |
|---|---|
|
Dark Mode option |
You can enable Dark Mode in the GUI. Dark Mode (screen with light text in a dark background) is best suited for reducing eye strain, especially in low-light conditions. Screen glare and flickering is also reduced. Click the Preferences icon (the gear icon) > Dark Mode option |
|
Enhanced Certificate Management Through the GUI |
Configuration > Security > PKI Management |
|
AP Image Predownload Status Enhancement |
Administration > Software Management > Software Upgrade |
Behavior Changes
-
From Cisco IOS XE Amsterdam 17.3.1 onwards, the AP name can only be up to 32 characters.
-
When EoGRE AAA-proxy is used, AAA ports are set to 1645 and 1646 by default. To change this port configuration, use the following command: tunnel eogre interface tunnel-intf aaa proxy key key key-name auth-port auth_port acct-port acct_port
-
Adding support for the LED blink in Cisco Catalyst 9800 Wireless Controllers.
-
Log viewer window added to the GUI, to view radioactive trace logs.
-
New field added to display AP configuration state in the GUI.
-
Column header in rogue detection changed from MFP Required to PMF Required.
-
The Central Forwarding field that was present in the EoGRE > Tunnel Profiles > Edit Tunnel Profile > General tab, has been removed.
Important Notes
Licensing Information Missing In Case of Simultaneous Dual Failure of the Active and Standby Embedded Wireless Controller - AP Controller
In a network of Cisco Embedded Wireless Controller on Catalyst Access Points (EWC) - AP, one of the APs will be elected as the controller (you can configure the same by giving priority to one of the APs). If the active and standby EWCs fail simultaneously, a couple of other APs become the new active and standby EWCs. In such a case, the licensing information stored in the original active and standby EWCs will not be available in the new active-standby pair controllers.
To resolve this issue manually, do the following:
-
Recover the previously active or standby controller.
-
Wait for it to become the standby controller, and perform a failover to make it an active controller.
-
If this method fails, or if it is not possible due to the original failure, then install the trust code on the newly active controller.
Supported Cisco Access Point Platforms
The following Cisco access points are supported in the Cisco Embedded Wireless Controller on Catalyst Access Points network. Note that the APs listed as primary APs can also function as subordinate APs.
|
Primary AP |
Subordinate AP |
|---|---|
|
Cisco Catalyst 9115 Series Cisco Catalyst 9117 Series Cisco Catalyst 9120 Series Cisco Catalyst 9130 |
Cisco Aironet 1540 Series Cisco Aironet 1560 Series Cisco Aironet 1815i Cisco Aironet 1815w Cisco Aironet 1830 Series Cisco Aironet 1840 Series Cisco Aironet 1850 Series Cisco Aironet 2800 Series Cisco Aironet 3800 Series Cisco Aironet 4800 Series Cisco Catalyst 9115 Series Cisco Catalyst 9117 Series Cisco Catalyst 9120 Series Cisco Catalyst 9130 Cisco Catalyst 9105AXW Cisco Catalyst Industrial Wireless 6300 Heavy Duty Series Access Points Cisco 6300 Series Embedded Services Access Points |
|
Image Type |
Supported APs |
|---|---|
|
ap1g4 |
Cisco Aironet 1810 Series Cisco Aironet 1830 Series Cisco Aironet 1850 Series |
|
ap1g5 |
Cisco Aironet 1815i Cisco Aironet 1815w Cisco Aironet 1540 Series Cisco Aironet 1850 Series |
|
ap1g6 |
Cisco Catalyst 9117 Series |
|
ap1g6a |
Cisco Catalyst 9130 |
|
ap1g7 |
Cisco Catalyst 9115 Series Cisco Catalyst 9120 Series |
|
ap1g8 |
Cisco Catalyst 9105 Series |
|
ap3g3 |
Cisco Aironet 2800 Series Cisco Aironet 3800 Series Cisco Aironet 4800 Series Cisco Aironet 1560 Series Cisco Catalyst Industrial Wireless 6300 Heavy Duty Series Access Points Cisco 6300 Series Embedded Services Access Points |
Maximum APs and Clients Supported
|
Primary AP Model |
Maximum APs Supported |
Maximum Clients Supported |
|---|---|---|
|
Cisco Catalyst 9105 AWI |
50 |
1000 |
|
Cisco Catalyst 9115 Series |
50 |
1000 |
|
Cisco Catalyst 9117 Series |
50 |
1000 |
|
Cisco Catalyst 9120 Series |
100 |
2000 |
|
Cisco Catalyst 9130 |
100 |
2000 |
Note |
If 25 to 100 APs have joined the EWC network, the maximum clients on the EWC internal AP is limited to 20. |
Compatibility Matrix
The following table provides software compatibility information:
|
Cisco Embedded Wireless Controller on Catalyst Access Points |
Cisco ISE |
Cisco CMX |
Cisco DNA Center |
|---|---|---|---|
|
Amsterdam 17.3.x |
2.6 2.4 2.3 |
10.6.2 10.6 10.5.1 |
2.1.260 |
Supported Browsers and Operating Systems for Web UI
Note |
The following list of Supported Browsers and Operating Systems is not comprehensive at the time of writing this document and the behavior of various browser for accessing the GUI of the EWC is as listed below. |
|
Browser |
Version |
Operating System |
Status |
Workaround |
|---|---|---|---|---|
|
Google Chrome |
77.0.3865.120 |
macOS Mojave Version 10.14.6 |
Works |
Proceed through the browser warning. |
|
Safari |
13.0.2 (14608.2.40.1.3) |
macOS Mojave Version 10.14.6 |
Works |
Proceed through the browser warning. |
|
Mozilla Firefox |
69.0.1 |
macOS Mojave Version 10.14.6 |
Works only if exception is added. |
Set the exception. |
|
Mozilla Firefox |
69.0.3 |
macOS Mojave Version 10.14.6 |
Works only if exception is added. |
Set the exception. |
|
Google Chrome |
77.0.3865.90 |
Windows 10 Version 1903 (OS Build 18362.267) |
Works |
Proceed through the browser warning. |
|
Microsoft Edge |
44.18362.267.0 |
Windows 10 Version 1903 (OS Build 18362.267) |
Works |
Proceed through the browser warning. |
|
Mozilla Firefox |
68.0.2 |
Windows 10 Version 1903 (OS Build 18362.267) |
Works |
Proceed through the browser warning. |
|
Mozilla Firefox |
69.0.3 |
Windows 10 Version 1903 (OS Build 18362.267) |
Works only if exception is added. |
Set the exception. |
|
Google Chrome |
78.0.3904.108 |
macOS Catalina 10.15.1 |
Does not work |
NA |
Upgrading the Controller Software
This section covers the various aspects of upgrading the controller software.
For information on ASDv4 migration, see the What's New in Cisco IOS XE Amsterdam 17.3.5a section.
For information on upgrading the controller software, see the "Software Management" section in the Cisco Embedded Wireless Controller on Catalyst Access Points Online Help.
Note |
Before converting from CAPWAP to embedded wireless controller (EWC), ensure that you upgrade the corresponding AP with the CAPWAP image in Cisco AireOS Release 8.10.105.0. If this upgrade is not performed, the conversion will fail. |
Finding the Software Version
The following table lists the Cisco IOS XE 17.3.x software for Cisco Embedded Wireless Controller on Catalyst Access Points.
Choose the appropriate AP software based on the following:
-
Cisco Embedded Wireless Controller on Catalyst Access Points software to be used for converting the AP from an unified wireless network CAPWAP lightweight AP to a Cisco Embedded Wireless Controller on Catalyst Access Points-capable AP (primary AP)
-
AP software image bundle to be used either for upgrading the Cisco Embedded Wireless Controller on Catalyst Access Points software on the primary AP or for updating the software on the subordinate APs or both
Prior to ordering Cisco APs, see the corresponding ordering guide for your Catalyst or Aironet access point.
|
Primary AP |
AP Software for Conversion from CAPWAP to Cisco EWC |
AP Software Image Bundle for Upgrade |
AP Software in the Bundle |
|---|---|---|---|
|
Cisco Catalyst 9115 Series |
C9800-AP-universalk9.17.03.8a.zip C9800-AP-universalk9.17.03.08.zip C9800-AP-universalk9.17.03.07.zip C9800-AP-universalk9.17.03.06.zip C9800-AP-universalk9.17.03.5b.zip C9800-AP-universalk9.17.03.5a.zip C9800-AP-universalk9.17.03.4c.zip C9800-AP-universalk9.17.03.04.zip C9800-AP-universalk9.17.03.03.zip C9800-AP-universalk9.17.03.2a.zip C9800-AP-universalk9.17.03.01.zip |
C9800-AP-universalk9.17.03.8a.zip C9800-AP-universalk9.17.03.08.zip C9800-AP-universalk9.17.03.07.zip C9800-AP-universalk9.17.03.06.zip C9800-AP-universalk9.17.03.5b.zip C9800-AP-universalk9.17.03.5a.zip C9800-AP-universalk9.17.03.4c.zip C9800-AP-universalk9.17.03.04.zip C9800-AP-universalk9.17.03.03.zip C9800-AP-universalk9.17.03.2a.zip C9800-AP-universalk9.17.03.01.zip |
ap1g7 |
|
Cisco Catalyst 9117 Series |
C9800-AP-universalk9.17.03.8a.zip C9800-AP-universalk9.17.03.08.zip C9800-AP-universalk9.17.03.07.zip C9800-AP-universalk9.17.03.06.zip C9800-AP-universalk9.17.03.5b.zip C9800-AP-universalk9.17.03.5a.zip C9800-AP-universalk9.17.03.4c.zip C9800-AP-universalk9.17.03.04.zip C9800-AP-universalk9.17.03.03.zip C9800-AP-universalk9.17.03.2a.zip C9800-AP-universalk9.17.03.01.zip |
C9800-AP-universalk9.17.03.8a.zip C9800-AP-universalk9.17.03.08.zip C9800-AP-universalk9.17.03.07.zip C9800-AP-universalk9.17.03.06.zip C9800-AP-universalk9.17.03.5b.zip C9800-AP-universalk9.17.03.5a.zip C9800-AP-universalk9.17.03.4c.zip C9800-AP-universalk9.17.03.04.zip C9800-AP-universalk9.17.03.03.zip C9800-AP-universalk9.17.03.2a.zip C9800-AP-universalk9.17.03.01.zip |
ap1g6 |
|
Cisco Catalyst 9120 Series |
C9800-AP-universalk9.17.03.8a.zip C9800-AP-universalk9.17.03.08.zip C9800-AP-universalk9.17.03.07.zip C9800-AP-universalk9.17.03.06.zip C9800-AP-universalk9.17.03.5b.zip C9800-AP-universalk9.17.03.5a.zip C9800-AP-universalk9.17.03.4c.zip C9800-AP-universalk9.17.03.04.zip C9800-AP-universalk9.17.03.03.zip C9800-AP-universalk9.17.03.2a.zip C9800-AP-universalk9.17.03.01.zip |
C9800-AP-universalk9.17.03.8a.zip C9800-AP-universalk9.17.03.08.zip C9800-AP-universalk9.17.03.07.zip C9800-AP-universalk9.17.03.06.zip C9800-AP-universalk9.17.03.5b.zip C9800-AP-universalk9.17.03.5a.zip C9800-AP-universalk9.17.03.4c.zip C9800-AP-universalk9.17.03.04.zip C9800-AP-universalk9.17.03.03.zip C9800-AP-universalk9.17.03.2a.zip C9800-AP-universalk9.17.03.01.zip |
ap1g7 |
|
Cisco Catalyst 9130 Series |
C9800-AP-universalk9.17.03.8a.zip C9800-AP-universalk9.17.03.08.zip C9800-AP-universalk9.17.03.07.zip C9800-AP-universalk9.17.03.06.zip C9800-AP-universalk9.17.03.5b.zip C9800-AP-universalk9.17.03.5a.zip C9800-AP-universalk9.17.03.4c.zip C9800-AP-universalk9.17.03.04.zip C9800-AP-universalk9.17.03.03.zip C9800-AP-universalk9.17.03.2a.zip C9800-AP-universalk9.17.03.01.zip |
C9800-AP-universalk9.17.03.8a.zip C9800-AP-universalk9.17.03.08.zip C9800-AP-universalk9.17.03.07.zip C9800-AP-universalk9.17.03.06.zip C9800-AP-universalk9.17.03.5b.zip C9800-AP-universalk9.17.03.5a.zip C9800-AP-universalk9.17.03.4c.zip C9800-AP-universalk9.17.03.04.zip C9800-AP-universalk9.17.03.03.zip C9800-AP-universalk9.17.03.2a.zip C9800-AP-universalk9.17.03.01.zip |
ap1g6a |
Guidelines and Restrictions
Internet Group Management Protocol (IGMP)v3 is not supported on Cisco Aironet Wave 2 APs.
Embedded Wireless Controller SNMP configuration is supported in DNAC.
High memory usage on AP running Embedded Wireless Controller. Enabling crash kernel on the AP consumes additional memory on the AP. Hence, if crash kernel is enabled, the overall memory usage of the device will increase and will impact the scale numbers. On Cisco Catalyst 9130 Access Points, the memory consumption is a high of 128 MB.
Note |
While upgrading EWC, if you have enabled crash kernel on the AP, disable the feature and then enable it again post upgrade. Ensure that you reboot the AP post enable or disable. |
During the EWC HA pair selection, after a power outage, the standby AP fails to come up in the new EWC HA pair. Another EWC capable AP becomes the standby AP and fails to come up as well. To avoid this situation, ensure that the same IP address is enforced on the active or standby APs during HA pair selection.
Interoperability with Clients
This section describes the interoperability of the controller software with client devices.
The following table describes the configurations used for testing client devices.
|
Hardware or Software Parameter |
Hardware or Software Type |
|---|---|
|
Release |
Cisco IOS XE Amserdam 17.3.1 |
|
Access Points |
|
|
Radio |
|
|
Security |
Open, PSK (WPA2-AES), 802.1X (WPA2-AES) (EAP-FAST, EAP-TLS), WPA3. |
|
Cisco ISE |
See Compatibility Matrix. |
|
Types of tests |
Connectivity, traffic (ICMP), and roaming between two APs |
The following table lists the client types on which the tests were conducted. Client types included laptops, hand-held devices, phones, and printers.
|
Client Type and Name |
Driver / Software Version |
||
|---|---|---|---|
|
Wi-Fi 6 Devices (Mobile Phone and Laptop) |
|||
| Apple iPhone 11 | iOS 14.1 | ||
|
Apple iPhone SE 2020 |
iOS 14.1 | ||
| Dell Intel AX1650w | Windows 10 ( 21.90.2.1) | ||
| DELL LATITUDE 5491 (Intel AX200) | Windows 10 Pro (21.40.2) | ||
| Samsung S20 | Android 10 | ||
| Samsung S10 (SM-G973U1) | Android 9.0 (One UI 1.1) | ||
| Samsung S10e (SM-G970U1) | Android 9.0 (One UI 1.1) | ||
| Samsung Galaxy S10+ | Android 9.0 | ||
|
Samsung Galaxy Fold 2 |
Android 10 | ||
|
Samsung Galaxy Flip Z |
Android 10 | ||
|
Samsung Note 20 |
Android 10 | ||
|
Laptops |
|||
| Acer Aspire E 15 E5-573-3870 (Qualcomm Atheros QCA9377) | Windows 10 Pro (12.0.0.832) | ||
| Apple Macbook Air 11 inch | OS Sierra 10.12.6 | ||
| Apple Macbook Air 13 inch | OS Catalina 10.15.4 | ||
| Apple Macbook Air 13 inch | OS High Sierra 10.13.4 | ||
| Macbook Pro Retina | OS Mojave 10.14.3 | ||
| Macbook Pro Retina 13 inch early 2015 | OS Mojave 10.14.3 | ||
|
Dell Inspiron 2020 Chromebook |
Chrome OS 75.0.3770.129 |
||
|
Google Pixelbook Go |
Chrome OS 84.0.4147.136 |
||
|
HP chromebook 11a |
Chrome OS 76.0.3809.136 |
||
|
Samsung Chromebook 4+ |
Chrome OS 77.0.3865.105 |
||
| DELL Latitude 3480 (Qualcomm DELL wireless 1820) | Win 10 Pro (12.0.0.242) | ||
| DELL Inspiron 15-7569 (Intel Dual Band Wireless-AC 3165) | Windows 10 Home (18.32.0.5) | ||
| DELL Latitude E5540 (Intel Dual Band Wireless AC7260) | Windows 7 Professional (21.10.1) | ||
| DELL XPS 12 v9250 (Intel Dual Band Wireless AC 8260 ) | Windows 10 (19.50.1.6) | ||
| DELL Latitude 5491 (Intel AX200) | Windows 10 Pro (21.40.2) | ||
| DELL XPS Latitude12 9250 (Intel Dual Band Wireless AC 8260) | Windows 10 Home (21.40.0) | ||
|
Lenovo Yoga C630 Snapdragon 850 (Qualcomm AC 2x2 Svc) |
Windows 10(1.0.10440.0) |
||
| Lenovo Thinkpad Yoga 460 (Intel Dual Band Wireless-AC 9260) | Windows 10 Pro ( 21.40.0) | ||
|
|||
|
Tablets |
|||
| Apple iPad Pro | iOS 13.5 | ||
| Apple iPad Air2 MGLW2LL/A | iOS 12.4.1 | ||
| Apple iPad Mini 4 9.0.1 MK872LL/A | iOS 11.4.1 | ||
| Apple iPad Mini 2 ME279LL/A | iOS 12.0 | ||
| Microsoft Surface Pro 3 – 11ac | Qualcomm Atheros QCA61x4A | ||
| Microsoft Surface Pro 3 – 11ax | Intel AX201 chipset. Driver v21.40.1.3 | ||
| Microsoft Surface Pro 7 – 11ax | Intel Wi-Fi chip (HarrisonPeak AX201) (11ax, WPA3) | ||
| Microsoft Surface Pro X – 11ac & WPA3 | WCN3998 Wi-Fi Chip (11ac, WPA3) | ||
|
Mobile Phones |
|||
| Apple iPhone 5 | iOS 12.4.1 | ||
| Apple iPhone 6s | iOS 13.5 | ||
| Apple iPhone 8 | iOS 13.5 | ||
| Apple iPhone X MQA52LL/A | iOS 13.5 | ||
| Apple iPhone 11 | iOS 14.1 | ||
| Apple iPhone SE MLY12LL/A | iOS 11.3 | ||
| ASCOM SH1 Myco2 | Build 2.1 | ||
| ASCOM SH1 Myco2 | Build 4.5 | ||
| ASCOM Myco 3 v1.2.3 | Android 8.1 | ||
| Drager Delta | VG9.0.2 | ||
| Drager M300.3 | VG2.4 | ||
| Drager M300.4 | VG2.4 | ||
| Drager M540 | DG6.0.2 (1.2.6) | ||
| Google Pixel 2 | Android 10 | ||
| Google Pixel 3 | Android 11 | ||
|
Google Pixel 3a |
Android 11 |
||
| Google Pixel 4 | Android 11 | ||
| Huawei Mate 20 pro | Android 9.0 | ||
| Huawei P20 Pro | Android 9.0 | ||
|
Huawei P40 |
Android 10 |
||
| LG v40 ThinQ | Android 9.0 | ||
|
One Plus 8 |
Android 10 |
||
|
Oppo Find X2 |
Android 10 |
||
|
Redmi K20 Pro |
Android 10 |
||
| Samsung Galaxy S7 | Andriod 6.0.1 | ||
| Samsung Galaxy S7 SM - G930F | Android 8.0 | ||
| Samsung Galaxy S8 | Android 8.0 | ||
| Samsung Galaxy S9+ - G965U1 | Android 9.0 | ||
| Samsung Galaxy SM - G950U | Android 7.0 | ||
|
Sony Experia 1 ii |
Android 10 |
||
| Sony Experia xz3 | Android 9.0 | ||
|
Xiaomi Mi10 |
Android 10 |
||
| Spectralink 8744 | Android 5.1.1 | ||
| Spectralink Versity Phones 9540 | Android 8.1 | ||
| Vocera Badges B3000n | 4.3.2.5 | ||
| Vocera Smart Badges V5000 | 5.0.4.30 | ||
| Zebra MC40 | Android 5.0 | ||
| Zebra MC40N0 | Android Ver: 4.1.1 | ||
| Zebra MC92N0 | Android Ver: 4.4.4 | ||
| Zebra TC51 | Android 7.1.2 | ||
| Zebra TC52 | Android 8.1.0 | ||
| Zebra TC55 | Android 8.1.0 | ||
| Zebra TC57 | Android 8.1.0 | ||
| Zebra TC70 | Android 6.1 | ||
| Zebra TC75 | Android 6.1.1 | ||
| Printers | |||
| Zebra QLn320 Printer | LINK OS 6.3 | ||
| Zebra ZT230 Printer | LINK OS 6.3 | ||
| Zebra ZQ310 Printer | LINK OS 6.3 | ||
| Zebra ZD410 Printer | LINK OS 6.3 | ||
| Zebra ZT410 Printer | LINK OS 6.3 | ||
| Zebra ZQ610 Printer | LINK OS 6.3 | ||
| Zebra ZQ620 Printer | LINK OS 6.3 | ||
|
Wireless Module |
|||
|
Intel 11ax 200 |
Driver v22.20.0 | ||
|
Intel AC 9260 |
Driver v21.40.0 | ||
|
Intel Dual Band Wireless AC 8260 |
Driver v19.50.1.6 |
||
Issues
Issues describe unexpected behavior in Cisco IOS releases. Issues that are listed as Open in a prior release are carried forward to the next release as either Open or Resolved.
Note |
All incremental releases will cover fixes from the current release. |
Cisco Bug Search Tool
The Cisco Bug Search Tool (BST) allows partners and customers to search for software bugs based on product, release, and keyword, and aggregates key data such as bug details, product, and version. The BST is designed to improve the effectiveness in network risk management and device troubleshooting. The tool has a provision to filter bugs based on credentials to provide external and internal bug views for the search input.
To view the details of a caveat, click the corresponding identifier.
Open Caveats for Cisco IOS XE Amsterdam 17.3.8a
|
Identifier |
Headline |
|---|---|
|
Error propagation from wncd back to manageability agent through wncmgrd. |
|
|
The primary member displays "standby hot" even though the standby is in recovery mode. |
|
|
Controller is reloading unexpectedly generating "wncd" core files. |
|
|
Controller is remarking SIP packets from CS3 to CS0 in upstream/downstream when voice cac is configured. |
|
|
Cisco Catalyst 9130 Series APs are not updated as monitor in Current-Band in the show ap fra command. |
|
|
The show ap fra command output on the controller is not aligned properly. |
|
|
Channel change to 165 and channel width change to 20 fails via OC when the AP is configured with channel width 40. |
|
|
The FRA timer does not work on the show ap fra command. |
|
|
Logging message not seen when the noise threshold is moved to passed or failed for XOR radio (5-Ghz). |
|
|
WPA3-Suite B: Incorrect APUT response to STA incorrect TLS authentication parameters. |
|
|
Controller GUI displays 802.1x with a lowercase 'x' instead of 802.1X with a capital 'X'. |
|
|
Controller does not send LLC or XID spoofed frames after a mobility event. |
|
|
Dual DFS stats on AP do not match controller information. |
|
|
Cisco Catalyst 9800-L Series Controller: Observed qfp-ucode-wlc crash. |
|
|
Controller GUI goes blank after logging in if username has '&'. |
|
|
Client delete initiated. Reason: CO_CLIENT_DELETE_REASON_REMOTE_MOBILITY_DELETE - Mobility Local. |
|
|
Clients stop passing traffic when there is a missing bandwidth limit AAA attribute on the controller. |
|
|
Cisco Catalyst 9120 AP: Kernel panic is seen on AP when client is disconnected and connected back with Target Wake Time (TWT) session. |
|
|
ECDHE ciphers are not listed when WLAN Common Criteria (WLAN CC) is enabled. |
|
|
After changing channel and bandwidth of AP (with SIA), antenna shows incorrect legal/configured gain. |
|
|
Cisco Catalyst 9120AX AP+SIA-DART: Initial configuration for slot 0 show configured gain value as 0. |
|
|
Cisco Catalyst 9115 and 9120 APs are crashing: WL_REINIT_RC_MQ_ERROR. |
|
|
Cisco Catalyst 9117 AP: Crash is observed on Slot 1. |
|
|
Cisco Catalyst 9105i OEAP is crashing due to kernel panic. |
|
|
Cisco Catalyst 9105w Office Extend Access Points (OEAP) is crashing due to kernel panic. |
|
|
Cisco Catalyst 9130 AP: Probe suppression for Macro-Micro cell client steering is not supported. |
|
|
Unclear reason for radio reset due to role change sent from controller to Cisco DNA Center. |
|
|
Tx power mismatch on RAP & MAP even though same power is set on RAP & MAP. |
|
|
Cisco APs are not assigned up with IPv6 addresses after upgrade from 17.6.1 to 17.6.2 or 17.7.1. |
|
|
Cisco Catalyst 9124E AP: Max transmit power is being capped for some domains resulting in 3 to 4dB less power. |
|
|
Cisco Catalyst 9105w OEAP: CAPWAP DTLS session is closed for AP due to DTLS server session shutdown. |
|
|
Firmware crash is observed on Radio 1 on the Cisco Catalyst 9130 AP in FlexConnect mode. |
|
|
Cisco Catalyst 9120 AP: Radio crash is observed on Slot 0. |
|
|
Cisco Catalyst 9124 AP: MAPs are no longer able to join RAP due to security failures. |
|
|
Cisco Catalyst OEAP 9105w CAPWAP DTLS session closed for AP, due to DTLS shutdown. |
|
|
Regular ASR support field is disabled for supporting clients. |
|
|
Cisco Catalyst 9130 AP: Radio crash is observed. |
|
|
Linux iosd crash on standby controller during reload of the Cisco Catalyst 9800-L Wireless Controller. |
|
|
Cisco Catalyst AP9115 Tx power high and abnormal Dynamic Channel Assignment (DCA) channel assignment due to no neighbors. |
|
|
Controller is tracking stale entry due to anchored client getting IPv4 and IPv6 in different VLANs. |
|
|
Cisco Catalyst 9120AX AP kernel crash - PC is at rhb_del_interface+0xc. |
|
|
Controller should not enable second 5-Ghz radio for 9124E with PoE+ (30W). |
|
|
Cisco Wave 1 AP is crashing on CAPWAP restart from the controller. |
|
|
Cisco Catalyst 9130AX APs are decoding Extensible Authentication Protocol (EAP) request ID incorrectly. |
|
|
Cisco Catalyst 9115 AP in workgroup bridge (WGB) stops sending traffic to the root AP after about 60 seconds from its initial connection. |
|
|
6-Ghz RRM channel change is observed due to sudden spike in noise. |
|
|
Radio firmware reloads unexpectedly due to a frozen RC queue. |
|
|
Cisco Catalyst 9105AXW APs are crashing. |
|
|
Cisco Catalyst 9130 AP: Packet loss is observed on Digital Signage device. |
|
|
Cisco DNA Centre: Tx power change is not getting applied on controller and AP. |
|
|
Cisco Catalyst 9105AXW AP and Cisco Aironet 1815W Flex RLAN AP does not apply VLAN in the ethernet port after AAA vlan override. |
|
|
Cisco Catalyst 9105AX AP: Kernel panic crash is observed. |
|
|
Cisco Catalyst 9120 AP: Sending Msg:2 in mode:2 to hostapd failed. |
|
|
Cisco AP is not forwarding IGMPv3 query to wireless clients. |
|
|
Cisco Catalyst 9105 AP is stuck in U-BOOT. |
|
|
Cisco Catalyst 9120AX AP: Clients are continuously disconnecting if more than 10 clients are using MS TEAMS. |
|
|
Cisco Aironet 1815W AP: Kernel panic with radio stats crash. |
|
|
Cisco Aironet 1832 AP is not sending packets to radio. |
Open Caveats for Cisco IOS XE Amsterdam 17.3.8
|
Identifier |
Headline |
|---|---|
|
Error propagation from wncd back to manageability agent through wncmgrd. |
|
|
The primary member displays "standby hot" even though the standby is in recovery mode. |
|
|
Controller is reloading unexpectedly generating "wncd" core files. |
|
|
Controller is remarking SIP packets from CS3 to CS0 in upstream/downstream when voice cac is configured. |
|
|
Cisco Catalyst 9130 Series APs are not updated as monitor in Current-Band in the show ap fra command. |
|
|
The show ap fra command output on the controller is not aligned properly. |
|
|
Channel change to 165 and channel width change to 20 fails via OC when the AP is configured with channel width 40. |
|
|
The FRA timer does not work on the show ap fra command. |
|
|
Logging message not seen when the noise threshold is moved to passed or failed for XOR radio (5-Ghz). |
|
|
WPA3-Suite B: Incorrect APUT response to STA incorrect TLS authentication parameters. |
|
|
Controller GUI displays 802.1x with a lowercase 'x' instead of 802.1X with a capital 'X'. |
|
|
Controller does not send LLC or XID spoofed frames after a mobility event. |
|
|
Dual DFS stats on AP do not match controller information. |
|
|
Cisco Catalyst 9800-L Series Controller: Observed qfp-ucode-wlc crash. |
|
|
Controller GUI goes blank after logging in if username has '&'. |
|
|
Client delete initiated. Reason: CO_CLIENT_DELETE_REASON_REMOTE_MOBILITY_DELETE - Mobility Local. |
|
|
Clients stop passing traffic when there is a missing bandwidth limit AAA attribute on the controller. |
|
|
Cisco Catalyst 9120 AP: Kernel panic is seen on AP when client is disconnected and connected back with Target Wake Time (TWT) session. |
|
|
ECDHE ciphers are not listed when WLAN Common Criteria (WLAN CC) is enabled. |
|
|
After changing channel and bandwidth of AP (with SIA), antenna shows incorrect legal/configured gain. |
|
|
Cisco Catalyst 9120AX AP+SIA-DART: Initial configuration for slot 0 show configured gain value as 0. |
|
|
Cisco Catalyst 9115 and 9120 APs are crashing: WL_REINIT_RC_MQ_ERROR. |
|
|
Cisco Catalyst 9117 AP: Crash is observed on Slot 1. |
|
|
Cisco Catalyst 9105i OEAP is crashing due to kernel panic. |
|
|
Cisco Catalyst 9105w Office Extend Access Points (OEAP) is crashing due to kernel panic. |
|
|
Cisco Catalyst 9130 AP: Probe suppression for Macro-Micro cell client steering is not supported. |
|
|
Unclear reason for radio reset due to role change sent from controller to Cisco DNA Center. |
|
|
Tx power mismatch on RAP & MAP even though same power is set on RAP & MAP. |
|
|
Cisco APs are not assigned up with IPv6 addresses after upgrade from 17.6.1 to 17.6.2 or 17.7.1. |
|
|
Cisco Catalyst 9124E AP: Max transmit power is being capped for some domains resulting in 3 to 4dB less power. |
|
|
Cisco Catalyst 9105w OEAP: CAPWAP DTLS session is closed for AP due to DTLS server session shutdown. |
|
|
Firmware crash is observed on Radio 1 on the Cisco Catalyst 9130 AP in FlexConnect mode. |
|
|
Cisco Catalyst 9120 AP: Radio crash is observed on Slot 0. |
|
|
Cisco Catalyst 9124 AP: MAPs are no longer able to join RAP due to security failures. |
|
|
Cisco Catalyst OEAP 9105w CAPWAP DTLS session closed for AP, due to DTLS shutdown. |
|
|
Regular ASR support field is disabled for supporting clients. |
|
|
Cisco Catalyst 9130 AP: Radio crash is observed. |
|
|
Linux iosd crash on standby controller during reload of the Cisco Catalyst 9800-L Wireless Controller. |
|
|
Cisco Catalyst AP9115 Tx power high and abnormal Dynamic Channel Assignment (DCA) channel assignment due to no neighbors. |
|
|
Controller is tracking stale entry due to anchored client getting IPv4 and IPv6 in different VLANs. |
|
|
Cisco Catalyst 9120AX AP kernel crash - PC is at rhb_del_interface+0xc. |
|
|
Controller should not enable second 5-Ghz radio for 9124E with PoE+ (30W). |
|
|
Cisco Wave 1 AP is crashing on CAPWAP restart from the controller. |
|
|
Cisco Catalyst 9130AX APs are decoding Extensible Authentication Protocol (EAP) request ID incorrectly. |
|
|
Cisco Catalyst 9115 AP in workgroup bridge (WGB) stops sending traffic to the root AP after about 60 seconds from its initial connection. |
|
|
6-Ghz RRM channel change is observed due to sudden spike in noise. |
|
|
Radio firmware reloads unexpectedly due to a frozen RC queue. |
|
|
Cisco Catalyst 9105AXW APs are crashing. |
|
|
Cisco Catalyst 9130 AP: Packet loss is observed on Digital Signage device. |
|
|
Cisco DNA Centre: Tx power change is not getting applied on controller and AP. |
|
|
Cisco Catalyst 9105AXW AP and Cisco Aironet 1815W Flex RLAN AP does not apply VLAN in the ethernet port after AAA vlan override. |
|
|
Cisco Catalyst 9105AX AP: Kernel panic crash is observed. |
|
|
Cisco Catalyst 9120 AP: Sending Msg:2 in mode:2 to hostapd failed. |
|
|
Cisco AP is not forwarding IGMPv3 query to wireless clients. |
|
|
Cisco Catalyst 9105 AP is stuck in U-BOOT. |
|
|
Cisco Catalyst 9120AX AP: Clients are continuously disconnecting if more than 10 clients are using MS TEAMS. |
|
|
Cisco Aironet 1815W AP: Kernel panic with radio stats crash. |
|
|
Cisco Aironet 1832 AP is not sending packets to radio. |
Open Caveats for Cisco IOS XE Amsterdam 17.3.7
|
Identifier |
Headline |
|---|---|
|
Error propagation from wncd back to manageability agent through wncmgrd. |
|
|
The primary member displays "standby hot" even though the standby is in recovery mode. |
|
|
Controller is reloading unexpectedly generating "wncd" core files. |
|
|
Controller is remarking SIP packets from CS3 to CS0 in upstream/downstream when voice cac is configured. |
|
|
Cisco Catalyst 9130 Series APs are not updated as monitor in Current-Band in the show ap fra command. |
|
|
The show ap fra command output on the controller is not aligned properly. |
|
|
Channel change to 165 and channel width change to 20 fails via OC when the AP is configured with channel width 40. |
|
|
The FRA timer does not work on the show ap fra command. |
|
|
Logging message not seen when the noise threshold is moved to passed or failed for XOR radio (5-Ghz). |
|
|
WPA3-Suite B: Incorrect APUT response to STA incorrect TLS authentication parameters. |
|
|
Controller GUI displays 802.1x with a lowercase 'x' instead of 802.1X with a capital 'X'. |
|
|
Controller does not send LLC or XID spoofed frames after a mobility event. |
|
|
Dual DFS stats on AP do not match controller information. |
|
|
Unexpected error messages flooding in RA logs for successful client joins. |
|
|
Cisco Catalyst 9800-L Series Controller: Observed qfp-ucode-wlc crash. |
|
|
Controller GUI goes blank after logging in if username has '&'. |
|
|
Client delete initiated. Reason: CO_CLIENT_DELETE_REASON_REMOTE_MOBILITY_DELETE - Mobility Local. |
|
|
Clients stop passing traffic when there is a missing bandwidth limit AAA attribute on the controller. |
|
|
Traceback is seen after provisioning controller from Cisco DNA Centre. |
|
|
Cisco Catalyst 9120 AP: Kernel panic is seen on AP when client is disconnected and connected back with Target Wake Time (TWT) session. |
|
|
ECDHE ciphers are not listed when WLAN Common Criteria (WLAN CC) is enabled. |
|
|
After changing channel and bandwidth of AP (with SIA), antenna shows incorrect legal/configured gain. |
|
|
Cisco Catalyst 9120AX AP+SIA-DART: Initial configuration for slot 0 show configured gain value as 0. |
|
|
Cisco Catalyst 9115 and 9120 APs are crashing: WL_REINIT_RC_MQ_ERROR. |
|
|
Cisco Catalyst 9117 AP: Crash is observed on Slot 1. |
|
|
Cisco Catalyst 9105i OEAP is crashing due to kernel panic. |
|
|
Cisco Catalyst 9105w Office Extend Access Points (OEAP) is crashing due to kernel panic. |
|
|
Cisco Catalyst 9130 AP: Probe suppression for Macro-Micro cell client steering is not supported. |
|
|
Unclear reason for radio reset due to role change sent from controller to Cisco DNA Center. |
|
|
Tx power mismatch on RAP & MAP even though same power is set on RAP & MAP. |
|
|
Cisco APs are not assigned up with IPv6 addresses after upgrade from 17.6.1 to 17.6.2 or 17.7.1. |
|
|
Cisco Catalyst 9124E AP: Max transmit power is being capped for some domains resulting in 3 to 4dB less power. |
|
|
Tx power changes are not getting applied to the AP. |
|
|
Cisco Catalyst 9105w OEAP: CAPWAP DTLS session is closed for AP due to DTLS server session shutdown. |
|
|
Firmware crash is observed on Radio 1 on the Cisco Catalyst 9130 AP in FlexConnect mode. |
|
|
Cisco Catalyst 9120 AP: Radio crash is observed on Slot 0. |
|
|
Cisco Catalyst 9124 AP: MAPs are no longer able to join RAP due to security failures. |
|
|
Cisco Catalyst OEAP 9105w CAPWAP DTLS session closed for AP, due to DTLS shutdown. |
|
|
Regular ASR support field is disabled for supporting clients. |
|
|
Cisco Catalyst 9130 AP: Radio crash is observed. |
|
|
Linux iosd crash on standby controller during reload of the Cisco Catalyst 9800-L Wireless Controller. |
|
|
Cisco Catalyst AP9115 Tx power high and abnormal Dynamic Channel Assignment (DCA) channel assignment due to no neighbors. |
|
|
Controller is tracking stale entry due to anchored client getting IPv4 and IPv6 in different VLANs. |
|
|
Cisco Catalyst 9120AX AP kernel crash - PC is at rhb_del_interface+0xc. |
|
|
Controller should not enable second 5-Ghz radio for 9124E with PoE+ (30W). |
|
|
Cisco Wave 1 AP is crashing on CAPWAP restart from the controller. |
|
|
Cisco Catalyst 9130AX APs are decoding Extensible Authentication Protocol (EAP) request ID incorrectly. |
|
|
Cisco Catalyst 9115 AP in workgroup bridge (WGB) stops sending traffic to the root AP after about 60 seconds from its initial connection. |
|
|
6-Ghz RRM channel change is observed due to sudden spike in noise. |
|
|
Observing AID leak in Cisco Wave 2 APs in FlexConnect mode. |
|
|
Radio firmware reloads unexpectedly due to a frozen RC queue. |
|
|
Cisco Catalyst 9105AXW APs are crashing. |
|
|
Cisco Catalyst 9130 AP: Packet loss is observed on Digital Signage device. |
|
|
Cisco DNA Centre: Tx power change is not getting applied on controller and AP. |
|
|
Cisco Catalyst 9105AXW AP and Cisco Aironet 1815W Flex RLAN AP does not apply VLAN in the ethernet port after AAA vlan override. |
|
|
Cisco AP reloads unexpectedly due to kernel panic. |
|
|
Cisco Catalyst 9105AX AP: Kernel panic crash is observed. |
|
|
Cisco Catalyst 9120 AP: Sending Msg:2 in mode:2 to hostapd failed. |
|
|
Cisco AP is not forwarding IGMPv3 query to wireless clients. |
|
|
Cisco Catalyst 9105 AP is stuck in U-BOOT. |
|
|
Cisco Catalyst 9120AX AP: Clients are continuously disconnecting if more than 10 clients are using MS TEAMS. |
|
|
Cisco Aironet 1815W AP: Kernel panic with radio stats crash. |
|
|
Cisco Catalyst 9120 AP is dropping DHCP offer in click. Not forwarding to wireless interface. |
|
|
Cisco Aironet 1832 AP is not sending packets to radio. |
Open Caveats for Cisco IOS XE Amsterdam 17.3.6
|
Caveat ID |
Description |
|---|---|
|
Cisco Catalyst 9120 AP + SIA Antenna: The power table changes need to be modified for 4 dBi preconfigured gain value. |
|
|
The reason for radio reset is unclear due to the role change sent from the controller to Cisco DNAC. |
|
|
Cisco Catalyst 9115 AP reports Dynamic Frequency Selection (DFS) in channels incorrectly: "blocked list due to be cleared". |
|
|
Factory reset using a physical button does not work always. |
|
|
Unexpected reload occurs in Cisco Catalyst 9105, 9115, or 9120 APs when Target Wake Time (TWT) is enabled. |
|
|
Cisco Catalyst 9130 AP does not transmit EAP identity request. |
|
|
Cisco Catalyst 9100 AP does not try to resolve the PnP network time protocol (NTP) public servers. |
|
|
Cisco Catalyst 9120AX AP detects correctable ECC error while booting up. |
|
|
Access Point show logging is flooded with "syslog: parse_tx_bcn: Bcn payload is NULL" syslog messages. |
|
|
Cisco Catalyst 9130 AP: Probe suppression for Macro-Micro cell client steering does not work. |
|
|
Cisco Catalyst 9105AXW AP introduces latency when clients use RLAN ports. |
|
|
AP does not copy the DHCP ACK packets to the controller after cts manual is enabled in the switch, in 8.10. |
|
|
CleanAir data is missing for 2.4-GHz in some of the Cisco Catalyst 9120 or 9130 APs. |
|
|
Workgroup bridge (WGB) breaks in Pre-Shared Key (PSK) with key length of 63. |
|
|
LWA client is deleted immediately when joining Flex WLAN after a Site or Policy Tag change. |
|
|
Cisco Catalyst 9105 AP as WGB fails to forward packets OTA, producing gaps in the communication. |
|
|
Dynamic Channel Assignment (DCA) triggering multiple channel changes in 2.4-GHz in clean environment. |
|
|
Client connectivity suffers in Cisco Catalyst 9120 AP due to radio core dump. |
|
|
Backslash "\" at the end of the RADIUS servers' shared secret is not allowed for FlexConnect groups configuration. |
|
|
RHL reset is observed in Cisco Catalyst 9120 AP. |
|
|
Error propogates from WNCD back to manageability agent through WNCMGRD. |
|
|
WNCD crash is observed at wsa_clt_evt_cache_update during the client join process with Cisco DNAC auth rate testing. |
|
|
Cisco Catalyst 9800 Wireless Controller - Link down due to local fault. |
|
|
Channel change to 165 width 20 fails with the OC model, when an AP is configured with channel width 40. |
|
|
Cisco Catalyst 9800-CL controller logs spectrum process tracebacks. |
|
|
FlexConnect WLAN VLAN mapping disappears when VLAN name is defined in the FlexProfile. |
|
|
Controller does not send LLC or XID spoofed frames after a mobility event. |
|
|
RRM startup mode gets triggered in every reboot as the controller does not keep track of the last state. |
|
|
The controller GUI displays 802.1x with a lowercase 'x' instead of 802.1X, with a capital 'X'. |
|
|
Controller does not send LLC or XID spoofed frames after a mobility event. |
|
|
APs operate in disabled RF profile channels in Cisco IOS XE 17.6.2. |
|
|
SISF crash is observed when handling DHCP messages. |
|
|
AP does not join the controller due to CAPWAP data tunnel plumb failure. |
Open Caveats for Cisco IOS XE Amsterdam 17.3.5a
|
Caveat ID |
Description |
|---|---|
|
Crash occurs when Btrace modules exceed the initial maximjm number of registrations. |
|
|
The controller standby chassis shows Cisco Unknown Power Supply and the same serial number in the show inventory command output. |
|
|
Configures the APs workflow to Resume or Cancel errors. |
|
|
Cisco Catalyst 9130 series AP does not send M1 over the air. |
|
|
Cisco Catalyst 9130 Series AP crash - PC is at __qdf_bug+0x0/0x8 osif_delete_vap_wait_and_free. |
|
|
Cisco Catalyst 9130 Series high channel utilization and client lags with 9 or more clients using MS Teams. |
|
|
Cisco Catalyst 9130AXI AP changes the Domain Name System (DNS) information from the Dynamic Host Configuration Protocol (DHCP) offer packet. |
|
|
Cisco Catalyst 9117 Series APs crashes due radio failure (radio recovery failed) Beacons stuck on Radio 1. |
|
|
Incorrect campus maps information on CMX 10.6.2-89. |
|
|
Cisco Catalyst 9130 Series AP driver declines authorization request causing 11w client join issues. |
|
|
Tx power for Microcell created by AP for slot 2 of Cisco Catalyst 9130 Series AP. |
|
|
Cisco Catalyst 9130 Series AP crashes on CAPWAP after joining with the controller. |
|
|
Cisco Catalyst 9117 Series AP Beacon Struck - crash due to radio failure (radio recovery failed). |
Open Caveats for Cisco IOS XE Amsterdam 17.3.4c
|
Caveat ID |
Description |
|---|---|
|
Cisco Catalyst 9130AX Series Access Point reboots continuously. |
|
|
Memory leak in Session Manager Daemon (sessmgrd) during WebAuth configuration. |
|
|
Cisco Catalyst 9130AX Series Access Points experiences crash kernel panic error. |
|
|
Cisco Catalyst 9120AX Series Access Points in FlexConnect local-switching central auth, sends unencrypted WPA1 TKIP M5 packets. |
|
|
Cisco Wave 2 APs unable to establish DTLS connection with the controller until it is rebooted. |
|
|
Cisco Catalyst 9115 Series Access Point randomly crashes due to kernel panic error. |
|
|
Cisco Catalyst 9115 Series Access Point crashed after loading the 17.3.3 ES6 image. |
|
|
Cisco Catalyst 9120AX Series Access Point does not forward downstream packets to the device. |
|
|
Cisco Catalyst 9800 Series Wireless Controllers does not reply to TCP packets punted to CPU for redirect when banner size >200 in global param-map . |
Open Caveats for Cisco IOS XE Amsterdam 17.3.4
|
Caveat ID |
Description |
|---|---|
|
Cisco Catalyst 9130AX Series Access Point reboots continuously. |
|
|
Memory leak in Session Manager Daemon (sessmgrd) during WebAuth configuration. |
|
|
Cisco Catalyst 9130AX Series Access Points experiences crash kernel panic error. |
|
|
Cisco Catalyst 9120AX Series Access Points in FlexConnect local-switching central auth, sends unencrypted WPA1 TKIP M5 packets. |
|
|
Cisco Wave 2 APs unable to establish DTLS connection with the controller until it is rebooted. |
|
|
Cisco Catalyst 9115 Series Access Point randomly crashes due to kernel panic error. |
|
|
Cisco Catalyst 9115 Series Access Point crashed after loading the 17.3.3 ES6 image. |
|
|
Cisco Catalyst 9120AX Series Access Point does not forward downstream packets to the device. |
|
|
Cisco Catalyst 9800 Series Wireless Controllers does not reply to TCP packets punted to CPU for redirect when banner size >200 in global param-map . |
Open Caveats for Cisco IOS XE Amsterdam 17.3.3
|
Caveat ID |
Description |
|---|---|
|
DFS detection optimization to avoid false DFS detection in Cisco Catalyst 9115 Series APs. |
|
|
Cisco Catalyst 9120 Series AP beacon stuck after moving from channel UNII 1 to UNII 2. |
Open Caveats for Cisco IOS XE Amsterdam 17.3.2a
|
Caveat ID |
Description |
|---|---|
|
Cisco Aironet 9130 APs are not sending DHCP messages over the air. |
|
|
Cisco Catalyst 9115 Series Wi-Fi 6 Access Point: Clients are unable to connect due to persistent Tx error on radio. |
|
|
Cisco Catalyst 9130AXE Series Access Points are not taking RF tag power settings on slot 2. |
|
|
Cisco Catalyst 9130AX Series Access Points are not sending M1 over the air. |
|
|
Cisco Catalyst 9130AX Series Access Point is dropping packets and the AP is not able to push packet to click module. |
|
|
Cisco Catalyst 9130AX Series Access Points are dropping some uplink packets from macbooks. |
|
|
AP location string is truncated during join. |
|
|
Cisco Embedded Wireless Controller for an AP is not forwarding downstream traffic after active AP failover. |
|
|
The licensing data of Cisco Embedded Wireless Controller is not replicated to all the AP members. |
Open Caveats for Cisco IOS XE Amsterdam 17.3.1
|
Caveat ID |
Description |
|---|---|
|
Support for three-step install upgrade with ap image predownload is required. |
|
|
Device is crashing while executing the copy flash:< >.cfg running-config command. |
|
|
Disallow Webauth WLANs from being tagged to authentication servers with load-balancing enabled. |
|
|
Interface speed for the AP is showing as None in Cisco Prime Infrastructure. |
|
|
The dot11n and dot11ac are disabled and configuration is saved. When the controller reloads, they are enabled again. |
|
|
Configuration slot 0 output is updating wrong values for XOR radio when mapped to the custom rf-profile. |
|
|
Radio objects are missing from the RRMradSlot table if AP tag is in mis-configured state. |
|
|
Cisco Aironet 1570 APs are not allowing clients to connect in 5 GHz. |
|
|
AP kernel panic crash (PC is at vfp_reload_hw). |
|
|
Cisco Aironet 3800 AP with data DTLS encryption disconnects from the controller due to CAPWAP keepalive after rx PMTU discovery. |
|
|
CAPWAP multi-window support: AP disconnects post switchover when AP image predownload is in progress. |
|
|
Auto-contain doesn't resume after rogue-client is removed. |
|
|
Rogue rule created is overridden with latest priority. |
|
|
Cisco Catalyst 9800-80 Controller is sending client traffic out of the AP manager interface. |
|
|
Client is connected through dot11n or dot11n even when dot11 options are disabled. |
|
|
AP disjoins after client connects to SSID using LDAP with secure mode. |
|
|
The show command for AP tri-radio Feature is not available in Cisco Embedded Wireless Controller on Catalyst Access Points. |
|
|
Cisco Aironet 2800 AP: Wpa2-psk-aes WLAN client is getting disturbed when AP moves from flex. |
|
|
Spectrum intelligence interference detected by AP is not seen on the controller. |
|
|
Small VM install of controller loses its management trustpoint after every reboot. |
|
|
AP is not rejecting incorrect Fast Transition Auth request. |
|
|
AP is not sending reassociation response. |
|
|
Controller is showing incorrect AP cisco discovery protocol (CDP) information. |
|
|
Cisco Embedded Wireless Controller on Catalyst Access Points: AP image predownload status is empty for most of the APs. |
|
|
Cisco Aironet 3800h AP: Jitter issue with MS-Teams application. |
|
|
Cisco Catalyst 9105 AP: LED is turned off by default. |
|
|
Last switchover reason is shown as active unit removed during ISSU upgrade. |
|
|
Private Pre-Shared-Key (PSK) Pairwise Master Key (PMK) is retained resulting in client delete. Controller is crashing with scaled PPSK join. |
|
|
Cisco DNA-Centre: When AP fails to pre-download image; further attempts to pre-download are getting stuck. |
Resolved Caveats for Cisco IOS XE Amsterdam 17.3.8a
|
Identifier |
Headline |
|---|---|
|
Cisco IOS XE Software Web UI Privilege Escalation Vulnerability. For more information, see Security Advisory: cisco-sa-iosxe-webui-privesc-j22SaA4z. |
Resolved Caveats for Cisco IOS XE Amsterdam 17.3.8
This release comprises only PSIRT fixes. There are no resolved caveats.
Resolved Caveats for Cisco IOS XE Amsterdam 17.3.7
|
Identifier |
Headline |
|---|---|
|
Controller does not remove 802.1X clients after session-timeout. |
|
|
Remote address attribute missing when accessing controller through GUI using TACACS+ credentials. |
|
|
Controller unexpectedly reloads on DMI authentication task with guestshell enabled. |
|
|
Wireless AAA dynamic VLAN assignment: The wireless clients cannot reach each other. |
|
|
Multicast data not sent to clients; some APs may be unable to join the controller. |
|
|
Controller HA dual active scenario is observed when standby controller is reconnecting to HA pair. |
|
|
Controller experiences an unexpected reset resulting in a system report containing a wncd core file. |
|
|
Link connecting the controllers goes down due to local fault. |
|
|
Controller crash is observed on libewlc_client_dpath_svc.so. |
|
|
Cisco Catalyst 9800-L Wireless Controller does not receive HWDIB down message when RP port goes down in HA, preventing WMI from sending GARP. |
|
|
Memory leak is observed in wncd process when under load. |
|
|
AP Join issues due to stale client entries. |
|
|
Controller is accounting wrong class attribute in accounting packets. |
|
|
Clients not deleted by the controller after session-timeout ("Timer not running" state). |
|
|
Inject path crash is observed on controller switch on IPv6_qos. |
|
|
User-agent details needs to be truncated to string length 234 in WSA to prevent vstring corruption. |
|
|
Wired guest client are stuck at IP_LEARN with DHCP packets not forwarded out of the foreign to anchor. |
|
|
Double bit ECC error causes the standby controller to reload. |
|
|
Multiple Cisco Catalyst 9130AXE APs with DART connectors stuck at channel 36. |
|
|
Controller stays in the IP_THEFT state indefinitely due to stale client entries in the ODM database. |
|
|
Controller fails to update DCA channels as RRM is stuck. |
|
|
Controller GUI logging buffer size display is incorrect. |
|
|
Unexpected reload on the controller caused by WNCd process after removing a VLAN from a VLAN-GROUP. |
|
|
SIGSEGV crash is observed when incrementing roaming statistics. |
|
|
Controller crashes due to NetFlow watchdog. Observed CPU hog in the wncmgrd process due to NetFlow scale. |
|
|
Adding static IP MAC binding to device tracking fails. |
|
|
Controller reloads due tomemory corruption when processing DHCP Reply Option82. |
|
|
Standby controller crashes while saving tbl QoS table. |
|
|
Controller sends new Access-Requests using previous packet id. |
|
|
Switch Integrated Security Features (SISF) crash is observed when handling the DHCP messages. |
|
|
WPA3 and OWE transition enabled: Non-WPA3 clients get network access in "webauth-pending" state. |
|
|
PI 3.10.1: Associated APs with controller displays interface mode type as "Half duplex". |
|
|
802.11r re-auth failed due to invalid Pairwise Master Key ID (PMKID) while doing inter-WNCD roaming. |
|
|
CAPWAP wireless traffic is getting the same Security Group Tag (SGT) as the corresponding incoming wired traffic. |
|
|
Controller fails to update AP configuration with error .
% Error: no ap_name exists |
|
|
Cisco Aironet 2700 AP: Ignore CAPWAP_PAYLOAD: AP_LAN_CONFIG payload having invalid RLAN port enable value. |
|
|
Clients are getting deauth immediately after getting IP address in LWA+LocalSW+CentralAuth. |
|
|
Controller does not follow the DCA sensitivity threshold. |
|
|
License: Remove reporting interval (fixed 8 hours) and change Sync report to a user action. |
|
|
Wired clients behind WGB do not get IP addresses for anchor WLAN. |
|
|
Controller does not provide RSSI location data for some of the RFID tags in the database. |
|
|
Access point page shows Power Mode as unknown power. |
|
|
The device-tracking binding reachable-lifetime command does not work. |
|
|
Controller crashes after failing to match the interface ID in the anchor message. |
|
|
Crash is seen on "Critical process rrm fault on rp_0_0 (rc=139)". |
|
|
Controller QoS page does not load when ACL has double quotes as special character in the name. |
|
|
Cisco Aironet 2800, 3800, 4800, 1562, and 6300 series APs: Slow TCP downloads, failing EAP-TLS. |
|
|
AP reloads due to kernel panic. |
|
|
Cisco Wave 2 APs stuck in bootloop due to image checksum verification failure. |
|
|
Cisco Catalyst 9115 AP reports DFS on channels incorrectly: "Blocked list due to be cleared". |
|
|
Cisco Catalyst 9115 AP: Power saving client state on radio. |
|
|
Cisco Catalyst 9105w AP is crashing due to kernel panic. |
|
|
Cisco Catalyst 9105/9115/9120 series APs are unable to handle out of order packets. |
|
|
Cisco Catalyst 9130 AP does not transmit EAP identity request. |
|
|
Radio firmware crashes in Cisco Aironet 1850 Series Access Points. |
|
|
Cisco Catalyst 9124 MAP fails to connect to Cisco Aironet 1562 RAP after first reload of MAP. |
|
|
Cisco Aironet 1840 OEAP crashed due to radio failure. |
|
|
Cisco Catalyst 9120 AP: Radio core dump. |
|
|
Cisco Aironet 4800 AP: Firmware radio crash is observed. |
|
|
Cisco Catalyst 9130 AP sends incorrect channel list on the "out of band" DFS event, causing client connectivity issues. |
|
|
AP WGB stuck in EAPOL state. |
|
|
Cisco Aironet 2802 AP reloads unexpectedly. |
|
|
Cisco Aironet 1815 APs reboot - PC is at edma_poll or LR is at dma_cache_maint_page. |
|
|
Cisco Catalyst 9120, 9115, and 9105 Access Points experience radio firmware crash with Cisco IOS-XE 17.3 or later releases. |
|
|
Cisco Catalyst 9130 Access Point displays different beacon data-rates for different Basic Service Set Identifiers (BSSIDs). |
|
|
Cisco Catalyst 9117 AP reloads unexpectedly due to kernel panic at console_unlock+0x320/0x3ac. |
|
|
EAP-TLS is failing for the wired clients behind MAP for Cisco 2800, 3800, 4800, 1562, 6300 series APs. |
|
|
Cisco Catalyst 9130 AP: Radio 1 is crashing. |
|
|
Cisco Aironet 3802 AP: Kernel crash is observed. |
|
|
Wave 2 APs reloads unexpectedly due to "Systemd critical process crash - dnsmasq-host.service failed" error. |
|
|
Cisco Aironet 3800 series AP reloads unexpectedly due to kernel panic. |
|
|
Cisco Aironet 3800 AP: Radio reloads unexpectedly due to a stuck beacon. |
|
|
Cisco Catalyst 9130 AP radio firmware reloads unexpectedly. |
|
|
Cisco Aironet 1840 OEAP crashes due to radio failure. |
|
|
Cisco Catalyst 9130 AP is not sending EAP_ID_RESP next assoc-req after PMF client tx deauth in middle of EAP handshake. |
|
|
Cisco Catalyst 9115 AP radio 1 crashes. |
|
|
Cisco Wave 2 APs do not encrypt EAP_ID_REQ after M1-M4, and does not update PMKID for dot1x OKC. |
|
|
Cisco Wave 2 APs fail to forward traffic to wireless client for about 60 seconds in SDA Fabric WLANs. |
|
|
Cisco APs such as 2800, 3800, 4800, and 1562 are dropping upstream EAP packets. |
|
|
Cisco Catalyst 9117 AP: Radio firmware crash is observed. |
|
|
Cisco Aironet 3800 Access Points experienceWCPd crash when running 17.3.1 image. |
|
|
Cisco Aironet 2800 and 3800 APs: WGB fails to connect via PEAP if client certificate is not installed. |
|
|
AP drops packets addressed to 10.128.128.127 or 10.128.128.128. |
|
|
Kernel panic crash in Cisco Catalyst 9130AX Series APs. |
|
|
Cisco iOX app installation fails during app activation phase with the following error: "Error while creating app start up script". |
|
|
Cisco Catalyst 9105AXW AP is introducing latency when clients are using RLAN ports. |
|
|
Cisco Aironet 1810W AP: RLAN DHCP issues with certain client models. |
|
|
Log enhancements for off-channel timeout issues. |
|
|
AP is not copying DHCP ACK packets to the controller after enable "cts manual" on the switch. |
|
|
High channel utilization on 5-GHz radio with 40Mhz. |
|
|
Error flooding on Cisco Catalyst 9120 AP console: RHL: Off-channel done received but there are no pending requests. |
|
|
AppHost: App install fails when USB state is disabled in the AP Join profile. |
|
|
Cisco Catalyst 9120 and 9130 APs: Missing CleanAir data for 2.4GHz. |
|
|
Cisco Catalyst 9130 AP unexpectedly reload in run_timer_softirq. |
|
|
Changing an Access Point site or policy tag to a Flex local switching set intermittently causes client connectivity failure to local web auth WLANs. |
|
|
For FlexConnect group configuration, do not use backslash (\) at the end of the radius servers shared secret. |
|
|
Cisco Catalyst 9120 AP shows very high noise level on 5-GHz radio. |
|
|
Enhancements for MAC suspend issue on driver side. |
|
|
Cisco Aironet 1832 AP reloads unexpectedly due to radio recovery failure. |
|
|
Cisco Catalyst 9120 AP: TX is stuck due to data block PS and AP radio crash. |
|
|
Cisco Catalyst 9120 AP cannot operate in Multigigabit Ethernet (mGig) when Energy Efficient Ethernet (EEE) is enabled on switchport. |
|
|
Cisco Catalyst 9120 AP: CleanAir sensor reloads unexpectedly. |
|
|
Cisco Catalyst 9120 AP reloads unexpectedly due to kernel panic. |
|
|
Cisco Catalyst 9105 AP reloads unexpectedly multiple times. |
|
|
Cisco Aironet 3800 AP consistently reports high QBSS load. |
|
|
Cisco Catalyst 9130 AP is dropping EAP-TLS frames. |
|
|
Cisco Catalyst 9120 AP: Kernel panic is observed. |
|
|
Cisco Catalyst 9115 APs intermittently stop transmitting multicast traffic downstream. |
|
|
Wcpd crashes after reusing freed packets. |
|
|
Cisco Aironet 1830 AP: Wireless clients are unable to connect - "writing to fd 27 failed!". |
|
|
Cisco Catalyst 9120 AP reloads unexpectedly due to radio firmware crash. |
|
|
Cisco Catalyst 9130 AP: Kernel panic with filp_close and do_close values. |
|
|
Day 0 factory image for a new out-of-the-box Cisco Catalyst 9130 AP (VID 03) does not contain |
|
|
Remove unnecessary sercomm root certificates from Cisco Wave 2 APs. |
|
|
Cisco Catalyst 9130 APs advertise incorrect Local Power Constraint value in management frames. |
Resolved Caveats for Cisco IOS XE Amsterdam 17.3.6
|
Caveat ID |
Description |
|---|---|
| CSCwa38847 |
Upgrade from the CCO profile fails when a guest account is used. |
|
Cisco Catalyst 9130AX AP experiences high channel utilization and client lags with 9 or more clients using MS Teams. |
|
|
Cisco Catalyst 9130 AP drops packets On-Air for Phoenix WinNonlin application. |
|
|
Cisco Wave 2 APs with RLAN port connected to device running LLDP reboots due to Out-of-Memory. |
|
|
Cisco Catalyst 9117 beacon stuck reloads unexpectedly due to radio failure (radio recovery failed). |
|
|
Cisco Catalyst 9120 AP crashes with null pointer dereference in wlc_wnm_is_wnmsleeping . |
|
|
Cisco Catalyst 9120 AP experiences kernel panic crash. |
|
|
Cisco Catalyst 9120AXI AP: CAPWAPD service failed. |
|
|
Cisco Catalyst 9120 AP running Cisco IOS-XE 17.7.1.11 experiences software crash during the WCPD process. |
|
|
Central Web Authentication (CWA) clients with RUN state cannot go online even though it is in RUN state. |
|
|
Cisco Wave 2 AP disconnects from the controller after a CTS switchport configuration. |
|
|
Cisco Catalyst 9120 AP experiences Kernel crash while bringing up the slot1 radio. |
|
|
Cisco Catalyst 9120 AP does not send multicast data till it snoops IGMPv2. |
|
|
APs detect its own MAC addresses as rogue in slot1 or slot3 intermittently with an empty SSID. |
|
|
Cisco Catalyst 9130 and 9120 APs in FlexConnect mode does not send an SA query. |
|
|
High latency and drops are observed when clients are associated to Cisco Catalyst 9130 AP. |
|
|
Cisco Catalyst 9130 AP reloads unexpectedly with "PC is at run_timer_softirq". |
|
|
Cisco Catalyst 9120 and 9130 APs in FlexConnect mode sends an association request reject message after a first successful connection. |
|
|
Cisco Catalyst 9117 AP reloads unexpectedly due to kernel panic. |
|
|
Cisco Catalyst 9117 AP reloads unexpectedly due to kernel panic. |
|
|
Cisco Catalyst 9117AXI-E AP reports kernel panic crash. |
|
|
Cisco Catalyst 9115AXI-E AP crashes after upgrading to Cisco IOS-XE 17.3.5a. |
|
|
Cisco Catalyst 9115 AP experiences power saving client state in radio. |
|
|
Cisco Catalyst 9130 AP does not process fragmented Extensible Authentication Protocol (EAP) frames from clients, when doing EAP-TLS. |
|
|
Cisco Catalyst 9130 APs generate radio coredumps. |
|
|
Cisco Catalyst 9120 AP does not send A-MPDUs for WPA1 AES clients in WPA1 and WPA2 mixed modes. |
|
|
Cisco Catalyst 9130 AP reloads unexpectedly due to kernel panic. |
|
|
Cisco Catalyst 9115 AP: The Mode reset button does not clear the CC mode and console blocking configuration. |
|
|
Cisco Catalyst 9130 AP experiences kernal crash. |
|
|
Cisco Catalyst 9120 AP stops beaconing. |
|
|
Cisco Catalyst 9120 APs send authentication response frames to clients after long delays. |
|
|
APP hosting segmentation does not work in Cisco Catalyst 9100 AP and Cisco Catalyst 9800 controller running Cisco IOS-XE 17.6.3. |
|
|
Workgroup bridge (WGB) does not support pre-shared key (PSK) with 63 characters. |
|
|
Clients with EAP-TLS behind the Mesh Access Point (MAP) fails. |
|
|
Cisco Catalyst 9105 AP does not respond to the controller's Discovery Response. Error connecting Transport Layer Security (TLS) context is displayed. |
|
|
Cisco Catalyst 9117AX AP radio reloads unexpectedly due to partial command issues. |
|
|
Cisco Catalyst 9120AXI AP sends weaker beacons than Cisco Aironet 2802I AP. |
|
|
Cisco Catalyst 9117AX AP reloads unexpectedly. |
|
|
Cisco Catalyst 9120 AP experiences Kernel crash when PC is at number.isra and LR is at vsnprintf. |
|
|
Cisco Catalyst 9130 AP does not transmit beacons randomly. |
|
|
Incorrect kernel assertion is observed while checking invalid timer objects. |
|
|
Cisco Wave 2 AP looses configuration after an upgrade. |
|
|
Cisco AP reloads unexpectedly with ppr_create_prealloc+0xbc. |
|
|
Cisco Catalyst 9105 AP experiences low throughput with AX clients with adjacent channel interference in 2.4-GHz radio. |
|
|
Cisco Catalyst 9130 AP detects its own BSSID as rogue in a 5-GHz channel. |
|
|
Cisco AP reloads unexpectedly in "wlan_objmgr_peer_release_ref" running Cisco IOS-XE 17.3.5. |
|
|
Cisco Wave 2 APs: CAPWAP MTU flapping occurs due to asymmetric MTU between AP to controller and vice-versa. |
|
|
AP crash is observed due to kernel panic. |
|
|
Cisco Wave 2 APs in local mode sends address resolution protocol (ARP) requests to wireless clients from 10.128.128.128 IP address. |
|
|
Cisco Catalyst 9130 AP experiences kernel panic. |
|
|
Cisco Catalyst 9117 AP reloads unexpectedly due to kernel panic. |
|
|
The config boot crashkernel enable Cisco Wave 2 AP command does not generate kernel core to USB. |
|
|
Assert crash is observed in Cisco Catalyst 9120 AP with MR8. |
|
|
CAPWAP flapping is observed when VRRPv3 is present in the network. |
|
|
APs are unable to join the controller due to invalid path MTU in the AP Join request. |
|
|
Dataplane classification error is observed in WLCLIENT-IF interface. |
|
|
Cisco Catalyst 9105 AP experiences WNCD traceback followed by WNCD crash. |
|
|
The "% TDL error" is displayed while configuring clients under manual exclusion list in Cisco IOS-XE 17.6.1. |
|
|
Cisco Catalyst 9800 Wireless Controller fails to update sdn-network-infra-iwan key after a year. |
|
|
Pubd crash is observed with tdl_get_manifested_type_info_ptr_mem in 200 APs mesh configuration with telemetry subscriptions. |
|
|
Telemetry: Cisco IOS-XE controller crashes after using show telemetry ietf subscription all command. |
|
|
GUI does not load the AVC page from Configuration > Services > AVC. |
|
|
Controller crashes within 10 minutes after starting the pure intra wnc roam at 600 clients per second. |
|
|
Controller rejects clients with wrong PMKID when changing AKM from FT to dot1x and FT again. |
|
|
Controller crashes during webauth AAA routines generating WNCD core. |
|
|
Improve serviceability to figure out the reason for blacklisting 802.11w client. |
|
|
The show commands, HTTPS, and SNMP stops working in Cisco Catalyst 9800-80 Wireless Controller 17.3.5, when DBM process CPU stays high at 100%. |
|
|
WLAN stopped broadcasting after a configuration change in the WLAN profile. |
|
|
Controller crashes at ewlc_wlanmgr_wlan_ref_count_cleanup_timer_cb. |
|
|
Segfault is seen when updating the 802.11 client parameters. |
|
|
Controller displays incorrect available bandwidth calculations for QBSS_AAC with voice CAC and FlexConnect AP. |
|
|
Controller crashes during mobility routines generating WNCD core. |
|
|
Controller deletes the client when DHCP RELEASE is sent by the client during Posture. |
|
|
Controller crashes in WNCD when changing the "mac ip binding" configuration. |
|
|
Controller sends QBSS_AAC with zero available bandwidth after DEL TS. |
|
|
Cisco Catalyst 9800 Wireless Controller related WLAN configuration is not pushed to APs during a specific WNCD. |
|
|
Client gets stuck in Authenticating state after failing the Broadcast key rotation process. |
|
|
High CPU utilization is observed in WNCD due to continuous logs in ra_trace. |
|
|
Clients randomly gets excluded in the Controller with the "CO_CLIENT_DELETE_REASON_EXCLUDE_VLAN_FAIL" reason. |
|
|
AAA server does not mark as UP, even unreachable, and client does not authenticate through the server. |
|
|
Cisco Catalyst 9800-80 Wireless Controller resets unexpectedly while freeing CAPWAP messages. |
|
|
The controller HTTPS access is broken after an upgrade to Cisco IOS-XE 17.3.5a. |
|
|
WNCMGRD process memory leak is observed in Cisco IOS-XE 17.8. |
|
|
Controller deletes clients after roaming with "CO_CLIENT_DELETE_REASON_IP_DOWN_NO_IP" reason. |
|
|
Controller reloads due to critical WNCD fault. |
|
|
Controller initiates EAPOL retries for the client in the RUN state. |
|
|
Clients in the RUN state are unable to pass traffic after Change of Authorization (CoA) is completed. |
|
|
Memory leak is observed in the WNCD process due to unknown responses from the RADIUS server. |
|
|
Cisco Wave 2 APs use native VLAN instead of VLAN used in the Policy Profile. |
|
|
GUI takes a long time to display the initial page due to http request wirelessDeviceSummary. |
|
|
Client traffic fails when client roams between APs with a transition between dot11r and dot11i. |
|
|
Zebra RF Gun clients are unable to get the IP address and gets stuck in IPLEARN STATE. |
|
|
Controller deletes client due to DELETE_REASON_MOBILITY_FAILURE triggered by WEBAUTH_ON_MAB_FAILURE_ROAM. |
|
|
Client fails to connect when protocol based Quality of Service (QoS) is configured. |
|
|
Cisco Catalyst 9800-80 Wireless Controller crashes with a critical process WNCD fault. |
|
|
AP network icon is missing in the 17.5.1 GUI for Privilege Level 1 users instead you get to view the config icon. |
|
|
AP does not assign native VLAN when there is no vlan-id configured in the Policy Profile. |
|
|
"Band Selection" does not change from 2.4-GHz to 5-GHz when performing the operation using 2.4-GHz radios. |
|
|
Controller sends wrong payload information to AP when mesh RRM is enabled or disabled. |
|
|
RADSEC counter always remain zero. |
|
|
Controller crashes with "Critical process nmspd fault on rp_0_0 (rc=1)". |
|
|
ARP Broadcast in GUI is shown as DISABLED for some VLANs even though it is enabled in VLAN configuration. |
|
|
Static workgroup bridge (WGB) client does not move to RUN state in the controller. |
|
|
The controller GUI does not display trustpoints in the PKI Management Trustpoints tab. |
|
|
MAC authentication bypass (MAB) client does not move to exclude state during a MAB failure. |
|
|
Client is unable to pass traffic after roaming using WPA2 Opportunistic Key Caching (OKC). |
|
|
Memory depletion and high WAN latency is observed in FlexConnect deployment. |
|
|
Japanese GUI displays wrong Mesh information. |
|
|
EWC - Image download profile special character support. |
|
|
WNCD process crash is observed when applying Cisco ATF profiles. |
|
|
Ethernet over GRE (EoGRE) client traffic stops working after an SSO. |
|
|
Cisco Catalyst 9800-CL Cloud Wireless Controller crashes after updating the WLAN configuration. |
|
|
Incorrect VLAN is assigned to initiate SIP when SIP and AAA override combination is used. |
|
|
Standby controller crashes when the controller is configured in RMI+RP High Availability mode and wired guest feature. |
|
|
AP XOR radio role mismatch between GUI and CLI. |
|
|
Dropping the packets in Cisco Catalyst 9800-CL Cloud or Cisco Catalyst 9800-L Wireless Controller when the call snooping is enabled and call cannot be established. |
|
|
Controller Web UI does not allow WPA-TKIP only configuration. |
|
|
Controller does not update radio frequency identification (RFID) location properly. |
|
|
Unable to map SSID with spaces in it on an attribute list. |
|
|
WLAN clear refcount command does not accept WLAN names with special characters. |
|
|
Controller discards the location updates from radio frequency identification (RFID) tags. |
|
|
The show process cpu platform sorted command is required in show tech wireless . |
|
|
Stale client entries are not deleted and stuck in device-tracking database. |
|
|
CRL verification failure results in 400 Bad Request with DigiCert. |
|
|
Controller MAC filtering: WLAN profile column displays the WLAN name and description. |
Resolved Caveats for Cisco IOS XE Amsterdam 17.3.5a
|
Caveat ID |
Description |
|---|---|
|
Controller does not send the correct association ID (AID), causing APs to reject new client associations. |
|
|
The controller crashes due to 17.3.4 version to Work Group Bridge (WGB). |
|
|
Cisco Catalyst 9800-80 Wireless Controller crashes on 17.3.4ES9 version. |
|
|
OEAP authentication failure is observed on the controller running 17.3.3EFT4. |
|
|
The request platform software trace archive command throws an error. |
|
|
Cisco Catalyst 9800-80 Wireless Controller crashes due to a CPU hog in the Radio Resource Management (RRM) process. |
|
|
Controller does not send server hello packets to AP when enabling the Data Datagram Transport Layer Security (DTLS) encryption. |
|
|
Controller does not send TCP SYN or ACK for web redirect when banner size is greater than 200 characters. |
|
|
Cisco Catalyst 9800-80 Wireless Controller: Application visibility configuration page does not load when 99 or more policy profiles have the Cisco Application Visibility and Control (AVC) enable. |
|
|
Cisco Wave 2 APs crash due to kernel panic. |
|
|
Crash is observed in the controller when the AP location name is greater than 32 characters. |
|
|
'WNCMGRD' process crashes due to segmentation fault in the controller. |
|
|
Controller drops the incoming CAPWAP keepalive for random APs. |
|
|
A crash is observed when a wireless client attempts to connect and the connection times out. |
|
|
Controller reloads unexpectedly in the dBm process when DBAL batch stops executing. |
|
|
Cisco Catalyst 9130AX AP loses its WLAN configuration after moving between controllers. |
|
|
Memory leak observed in WNCD process running 17.3.3 of around 200MB per day. |
|
|
Controller is missing fields in the access-request when sending it for a sleeping client. |
|
|
Memory leak is observed in EWLC_OPERATIONAL_DB causing dbm crash. |
|
|
Rogue telemetry updates need to be throttled as the controller sends lot of Rogue reports to Cisco DNA Center (DNAC). |
|
|
Crash observed in C9800-80-K9 while the running 17.3.4 version. |
|
|
Client gets stuck in IP learn due to stale entry. |
|
|
Configuration changes in WLAN or policy profile causes Service Set Identifier (SSID) to stop the broadcast. |
|
|
Accounting requests messages sent in a stream causes issues in the RADIUS server. |
|
|
WNCD core seen on 17.3.3 CCO image with assert failures observed. |
|
|
Controller reloaded due to a memory corruption in WNCD. |
|
|
Controller drops CAPWAP connections due to high WNCD CPU. |
|
|
Central DHCP configuration is not propagated on AP correctly. |
|
|
Controller does not remove old NMSP entries when new probes are received in a different slot. |
|
|
Controller crash after AP session closes. |
|
|
Controller crashes due to WNCD process when learning an IP address for a client. |
|
|
Cisco DNA Center experiences performance issue. Controller sends a large number of events for new clients associating with the AP having maximum number of clients. |
|
|
The CleanAir interference devices are not merged in clusters. |
|
|
Cisco Wave 2 APs stop authenticating clients using Flex Local Authentication. |
|
|
FRA change is needed from from the controller. |
|
|
Controller stops accepting APs to join - No response after DTLS Client Hello received from AP. |
|
|
Controller adds universal._sub._ipp and universal._sub._ipps to the default-mdns-service list. |
|
|
Controller performs an unexpected reboot with Network Mobility Services Protocol (NMSP). |
|
|
High CPU provked by "rif_mgr"process. |
|
|
Contoller drops DHCP after reboot. |
|
|
ZTP overwrites http authentication aaa/not applying VTY authorization and accounting settings. |
|
|
The show ap cdp neighbors command displays the name of the switch instead of the domain name. |
|
|
%CRIMSON-3-DATABASE_MEMLEAK: Database memory leak detected in /tmp/rp/tdldb/0/IOS_PRIV_OPER_DB. |
|
|
Datapath state mismatch strands are observed in wireless clients after roaming. |
|
|
AP Tag summary page shows incorrect status in the RF section. |
|
|
Wireless controller is unable to use the wireless broadcast vlan command. |
|
|
AP authorization related RADIUS request does not include the calling station ID and NAS port type. |
|
|
Switch stack with Cisco IOS XE 17.3.2a displays high memory alerts. |
|
|
Controller crashes when running the clear wlan id command. |
|
|
DCA channel Dwell Times gets updated even when there is no channel change seen on the AP. |
|
|
Memory leak is observed in emulated database and AP join. |
|
|
Client location probe displays error when probe request parsing fails. |
|
|
FT IE is sent as 0 in M3 after session timeout. |
|
|
Memory leak is observed in C9800-CL due to native telemetry. |
|
|
Controller sends an extra accounting interim update to AAA when client re-associates to same BSSID. |
|
|
FlexConnect roaming issue occurs due to PMKID mismatch at controller. |
|
|
Controller GUI does not delete the hotspot configuration correctly. |
|
|
MAC Address entry not saved on the GUI when mapped to WLAN profile with spaces. |
|
|
Controller needs cleanup of client entry authentication when client is in RUN state on any controller in the network. |
|
|
Controller does not present full certificate in web admin. |
|
|
Need to increase the install CLI timeout of the controller from 60 minutes to 120 minutes. |
|
|
The Timezone configuration in the GUI does not work. The 'show clock' displays incorrect timezone. |
|
|
AP channel width configuration from GUI is not taking effect but displays successful message. |
|
|
Vendor OUI mismatch prints wrong message for disassociation request and denying client association. |
|
|
Cisco Catalyst 9120 APs running 17.3.4ES2 gets stuck and does not acknowledge any of the received frames. |
|
|
Cisco Catalyst 9120 APs cannot send acknowledgement over the air during EAP negotiation. |
|
|
Cisco Wave 2 APs detect its own BSSID as rogue. |
|
|
Increased ping loss after two days of reboot. |
|
|
Cisco Catalyst 9130 AP stale clients in the radio driver table causes associations to fail. |
|
|
Cisco Catalyst 9120AXI AP displays kernel panic in Cisco IOS XE 17.3.4.30. |
|
|
802.11r retried auth packet forwarded to the controller causes duplicate auth responses sent to client. |
|
|
Cisco Wave 2 AP's fragmenting CAPWAP discovery packets are unable to join the controller. |
|
|
Cisco Catalyst 9120 Series AP sends packets with QoS TID when WMM is disabled on WLAN. |
|
|
Cisco Catalyst 9130 Series AP crashes on Cisco IOS XE 17.3.4 CCO version. |
|
|
Cisco Catalyst 9120AXI-B APs crash when joining Cisco Catalyst 9800-CL wireless controllers running Cisco IOS XE 17.6.1. |
|
|
Cisco Catalyst 9120 Series AP in FlexConnect mode drops ARP request from the client to the gateway after a WLAN change (Local to Central). |
|
|
Cisco Catalyst 9115 Series AP experiences crash due to kernel panic PC. |
|
|
Cisco Catalyst 9120 Series AP - NDP received frames from neighbour AP with RSSI that is lower than the configured RxSOP. |
|
|
Cisco Catalyst 9130Series APs crash after upgrading to 17.3.4 and applying the ESW7 image. |
|
|
PSM microcode watchdog fired (in seconds) with Cisco Catalyst 9120 Series APs. |
|
| Cisco Catalyst 9120 Series APs not responding to client association requests. | |
|
Cisco Catalyst 9120 Series APs - Change parameter under WLAN resets Cisco Catalyst 9120 Series AP radio. |
|
|
Cisco Catalyst 9120 Series AP - PS PRETEND changes the client to Power Save mode even when the client is replying to QoS Null sent by the AP. |
|
|
Cisco Catalyst 9120 Series AP radio 1 gets stuck in TX. |
|
|
Cisco Catalyst 9120 Series AP kernel crash. |
|
|
Cisco Catalyst 9120 Series APs show high client count while the neighboring APs have very few clients associated. |
|
|
Cisco Catalyst 9120 Series AP randomly retains 11w client though it is deleted from the controller. |
|
|
Cisco Wave 2 APs and 11AX APs syslog only seen when using the "Kern" facility value in AP join profile. |
|
| Cisco DNA Center Assurance's Client 360 window shows the wireless client SNR value as 0 for Cisco Catalyst 9115 Series APs and Cisco Catalyst 9120 Series APs. | |
|
Cisco Catalyst 9130 Series AP experiences radio firmware crash on Radio 1, multiple times in a day. |
|
|
Cisco Catalyst 9120 Series AP stops transmitting to MacBook after a session re-authentication. |
|
|
Cisco Catalyst 9130 Series AP crashes due to kernel panic after N+1 failover or fallback. |
|
|
Workgroup bridge (WGB) cannot associate when PSK password contains special characters. |
|
|
Connected AP with non-EWC image undergoes factory reset after reload when DHCP option 43 is set. |
|
|
Cisco Catalyst 9130AXI AP cannot connect to the controller after shut or no shut on a Cisco Catalyst 9300 Series (C9300-48H) switch interface. |
|
|
Cisco Catalyst 9120 Series AP FW crash is observed in Radio 1. |
|
|
Opportunistic Key Caching (OKC) is not pushed from the controller to the AP when applied in the CLI. |
|
|
Cisco Wave 2 AP probe filter to limit unwanted probes from the AP to the controller does not work. |
|
|
Cisco Catalyst 9120AXE AP displays incorrect PID and description for Self Identifying Antenna. |
|
|
When the AP is disassociated due to link failure, AP reports the reason as 'AP crash'. |
|
|
Cisco Catalyst 9130 Series APs unexpectedly reboot due to kernel panic. |
|
|
Cisco Catalyst 9120 Series APs reload unexpectedly due to kernel panic on 2.4-GHz band. |
|
|
Cisco Catalyst 9130 Series APs: Radio operates on channel 128 and publishes in channel 56. |
|
|
Cisco Catalyst 9120 Series APs in monitor mode cannot update the neighbor list causing false honeypot alarms. |
|
|
Cisco Catalyst 9130 Series AP crashes due to radio failure (too many radio failures). |
|
|
APs make too many connections to Identitymgmt causing Cisco DNA Center Identitymgmt to crash. |
|
|
Cisco Catalyst 9130 Series AP unexpectedly reloads with a kernel panic. |
|
|
Cisco Catalyst 9115 Series AP crashes due to kernel panic - not syncing: Fatal exception. |
|
|
Cisco Catalyst 9120 Series AP drops CAPWAP connection when running a debug client. |
|
|
AP crashes at FW assert at ar_wal_peer.c:1553. |
|
|
Cisco Catalyst 9130 Series AP crashes: KP at dp_rx_frag_handle+0x8c/0x8e0 [wifi_3_0]. |
Resolved Caveats for Cisco IOS XE Amsterdam 17.3.4c
|
Caveat ID |
Description |
|---|---|
|
Cisco Catalyst 9120 APs unable to send acknowledgement over the air during EAP negotiation. |
|
|
Cisco Catalyst 9800-80 Wireless Controller crashes due to a CPU hog in the RRM process. |
|
| Controller drops the incoming CAPWAP keepalive for random APs. | |
|
Controller reloads unexpectedly in the dbm process when DBAL batch stops executing. |
|
|
Memory leak is observed in EWLC_OPERATIONAL_DB causing dbm crash. |
|
| CSCvz45576 |
Rogue telemetry updates need to be throttled as the controller sends lot of rogue reports to Cisco DNAC. |
|
Cisco Catalyst 9130 AP crashes on 17.3.4 CCO version. |
|
|
Configuration changes in WLAN or policy profile causes SSID to stop broadcasting. |
|
|
Accounting Requests messages sent in a stream causes issues in the RADIUS server. |
|
|
Cisco Catalyst 9130 APs crashes after upgrading to 17.3.4 and applying the ESW7 image. |
|
|
Datapath state mismatch strands are observed in wireless clients, after roaming. |
|
|
Cisco Catalyst 9130 APs unexpectedly reboot due to kernel panic. |
|
|
Cisco Catalyst 9120 AP reloads unexpectedly due to kernel panic on 2.4-GHz band. |
|
|
Cisco Catalyst 9130 AP: Radio operates in channel 128 and publishes in channel 56. |
|
|
Controller sends an extra accounting interim update to AAA when client re-associates to same the BSSID. |
|
|
Cisco Catalyst 9130 AP unexpectedly reloads with a kernel panic. |
Resolved Caveats for Cisco IOS XE Amsterdam 17.3.4
|
Caveat ID |
Description |
|---|---|
|
Transmission problems in 2.4GHz for Cisco Catalyst 9105AX Series Access Points, 9115 Series APs, and 9120AX Series APs. |
|
|
WNCd process reloads unexpectedly due to Traffic Distribution Statistics. |
|
|
Cisco Catalyst 9105AX Series Access Points image is not available on Cisco Catalyst 9500 switch running EWC 17.3.2a. |
|
|
Transmission power levels do not change in Cisco Catalyst 9105AX Series Access Points, when the power levels are changed on the 2.4 GHz channel. |
|
|
In the FlexConnect mode, during central auth + local switching, 802.11w clients disjoin during the transition from Standalone to Connected. |
|
|
Clients cannot connect to Cisco Catalyst 9115 Access Points due to transmission error on the radio. |
|
|
Microcode crash is observed on Cisco Catalyst 9115 Access Points, when Spectrum Intelligence is enabled. |
|
|
When non-Fast Transition clients roam around APs, incorrect accounting stop class attribute is observed. |
|
| CSCvx17425 |
Multiple Dynamic Frequency Selection (DFS) events are observed in Cisco Catalyst 9115 Series APs. |
|
Cisco Catalyst 9120AX Series APs send reassembled fragmented packets in the uplink direction. |
|
|
Cisco Catalyst 9120 Series AP beacon gets stuck after moving from channel UNII 1 to UNII 2. |
|
|
Cisco Catalyst 9800-CL Wireless Controller displays Neighbor APs as Rogue APs on the 2.4 Ghz band. |
|
|
Central Web Authentication clients are not moved back to Web Authentication after CoA re-authentication is sent, when the client is in the RUN state. |
|
|
Cisco Catalyst APs disconnect after SSO, when CAPWAP multi-window feature is enabled. |
|
|
Controller reloads with the message "Critical process wncd fault on rp_0_0 (rc=139)". |
|
| 802.11r retried authentication packet forwarded to controller, causes duplicate authentication responses sent to the client. | |
|
Cisco Catalyst 9130 Series APs - Clients get stuck in the Authenticating state after multiple roams post upgrade from 17.2.1 to 17.3.2a. |
|
|
Cisco Catalyst 9120AX AP stops allowing new associations on any of the configured SSIDs. |
|
|
FlexConnect central authentication 11r client roaming fails after controllers were upgraded. |
|
|
Cisco Catalyst 9115AX Series APs crash frequently on 17.3.3. |
|
|
Cisco Catalyst 9120 APs drop downstream packets of workgroup bridge (WGB) clients. |
|
|
Static IP address does not change when IP failover is toggled. |
|
|
Cisco Catalyst 9800 Series Wireless Controller ends abnormally due to WNCd (AP name length greater than and equal to 32 characters). |
|
|
Cisco Catalyst 9115AX APs running on 17.3.3.26 esc image, crashes. |
|
|
Roaming clients fail in the Extensible Authentication Protocol (EAP) process due to incorrect destination MAC address on EAP Response. |
|
|
Cisco Catalyst 9120 APs and 9105 APs unexpectedly reload during regular operation, due to kernel panic error. |
|
|
Cisco Catalyst 9800-40 Wireless Controller running 17.3.2 EWA configuration - ACLs are lost after changing from HTTP or HTTPS server configuration from the GUI. |
|
|
Cisco Catalyst 9800 Series Wireless Controller ends abnormally for Switch Integrated Security Features (SISF) heap pointer to l2_socket_counter record. |
|
|
Cisco Wave 2 APs sends duplicate association response in FlexConnect central authentication. |
|
|
AAA or RADIUS must fragment packets to the required size based on the Maximum Transmission Unit (MTU) settings. |
|
|
Cisco Catalyst 9130 AP - Facing latency issues during high QoS Basic Service Set (QBSS). |
|
|
Cisco Digital Network Architecture (DNA) Center Assurance Client 360 page displays the wireless client's Signal-to-Noise Ratio (SNR) value as 0. |
|
|
Cisco Catalyst 9120 AP detects its own BSSID as Rogue in 2.4Ghz channel. |
|
|
The client data rate is displayed incorrectly on the GUI and CLI. |
|
|
Cisco Catalyst 9800 Series Wireless Controller GUI does not display all locations configured in the Wireless setup. |
|
|
Cisco Catalyst 9800 Wireless Controller with PMF Optional, protects management frames for NON-PMF clients. |
|
|
The following error message was displayed in the Cisco Catalyst 9115 AP and 9120 AP logs: /sys/class/thermal/thermal_zone0/temp failed [2]: No such file or directory. |
|
|
Unable to enable AP admin on Cisco Catalyst 9800 Series Wireless Controller GUI. Admin rights can be enabled only through CLI commands. |
|
|
Transmission power discrepancies observed in Cisco Catalyst 9130AX Series APs and 9117AX Series APs. |
|
|
Cisco Catalyst 9130 AP Trace prints junk characters. |
|
|
Cisco Catalyst 9130AX AP not forwarding M1 responses over the air. |
|
|
In FlexConnect, when VLAN tagging and ARP-caching are enabled, the host does not receive the ARP response. |
|
|
AP joins the secondary controller instead of the primary-base controller. |
|
|
Ignore false positive reports managed by local or other controllers in the mobility group. |
|
| NSS deadlock issue causes Cisco Catalyst 9130 AP to crash. | |
|
Cisco Catalyst 9130 APs are crashing on 17.3.2a build. |
|
|
Cisco Catalyst 9130 AP - Clients with only 2.4GHz, cannot connect to WLAN with band select enabled and broadcast SSID disabled. |
|
|
Cisco Catalyst 9130 AP fails to send reassociation response to roaming clients randomly, and deletes the client. |
|
| The allowed VLANs in an interface cannot be modified or viewed in the controller GUI. | |
|
Cisco Catalyst 9130 AP radio crashes when running wifistats on the devshell command. |
|
|
WNCD table records that are in "Pending Destroy" state are not being cleared up. |
|
|
The tags on the AP are lost after the second reboot or CAPWAP restart. |
|
|
Cisco Catalyst 9800 Series Wireless Controller does not send the CAPWAP restart payload when filter is applied and the AP name is changed. |
Resolved Caveats for Cisco IOS XE Amsterdam 17.3.3
|
Caveat ID |
Description |
|---|---|
|
Unexpected AP reload: AP crashes with Kernel Panic. |
|
|
OBSS-PD configuration from WebUI does not get pushed to APs mapped to the RF profile. |
|
|
Clients unable to connect to C9115 due to persistent Tx Error on Radio (CS00011211267). |
|
|
RF tag power settings in Cisco Catalyst 9130AXE AP does not work on Slot 2. |
|
|
Cisco Catalyst 9130AX AP drops packets: AP unable to push packets to the Click module. |
|
|
Cisco Catalyst 9120 Series AP crashes after upgrade from Cisco IOS XE 17.3.1 to Cisco IOS XE 17.3.2a. |
|
|
Cisco Catalyst 9115 Series and 9120 Series APs use the wrong TID when responding to Block Acknowledgement Requests. |
|
|
Cisco Catalyst 9130AX AP tri-radio enabled by manual dual-radio assignment mode disables High Efficiency on Slot1. |
Resolved Caveats for Cisco IOS XE Amsterdam 17.3.2a
|
Caveat ID |
Description |
|---|---|
| Max Transmit Power Level is set to 128 dBm in Country IE. | |
| AP PnP does not try to sync time with public NTP server. | |
| IP address of configured nameserver seen flipped on controller after AP tears-down the connection. | |
| Webauth redirect URL is getting looped for the client. | |
| AP marks the Wi-Fi Multimedia (WMM) UP value as 0 despite receiving DSCP value as 46 (EF). | |
| AP should reject incorrect fast transition authentication requests. | |
| AP is not sending re-association response. | |
| Client association fails when changing the connected WLAN from 802.1X WLAN to PSK+MAC filtering WLAN. | |
| Cisco Catalyst 9130AX Series Access Point: Multicast traffic failures are observed after Group Transient Key (GTK) key index rotation for Vocera clients. | |
| Client moves to RUN state without Extensible Authentication Protocol (EAP). | |
| Cisco Embedded Wireless Controller: WPA3 SAE does not work. | |
| Flex Opportunistic Key Caching (OKC) roam M1 is not sent out. | |
| Cisco Catalyst 9105, 9115, and 9120 Access Points starts beaconing during the Call Admission Control (CAC) time on Dynamic Frequency Selection (DFS) channel if 802.11h is disabled on the controller | |
| Cisco Catalyst 9105, 9115, and 9120 Access Points: APs unexpectedly experience "assert" kernel panics, when Target Wait Time is enabled. | |
| Cisco Catalyst 9120 Access Point is crashing with the following message: + assert:\"dma_txactive(di) == 0\" failed: file \"wlc_tx.c:13678\". | |
| Pixel client de-authenticates as NO ARP responses are received during NUD checks to Virtual Router Redundancy Protocol (VRRP) gateway. | |
| Cisco Catalyst 9130 Access Point: Scale performance is worse than Cisco Catalyst 9120 APs with less than sixty active clients. | |
| Cisco Catalyst 9120 Access Point crashes due to station data base entry becoming NULL. | |
|
Cisco Catalyst 9115AX Access Point unexpectedly reloads. |
|
|
Cisco Catalyst 9120 Access Point is crashing unexpectedly: assert:\"0\" failed: file \"wlc_amsdu.c:4709\". |
|
|
AP performs DHCP reset after 5 failed attempts of CAPWAP Discovery, but still responds to subsequent pings. |
Resolved Caveats for Cisco IOS XE Amsterdam 17.3.1
|
Caveat ID |
Description |
|---|---|
|
Cisco Aironet 3700 AP series reloads unexpectedly. |
|
|
High Availability fails to initialize NVRAM after multiple power cycles. |
|
|
IPv6 dual stack is not working. |
|
|
Cisco Aironet 3800 AP: Manufacturing Installed Certificate (MIC) errors observed for Cisco Centralized Key Management (CCKM) roams in FlexConnect local switch mode. |
|
|
btman process at 100% while running show tech command. |
|
|
WNCd unexpectedly reboots after association failure. |
|
|
AP Ethernet link flaps at 5G speed due to Fast Retrain failure. |
|
|
Cisco Catalyst 9120AXI AP unexpectedly reloads with watchdog or grpc_server tainted. |
|
|
Controller with more than 4000 APs in one site-tag (not default-site) is not allowing to do AP configuration changes. |
|
|
Cisco Catalyst 9115AX AP: Rogue containment is not working when AP is in monitor mode. |
|
|
-Q domain APs in Japan are advertising J4 as the country in beacon, instead of JP. |
|
|
Controller crashes on receiving username with 246 characters on the third attempt. |
|
|
Control packets are not honoring mobility Path MTU Discovery. |
|
|
WNCd process goes down due to assert for basic SSID (BSSID) magic check. |
|
|
WNCd crash is observed with roaming of long duration fabric clients. |
|
|
Controller crashes when a 11r client tries to perform over-the-air or over-the-ds roam. |
|
|
Multicast replicates over CAPWAP when global multicast is disabled. |
|
|
Client gets excluded after VLAN changes following the machine and user authentication. |
|
|
The show tech wireless command output is showing incomplete information for the sub-commands: show ap auto-rf dot11 5ghz and show ap auto-rf dot11 2. |
|
|
Controller unexpectedly reloads when an AP joins and does not report the correct radios. |
|
|
The Cisco Catalyst 9800-80 HA cluster crashes frequently. |
|
|
Controller is not allowing Wi-Fi Protected Access (WPA)/Temporal Key Integrity Protocol (TKIP) only configuration. |
|
|
Cisco Catalyst 9130 AP: Channel/Mode mismatch between WCP and WLAN driver. |
|
|
Client is unable to associate due to DOT11_STATUS_DENIED_RATES when extended rates are used. |
|
|
Cisco Wave 2 APs: EAP-PEAP (Protected Extensible Authentication Protocol) flex-auth fails occasionally because of low EAP timeout. |
|
|
Clients are assigned to native VLAN instead of client VLAN. |
|
|
Controller crashes due to AP with the same name and different existing radio mac. |
|
|
Address Resolution Protocol (ARP) handling allows for the ARP entry to be removed for a wireless DHCP client. |
|
|
Cisco Catalyst 9130 AP: Cisco OfficeExtend access point (OEAP) GUI is not accessible. |
|
|
Controller crashes on Wi-Fi Multimedia (WMM) action, while roaming. |
|
|
Cisco Catalyst 9800-L Controller goes administratively down after a reload following factory reset using CLI. |
|
|
Memory leak is observed under process SACRcvWQWrk2 when Smart Licensing is enabled. |
|
|
Controller crash is observed in CPP (data path). |
|
|
Cisco Catalyst 9800-80 Controller crashes with SIGSEGV while removing timer RB tree color. |
|
|
Controller crash is observed during WNCd process. |
|
|
Controller is not honoring timezone when configuring dynamic channel allocation (DCA) anchortime. |
|
|
Controller is not sending SNMP trap when AP is reset using GUI or CLI. |
|
|
Cisco Catalyst 9800-L-C fails to install authorization code due to NO_AUTH_CODE_FOUND. |
|
|
Improve the show wireless stats loadbalance summary command. |
|
|
The show wlan client stats command output shows wrong WLAN with similar WLAN name on special conditions. |
|
|
Client count shows zero for the show ap dot11 5ghz/2.4ghz load-info command output when Coverage Hole Detection (CHD) is disabled. |
|
|
Global AP pre-image download is not working. |
|
|
Frequent channel changes observed on the Cisco Aironet 4800 AP slot 0 radio while using 5 GHz. |
|
|
Upgrading to Cisco IOS XE 16.12.2s deletes WLAN to policy profile mapping under default-policy-tag. |
|
|
Support tspec processing when voice acm is disabled or with no tgr tspec. |
|
|
Cisco Wave 1 APs: Client traffic is stuck after client is in RUN state for Central Web Authentication (CWA) or Local Web Authentication (LWA). |
|
|
Cisco Catalyst 9800-CL Controller is unable to display medium power when AP sends a 25W message. |
|
|
Guest anchor fails to load balance clients across anchors. |
|
|
Cisco Catalyst 9120AX AP is not use the correct datarates. |
|
|
Cannot remove AdvIPServices license. |
|
|
UDP Port 5246 based Access Control List (ACL) filter fails to select Datagram Transport Layer Security (DTLS) encrypted CAPWAP control packets. |
|
|
Current Tx rate for 802.11AX clients is displayed incorrectly. |
|
|
Controller crashes with the following reason: \Critical process cpp_cp_svr fault on fp_0_0 (rc=134)\. |
|
|
The factory-reset all command deletes the actual image when controller is in install mode. |
|
|
Roaming is not successful when NAC is enabled in the policy profile. |
|
|
Ethernet over GRE (EoGRE) tunnel is not copying Differentiated Services Code Point (DSCP) from inner payload IP header on injected packet. |
|
|
Cisco Aironet 3700 AP is unable to join controller as the VLAN interface name exceeds character limit in flex profile. |
|
|
Authentication fails for some clients, when local authentication is configured in the policy profile. |
|
|
Cisco Catalyst 9117AX AP: 802.1x authentication is not working for clients. |
|
|
Various models of Android 10 devices fail to associate. |
|
|
AP uses non-allowed channel on dual radio when change setting to 5 GHz. |
Troubleshooting
For the most up-to-date, detailed troubleshooting information, visit the Cisco TAC website at:
https://www.cisco.com/en/US/support/index.html
Go to Product Support and select your product from the list, or enter the name of your product. Look under Troubleshoot and Alerts to find information about the problem that you are experiencing.
Related Documentation
Information about Cisco IOS XE is available at:
https://www.cisco.com/c/en/us/products/ios-nx-os-software/ios-xe/index.html
All the support documentation for Cisco Catalyst 9100 Access Points are available at: https://www.cisco.com/c/en/us/support/wireless/catalyst-9100ax-access-points/tsd-products-support-series-home.html
Cisco Validated Designs documents are available at:
https://www.cisco.com/go/designzone
Cisco Embedded Wireless Controller on Catalyst Access Points
For support information, see the following documents:
-
Cisco Embedded Wireless Controller on Catalyst Access Points Software Configuration Guide
-
Cisco Embedded Wireless Controller on Catalyst Access Points Command Reference Guide
Installation guides for Catalyst Access Points are available at:
For all Cisco Wireless Controller software-related documentation, see:
Wireless Products Comparison
-
Use this tool to compare the specifications of Cisco wireless APs and controllers:
https://www.cisco.com/c/en/us/products/wireless/wireless-lan-controller/product-comparison.html
-
Product Approval Status:
-
Wireless LAN Compliance Lookup:
https://www.cisco.com/c/dam/assets/prod/wireless/wireless-compliance-tool/index.html
Cisco Access Points–Statement of Volatility
The STATEMENT OF VOLATILITY is an engineering document that provides information about the device, the location of its memory components, and the methods for clearing device memory. Refer to the data security policies and practices of your organization and take the necessary steps required to protect your devices or network environment.
The Cisco Aironet and Catalyst AP Statement of Volatility (SoV) documents are available on Cisco Trust Portal at https://trustportal.cisco.com/c/r/ctp/trust-portal.html#/.
You can search by the AP model to view the SoV document.
Cisco Connected Mobile Experiences
Cisco DNA Center
Communications, Services, and Additional Information
-
To receive timely, relevant information from Cisco, sign up at Cisco Profile Manager.
-
To get the business impact you’re looking for with the technologies that matter, visit Cisco Services.
-
To submit a service request, visit Cisco Support.
-
To discover and browse secure, validated enterprise-class apps, products, solutions and services, visit Cisco Marketplace.
-
To obtain general networking, training, and certification titles, visit Cisco Press.
-
To find warranty information for a specific product or product family, access Cisco Warranty Finder.
Cisco Bug Search Tool
Cisco Bug Search Tool (BST) is a web-based tool that acts as a gateway to the Cisco bug tracking system that maintains a comprehensive list of defects and vulnerabilities in Cisco products and software. BST provides you with detailed defect information about your products and software.
Feedback