About the Release Notes

This release notes document describes what is new or changed in this release, instructions to upgrade to this release, and open and resolved caveats for this release. Unless otherwise noted, in this document, Cisco Wireless Controllers are referred to as controllers, and Cisco lightweight access points are referred to as access points or APs.

Content Hub

Explore the Content Hub, the all-new product documentation portal in which you can use faceted search to locate content that is most relevant to you, create customized PDFs for ready reference, benefit from context-based recommendations, and much more.

Get started with the Content Hub at https://content.cisco.com/ to craft a personalized documentation experience.

Do provide feedback about your experience with the Content Hub.

Revision History

Table 1. Revision History

Modification Date

Modification Details

October 05, 2020

Removed references to the Bluetooth Low Energy (BLE) USB Dongle feature in the What's New in Release 8.8.120.0 section.

July 02, 2019

Included Release 8.8.125.0

  • Updated Open Caveats

  • Updated Resolved Caveats

Supported Cisco Wireless Controller Platforms

The following Cisco Wireless Controller platforms are supported in this release:

  • Cisco 3504 Wireless Controller

  • Cisco 5520 Wireless Controller

  • Cisco 8540 Wireless Controller

  • Cisco Virtual Wireless Controller (vWLC) on the following platforms:

    • VMware vSphere Hypervisor (ESXi) Version 5.x and 6.x

    • Hyper-V on Microsoft Servers 2012 and later versions (Support introduced in Release 8.4)

    • Kernel-based virtual machine (KVM) (Support introduced in Release 8.1. After KVM is deployed, we recommend that you do not downgrade to a Cisco Wireless release that is earlier than Release 8.1.)

  • Cisco Wireless Controllers for High Availability for Cisco 3504 WLC, Cisco 5520 WLC, and Cisco 8540 WLC.

  • Cisco Mobility Express Solution

Supported Cisco Access Point Platforms

The following Cisco AP platforms are supported in this release:

  • Cisco Aironet 700 Series Access Points

  • Cisco Aironet 700W Series Access Points

  • Cisco AP803 Integrated Access Point

  • Integrated Access Point on Cisco 1100, 1101, and 1109 Integrated Services Routers

  • Cisco Aironet 1700 Series Access Points

  • Cisco Aironet 1800 Series Access Points

  • Cisco Aironet 1810 Series OfficeExtend Access Points

  • Cisco Aironet 1810W Series Access Points

  • Cisco Aironet 1815 Series Access Points

  • Cisco Aironet 1830 Series Access Points

  • Cisco Aironet 1850 Series Access Points

  • Cisco Aironet 2700 Series Access Points

  • Cisco Aironet 2800 Series Access Points

  • Cisco Aironet 3700 Series Access Points

  • Cisco Aironet 3800 Series Access Points

  • Cisco Aironet 4800 Series Access Points

  • Cisco ASA 5506W-AP702

  • Cisco Aironet 1530 Series Access Points

  • Cisco Aironet 1540 Series Access Points

  • Cisco Aironet 1560 Series Access Points

  • Cisco Aironet 1570 Series Access Points

  • Cisco Industrial Wireless 3700 Series Access Points


Note


For information about Cisco Wireless software releases that support specific Cisco access point modules, see the "Software Release Support for Specific Access Point Modules" section in the Cisco Wireless Solutions Software Compatibility Matrix document.

What's New in Release 8.8.120.0

This section provides a brief introduction to the new features and enhancements that are introduced in this release.


Note

For complete listing of all the documentation published for Cisco Wireless Release 8.8, see the Documentation Roadmap:

https://www.cisco.com/c/en/us/td/docs/wireless/doc-roadmap/doc-roadmap-release-88.html


Support for –P Domain for Cisco Wireless LAN Solutions

The Cisco Wireless LAN Solution supports –P domain for Japan.

For the current approvals and regulatory domain information see https://www.cisco.com/c/dam/assets/prod/wireless/wireless-compliance-tool/index.html


Caution

Cisco 3802P -Q Japan domain access points fail to join the Cisco controller running 8.8.111.0 or 8.8.120.0 release software. For more information, see CSCvp05117. For further assistance with this issue contact Cisco Technical Assistance Center (TAC).


Support for Workgroup Bridges (WGB) on Cisco Wave 2 Access Points

In this release, Cisco Wave 2 APs can operate as Workgroup Bridges. The following Wave 2 APs support the WGB mode:

  • Cisco Aironet 2800 Series Access Points

  • Cisco Aironet 3800 Series Access Points

  • Cisco Aironet 1560 Series Access Points

For more information, see the Cisco Wave 2 Access Points as Workgroup Bridges section in the Cisco Wireless Controller Configuration Guide.

Software Release Types and Recommendations

Table 2. Release Types

Release Type

Description

Benefit

Maintenance Deployment (MD)

Software releases that provide bug-fix support and ongoing software maintenance. These releases are categorized as Maintenance Deployment (MD).

These releases are long-living releases with ongoing software maintenance.

Provides you with a software release that offers stability and long support duration with periodic maintenance releases (MRs).

Early Deployment (ED)

Software releases that provide new features and new hardware platform support in addition to bug fixes. These releases are categorized as Early Deployment (ED).

These releases are short-lived releases.

Allows you to deploy the latest features and new hardware platforms or modules.

For detailed release recommendations, see the Guidelines for Cisco Wireless Software Release Migration Bulletin at:

http://www.cisco.com/c/en/us/products/collateral/wireless/8500-series-wireless-controllers/bulletin-c25-730741.html.

Table 3. Upgrade Path to Cisco Wireless Release 8.8.x

Current Software Release

Upgrade Path to Release 8.8.x

8.2.x

You must upgrade to an 8.5.x release and then upgrade to Release 8.8.x.

8.3.x

You must upgrade to an 8.5.x release and then upgrade to Release 8.8.x.

8.4.x

You must upgrade to an 8.5.x release and then upgrade to Release 8.8.x.

8.5.x

You can upgrade directly to Release 8.8.x.

8.6.x

You can upgrade directly to Release 8.8.x.

8.7.x

You can upgrade directly to Release 8.8.x.

Upgrading Cisco Wireless Release

This section describes the guidelines and limitations that you must be aware of when you are upgrading the Cisco Wireless release and the procedure to upgrade.


Caution

Before you upgrade to this release, we recommend that you go through the following documents to understand various issues related to Cisco Wave 1 AP flash and the solution to address them:


Guidelines and Limitations

  • Legacy clients that require RC4 or 3DES encryption types are not supported in Local EAP authentication.

  • If you downgrade from Release 8.8.x to Release 8.7, FlexConnect IPv6 ACLs are shown to be in their FlexConnect group.

  • If you have an AVC profile with default-class setting and you downgrade from Release 8.8.x to an earlier release, the default-class setting is still present in the controller, although the earlier releases do not support this setting.

  • If you want to downgrade from Release 8.8.x to Release 8.6.101.0 and if you have Wave 2 APs in Flex+Bridge mode, ensure that these APs are changed to Bridge mode before you perform the downgrade; else, the APs will have incorrect configuration after the downgrade process.

  • If you downgrade to Release 8.0.140.0 or 8.0.15x.0, and later upgrade to a later release and and also have the multiple country code feature configured, then the configuration file could get corrupted. When you try to upgrade to a later release, special characters are added in the country list causing issues when loading the configuation. For more information, see CSCve41740.


    Note

    Upgrade and downgrade between other releases does not result in this issue.
  • After downloading the new software to the Cisco APs, it is possible that a Cisco AP may get stuck in an upgrading image state. In such a scenario, it might be necessary to forcefully reboot the controller to download a new controller software image or to reboot the controller after the download of the new controller software image. You can forcefully reboot the controller by entering the reset system forced command.

  • It is not possible to download some of the older configurations from the controller because of the Multicast and IP address validations. See the "Restrictions on Configuring Multicast Mode" section in the Cisco Wireless Controller Configuration Guide for detailed information about platform support for global multicast and multicast mode.

  • When a client sends an HTTP request, the controller intercepts it for redirection to the login page. If the HTTP GET request that is intercepted by the controller is longer than 2000 bytes, the controller drops the packet. Track the Caveat ID CSCuy81133 for a possible enhancement to address this restriction.

  • When downgrading from one release to an earlier release, you might lose the configuration from your current release. The workaround is to reload the previous controller configuration files that are saved in the backup server, or to reconfigure the controller.

  • When you upgrade controller to an intermediate release, wait until all the APs that are associated with the controller are upgraded to the intermediate release before you install the latest controller software. In large networks, it can take some time to download the software on each AP.

  • You can upgrade to a new release of the controller software or downgrade to an earlier release even if FIPS is enabled.

  • When you upgrade to the latest software release, the software on the APs associated with the controller is also automatically upgraded. When an AP is loading software, each of its LEDs blinks in succession.

  • Controllers support standard SNMP MIB files. MIBs can be downloaded from the software download page on Cisco.com.

  • The controller software that is factory-installed on your controller and is automatically downloaded to the APs after a release upgrade and whenever an AP joins a controller. We recommend that you install the latest software version available for maximum operational benefit.

  • Ensure that you have a TFTP, HTTP, FTP, or SFTP server available for the software upgrade. Follow these guidelines when setting up a server:

    • Ensure that your TFTP server supports files that are larger than the size of controller software image. Some TFTP servers that support files of this size are tftpd32 and the TFTP server within Cisco Prime Infrastructure. If you attempt to download the controller software image and your TFTP server does not support files of this size, the following error message appears:

      TFTP failure while storing in flash

    • If you are upgrading through the distribution system network port, the TFTP or FTP server can be on the same subnet or a different subnet because the distribution system port is routable.

  • The controller Bootloader stores a copy of the active primary image and the backup image. If the primary image becomes corrupted, you can use the Bootloader to boot with the backup image.

    With the backup image stored before rebooting, from the Boot Options menu, choose Option 2: Run Backup Image to boot from the backup image. Then, upgrade with a known working image and reboot controller.

  • You can control the addresses that are sent in the Control and Provisioning of Wireless Access Points (CAPWAP) discovery responses when NAT is enabled on the Management Interface, using the following command:

    config network ap-discovery nat-ip-only {enable | disable}

    The following are the details of the command:

    enable —Enables use of NAT IP only in a discovery response. This is the default. Use this command if all the APs are outside the NAT gateway.

    disable —Enables use of both NAT IP and non-NAT IP in a discovery response. Use this command if APs are on the inside and outside the NAT gateway, for example, Local Mode and OfficeExtend APs are on the same controller.


    Note

    To avoid stranding of APs, you must disable AP link latency (if enabled) before you use the disable option in the config network ap-discovery nat-ip-only command. To disable AP link latency, use the config ap link-latency disable all command.


  • Do not power down controller or any AP during the upgrade process. If you do this, the software image might get corrupted. Upgrading controller with a large number of APs can take as long as 30 minutes, depending on the size of your network. However, with the increased number of concurrent AP upgrades supported, the upgrade time should be significantly reduced. The APs must remain powered, and controller must not be reset during this time.

  • After you perform the following functions on controller, reboot it for the changes to take effect:

    • Enable or disable LAG.

    • Enable a feature that is dependent on certificates (such as HTTPS and web authentication).

    • Add a new license or modify an existing license .


      Note

      Reboot is not required if you are using Right-to-Use licenses.


    • Increase the priority of a license.

    • Enable HA.

    • Install the SSL certificate.

    • Configure the database size.

    • Install the vendor-device certificate.

    • Download the CA certificate.

    • Upload the configuration file.

    • Install the Web Authentication certificate.

    • Make changes to the management interface or the virtual interface.

  • From Release 8.3 or a later release, ensure that the configuration file that you back up does not contain the < or > special characters. If either of the special characters is present, the download of the backed up configuration file fails.

Upgrading Cisco Wireless Software (GUI)

Procedure


Step 1

Upload your controller configuration files to a server to back up the configuration files.

Note 

We highly recommend that you back up your controller configuration files prior to upgrading the controller software.

Step 2

Follow these steps to obtain controller software:

  1. Browse to the Software Download portal at: https://software.cisco.com/download/home.

  2. Search for the controller model.

  3. Click Wireless LAN Controller Software.

  4. The software releases are labeled as described here to help you determine which release to download. Click a controller software release number:

    • Early Deployment (ED)—These software releases provide new features and new hardware platform support as well as bug fixes.

    • Maintenance Deployment (MD)—These software releases provide bug fixes and ongoing software maintenance.

    • Deferred (DF)—These software releases have been deferred. We recommend that you migrate to an upgraded release.

  5. Click the filename <filename.aes>.

  6. Click Download.

  7. Read the Cisco End User Software License Agreement and click Agree.

  8. Save the file to your hard drive.

  9. Repeat steps a through h to download the remaining file.

Step 3

Copy the controller software file <filename.aes> to the default directory on your TFTP, FTP, or SFTP server.

Step 4

(Optional) Disable the controller 802.11 networks.

Note 

For busy networks, controllers on high utilization, and small controller platforms, we recommend that you disable the 802.11 networks as a precautionary measure.

Step 5

Choose Commands > Download File to open the Download File to Controller page.

Step 6

From the File Type drop-down list, choose Code.

Step 7

From the Transfer Mode drop-down list, choose TFTP, FTP, or SFTP.

Step 8

In the IP Address field, enter the IP address of the TFTP, FTP, or SFTP server.

Step 9

If you are using a TFTP server, the default value of 10 retries for the Maximum Retries field, and 6 seconds for the Timeout field should work correctly without any adjustment. However, you can change these values, if required. To do so, enter the maximum number of times the TFTP server attempts to download the software in the Maximum Retries field and the amount of time (in seconds) for which the TFTP server attempts to download the software, in the Timeout field.

Step 10

In the File Path field, enter the directory path of the software.

Step 11

In the File Name field, enter the name of the software file <filename.aes>.

Step 12

If you are using an FTP server, perform these steps:

  1. In the Server Login Username field, enter the username with which to log on to the FTP server.

  2. In the Server Login Password field, enter the password with which to log on to the FTP server.

  3. In the Server Port Number field, enter the port number on the FTP server through which the download occurs. The default value is 21.

Step 13

Click Download to download the software to the controller.

A message indicating the status of the download is displayed.

Note 

Ensure that you choose the File Type as Code for both the images.

Step 14

After the download is complete, click Reboot.

Step 15

If you are prompted to save your changes, click Save and Reboot.

Step 16

Click OK to confirm your decision to reboot the controller.

Step 17

If you have disabled the 802.11 networks, reenable them.

Step 18

(Optional) To verify that the controller software is installed on your controller, on the controller GUI, click Monitor and view the Software Version field under Controller Summary.


CIMC Utility Upgrade for 5520 and 8540 Controllers

The AIR-CT5520-K9 and AIR-CT8540-K9 controller models are based on Cisco UCS server C series, C220 and C240 M4 respectively. These controller models have CIMC utility that can edit or monitor low-level physical parts such as power, memory, disks, fan, temperature, and provide remote console access to the controllers.

We recommend that you upgrade the CIMC utility to Version 3.0(4d) that has been certified to be used with these controllers. Controllers that have older versions of CIMC installed are susceptible to rebooting without being able to access FlexFlash, with the result that the manufacturing certificates are unavailable, and thus SSH and HTTPS connections will fail, and access points will be unable to join. See: CSCvo33873.

The CIMC 3.0(4d) images are available at the following locations

Table 4. CIMC Utility Software Image Information

Controller

Link to Download the CIMC Utility Software Image

Cisco 5520 Wireless Controller

https://software.cisco.com/download/home/286281345/type/283850974/release/3.0%25284d%2529

Cisco 8540 Wireless Controller

https://software.cisco.com/download/home/286281356/type/283850974/release/3.0%25284d%2529

For information about upgrading the CIMC utility, see the "Updating the Firmware on Cisco UCS C-Series Servers" chapter in the Cisco Host Upgrade Utility 3.0 User Guide:

https://www.cisco.com/c/en/us/td/docs/unified_computing/ucs/c/sw/lomug/2-0-x/3_0/b_huu_3_0_1/b_huu_2_0_13_chapter_011.html

Updating Firmware Using the Update All Option

This section mentions specific details when using CIMC utility with Cisco 5520 or 8540 controllers. For general information about the software and UCS chassis, see Release Notes for Cisco UCS C-Series Software, Release 3.0(4) at:

https://www.cisco.com/c/en/us/td/docs/unified_computing/ucs/release/notes/b_UCS_C-Series_Release_Notes_3_0_4.html

Table 5. Open Caveats for Release 3.0(4d)

Caveat ID

Description

CSCvj80941

After upgrading CIMC to 3.04d, only after power reset, UCS-based controller is coming up.

CSCvj80915

Not able to logon to the CIMC GUI with the username and password that are configured from the controller.

Table 6. Resolved Caveats for Release 3.0(4d)

Caveat ID

Description

CSCvd86049

Symptom: The system will stop working or reboot during OS operation with PROCHOT, MEMHOT, and DMI Timeout-related events reported in the System Event Log (SEL).

Conditions: C220-M4 or C240-M4

Workaround: No workaround is available.

This bug fix changes the default BIOS option for ASPM (Active State Power Management) from 'L1 only' to 'Disabled', and the ASPM setting can no longer be modified. This change was made to help increase system stability and eliminate some system crash scenarios.

CSCvf78458

Symptom: The system will stop working or reboot during OS operation with PROCHOT, MEMHOT, and DMI Timeout-related events reported in the System Event Log (SEL).

Conditions: C220-M4 or C240-M4

Workaround: No workaround is available.

This bug fix changes the BIOS option "Package C-State limit" default value from C6 Retention to C0/C1 to help increase system stability and eliminate some crash scenarios.

Once upgraded, reset the BIOS settings to default or manually change Package C-State limit to C0/C1.

Interoperability with Other Clients

This section describes the interoperability of controller software with other client devices.

The following table describes the configuration used for testing the client devices.

Table 7. Test Bed Configuration for Interoperability

Hardware or Software Parameter

Hardware or Software Configuration Type

Release

8.8.x.

Cisco Wireless Controller

Cisco 5520 Wireless Controller

Access Points

AIR-CAP3802E-B-K9, AIR-AP1852E-B-K9

Radio

802.11ac, 802.11a, 802.11g, 802.11n (2.4 GHz or 5 GHz)

Security

Open, PSK (WPA-TKIP-WPA2-AES), 802.1X (WPA-TKIP-WPA2-AES) (EAP-FAST, EAP-TLS)

RADIUS

Cisco ACS 5.3, Cisco ISE 2.2, Cisco ISE 2.3

Types of tests

Connectivity, traffic (ICMP), and roaming between two APs

The following table lists the client types on which the tests were conducted. Client types included laptops, handheld devices, phones, and printers.

Table 8. Client Types

Client Type and Name

Driver / Software Version

Laptops

Acer Aspire 15 Windows 8 Home Qc Atheros Qca9377 11.0.0.492
Acer Aspire E15 Windows 8 Qc Atheros Qca9377 15.1.1.1
Acer Aspire E 15 Windows 8.1 QC Atheros Qca9377 11.0.0.492
Acer Aspire E15 Windows 8.1 Pro Qc Atheros Qca9377 11.0.0.492
Dell Inspiron 15 7569 Windows 10 Home Ntel Ac 3165 18.32.0.5
Dell Latitude 6430 Windows 8.1 Pro Intel 6205w8 15.16.0.2
Dell Latitude E5430 Windows 7 Intel Centrino N 6205 15.17.0.1
Dell Latitude E5450 Windows 7 Professional Intel 7260 18.33.6.2
Dell Latitude E5540 Windows 7 Intel Dualband Ac7260 1.566.0.0
Dell Latitude E6430 Windows 7 Professional Intel Centrino Ultn6300 15.9.2.1
Dell Latitude E6430 Windows 7 Professional Intel 6250 15.11.0.7
Dell Latitude E6430 Windows 7 Professional Intel 3160 6.30.223.215
Dell Latitude E7450 Windows 7 Professional Broadcom 1560 15.1.1.1
Dell Latitude Windows 8.1 Pro Intel Ac7260 18.33.3.2
Fujitsu Lifebook E556 Windows 10 Pro Intel 8260 11.0.0.492
Lenovo Yoga 460 Windows 10 Pro Intel Ac8260 19.1.0.4
Macbook Air Mac OS Sierra 10.12.3 Broadcom Bcm43xx 1.0 6.30.225.29.1
Macbook Air Macos Sierra 10.12.6 Broadcom Bcm43xx 1.0 7.21.171.68.1a4
Macbook Air OS X Yosemite (10.10.5) Broadcom Bcm43xx 1.0 7.15.166.24.3
Macbook Mac OS Sierra 10.12 Beta Broadcom Bcm43xx 1.0 7.21.149.34.1a7
Macbook Pro Mac OS Sierra 10.12.4 Broadcom Bcm43xx 1.0 7.21.171.68.1a4
Macbook Pro OS X 10.8.5 Broadcom Bcm43xx 1.0 5.106.98.100.17
Macbook Pro Retina Mac OS Sierra 10.12.3 Broadcom Bcm43xx 1.0 7.15.166.24.3

Tablets

Apple iPad iOS 9.3.1
Apple iPad mini iOS 12.0
Apple iPad mini 2 iOS 10.3.1
Apple iPad Air iOS 10.1.1
Apple iPad Air 2 iOS 10.2.1

Mobile Phones

Apple iPhone 4S iOS 8.0
Apple iPhone 5 iOS 10.3.1
Apple iPhone 5C iOS 9.3.2
Apple iPhone 6 Plus iOS 12.0
Apple iPhone SE iOS 10.3.1
AT100 Toshiba Android 4.0.4
Cisco 7925G-EX CP7925G-1.4.8.4.LOADS
Cisco 7926G CP7925G-1.4.8.4.LOADS
Cisco 8821 sip8821.11-0-4-14
ET1 Android VERSION 2.3.4
ET5 Android 5.1.1
LG-D855 LG Android 5.0
Mediapad X1 7.0 Huawei Android 4.4.2
Moto X 2nd Gen Motorola Android 5.0
One Plus One One Plus Android 4.3
One Plus Three One Plus Android 6.0.1
Samsung Galaxy S4 Samsung Android 4.2.2
Samsung Galaxy S4 Samsung Android 5.0.1
Samsung Galaxy S6 Samsung Android 7.0
Samsung Galaxy S6 Samsung Android 6.0.1
Samsung Galaxy S8 Samsung Android 7.0
Samsung Tab Pro Samsung Android 4.4.2
SM-P600 Samsung Android 4.4.2
SM-T520 Samsung Android 4.4.2
TC510K Zebra Android 6.0.1
TC8000 Zebra Android 4.4.3
8742 Spectralink Android 5.1.1
8744 Spectralink Android 5.1.1 2.5.0

Key Features Not Supported in Cisco WLC Platforms

This section lists the features that are not supported on various Cisco WLC platforms:


Note

In a converged access environment that has Cisco WLCs running AireOS code, High Availability Client SSO and native IPv6 are not supported.


Key Features Not Supported in Cisco 3504 WLC

  • Cisco WLAN Express Setup Over-the-Air Provisioning

  • Mobility controller functionality in converged access mode

  • VPN Termination (such as IPsec and L2TP)

Key Features Not Supported in Cisco 5520 and 8540 WLCs

  • Internal DHCP Server

  • Mobility controller functionality in converged access mode

  • VPN termination (such as IPsec and L2TP)

  • Fragmented pings on any interface

Key Features Not Supported in Cisco Virtual WLC

  • Cisco Umbrella

  • Software-defined access

  • Domain-based ACLs

  • Internal DHCP server

  • Cisco TrustSec

  • Access points in local mode

  • Mobility or Guest Anchor role

  • Wired Guest

  • Multicast


    Note

    FlexConnect locally switched multicast traffic is bridged transparently for both wired and wireless on the same VLAN. FlexConnect APs do not limit traffic based on IGMP or MLD snooping.


  • FlexConnect central switching in large-scale deployments


    Note

    • FlexConnect central switching is supported in only small-scale deployments, wherein the total traffic on Cisco WLC ports is not more than 500 Mbps.

    • FlexConnect local switching is supported.


  • Central switching on Microsoft Hyper-V deployments

  • AP and Client SSO in High Availability

  • PMIPv6

  • Datagram Transport Layer Security (DTLS)

  • EoGRE (Supported only in local switching mode)

  • Workgroup bridges

  • Client downstream rate limiting for central switching

  • SHA2 certificates

  • Cisco WLC integration with Lync SDN API

  • Cisco OfficeExtend Access Points

Key Features Not Supported in Access Point Platforms

This section lists the features that are not supported on various Cisco Aironet AP platforms:

Key Features Not Supported in Cisco Aironet 1800i, 1810 OEAP, 1810W, 1815, 1830, 1850, 2800, 3800, and 4800 Series APs

For detailed information about feature support on Cisco Aironet Wave 2 APs, see:

https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/8-7/b_feature_matrix_for_802_11ac_wave2_access_points.html.

Table 9. Key Features Not Supported in Cisco Aironet 1800i, 1810 OEAP, 1810W, 1815, 1830, 1850, 2800, 3800, and 4800 Series APs

Operational Modes

  • Autonomous Bridge mode

  • Mesh mode

  • LAG behind NAT or PAT environment

Protocols

  • Full Cisco Compatible Extensions (CCX) support

  • Rogue Location Discovery Protocol (RLDP)

  • Telnet

  • Internet Group Management Protocol (IGMP)v3

Security

  • CKIP, CMIC, and LEAP with Dynamic WEP

  • Static WEP for CKIP

  • WPA2 + TKIP

    Note 
    WPA +TKIP and TKIP + AES protocols are supported.

Quality of Service

Cisco Air Time Fairness (ATF)

FlexConnect Features

  • Split Tunneling

  • PPPoE

  • Multicast to Unicast (MC2UC)

    Note 

    VideoStream is supported

  • Traffic Specification (TSpec)

    • Cisco Compatible eXtensions (CCX)

    • Call Admission Control (CAC)

  • VSA/Realm Match Authentication

  • SIP snooping with FlexConnect in local switching mode


Note

For Cisco Aironet 1850 Series AP technical specifications with details on currently supported features, see the Cisco Aironet 1850 Series Access Points Data Sheet.


Key Features Not Supported in Cisco Aironet 1800i, 1810 OEAP, and 1810W Series APs

Table 10. Key Features Not Supported in Cisco Aironet 1800i, 1810 OEAP and 1810W Series APs

Operational Modes

  • Workgroup Bridge (WGB) mode

  • Mobility Express

FlexConnect Features

Local AP authentication

Location Services

Data RSSI (Fast Locate)

Key Features Not Supported in Cisco Aironet 1830, 1850, and 1815 Series APs

Table 11. Key Features Not Supported in Cisco Aironet 1830, 1850, and 1815 Series APs

Operational Modes

  • Workgroup Bridge (WGB) mode

  • Mobility Express is not supported in Cisco 1815t APs.

FlexConnect Features

Local AP Authentication

Location Services

Data RSSI (Fast Locate)

Key Features Not Supported in Mesh Networks

  • Load-based call admission control (CAC). Mesh networks support only bandwidth-based CAC or static CAC

  • High availability (Fast heartbeat and primary discovery join timer)

  • AP acting as supplicant with EAP-FASTv1 and 802.1X authentication

  • AP join priority (Mesh APs have a fixed priority)

  • Location-based services

Key Features Not Supported in Cisco Aironet 1540 Mesh APs

  • Dynamic Mesh backhaul data rate.


    Note

    We recommend that you keep the Bridge data rate of the AP as auto.


  • Background scanning

  • Noise-tolerant fast convergence

Key Features Not Supported on Cisco Aironet 1560 APs

  • MAC Authentication FlexConnect Local Authentication

  • Noise-tolerant fast convergence

  • Static WEP

Caveats

Open Caveats

Table 12. Open Caveats for Release 8.8.125.0

Caveat ID Number

Description

CSCvk57014

AP: Sometimes creates empty radio core files without any information

CSCvm63736

Erratic multicast throughput

CSCvn87656

Cisco Wave 2 APs reloads unexpectedly in the context of vendor driver @ click_packet_type_event_hook

CSCvo51266

EAP TLS failure with WGB

CSCvo59784

AP usage shows discrepancy through pages

CSCvp43376

IP Phone cannot associate after modify WLAN configure/profile, delete client, idle timeout etc.

CSCvp68494

Cisco 2800 AP reloads unexpectedly due to exception when having MU-MIMO clients in network

Table 13. Open Caveats for Release 8.8.120.0

Caveat ID Number

Description

CSCvb70551

Cisco Wave 2 APs reboot due to kernel panic-not syncing: Out of Memory

CSCvg50680

Cisco 3800/2802/1562 AP still advertise RSN IE after WLAN is changed to OPEN

CSCvg96533

Cisco 3800, 2800 APs FIQ/NMI reset

CSCvi02106

Cisco 2800, 3800, 1560 APs: when connected to a Cisco Switch CDP-4-DUPLEX_MISMATCH log is seen

CSCvi10888

Intermittently stops transmitting Beacon for 12 and 85 seconds

CSCvj30568

Cisco 1832 AP stopped working due to beacon stuck

CSCvj79841

Cisco 3802 AP unexpected reboot

CSCvj81526

AP name is "AP0000.0000.0000" on new/factory reset APs

CSCvk42225

Max client reached on AP. Sending association response failure with reason code 17

CSCvm11861

Cisco Wave 2 APs FIQ/NMI reloads unexpectedly on the radio driver

CSCvm13837

vWLC reloads unexpectedly while fetching memory statistics during longevity run

CSCvm33978

Apple iPad devices are getting profiled as Apple device

CSCvm58235

Cisco 2802E AP with DART connector - custom RF profile not always applied properly to XOR

CSCvm63975

WLC loses config if specific countries are enabled together

CSCvm65411

Cisco 2700 AP radio resets with FC71 code

CSCvm68341

Cisco controller is sending duplicate interim accounting packets to ISE

CSCvm72007

Incorrect VLAN mapping when using MAC filtering and PSK

CSCvm81901

Cisco 3800 AP does not acknowledge the client frames

CSCvn14292

Cisco 3800 AP reloads unexpectedly on 8.2.170.2

CSCvn15777

Cisco 5508 WLC reloads unexpectedly with high CPU util on emWeb process

CSCvn37957

WLC FTIE not saved sending Association Response FT 802.11r

CSCvn41324

Standby WLC keeps unjoined AP statistics entry even if statistics is cleared on Active WLC

CSCvn43971

AAA override pmk-cache can result in unwanted L3 inter-controller roaming

CSCvn48626

CAP1552H 15.3(3)JD6 Autonomous Status LED not lighting. It is unlit (Off).

CSCvn56211

Cisco 702W AP radio resets, tracebacks and other radio buffer errors

CSCvn57308

WLC/AP do not send M1 message to clients

CSCvn59061

Cisco 8510 controller on on 8.3.141.10 DP crash at broffu_fp_dapi_cmd.c:4588

CSCvn59160

WLC logs "NMSP cloud service update. Received CMX service Link Check" even when CMX is not used

CSCvn62176

Cisco 3802 series APs unable to associate clients when using UNII-1 Channels

CSCvn89221

Unable to add netuser. Error message displayed - User already exists in the list of Management users

CSCvo09245

WLC sends incomplete Accouting packets using client's MAC as username after Flexconnect AP failover

CSCvo18656

Several AP configurations are changed after switchover

CSCvo18663

'Native VLAN Inheritance' is changed after controller switchover

CSCvo24010

2.4 GHz Rogue clients stay in containment pending

CSCvo37232

WLC - certain WLANs configuration is not listed in 'show run-config'

CSCvo42865

Cisco controller reloads unexpectedly at task "TransferTask" while uploading WebAdmin certificate

CSCvo55603

Cisco 4800 series access points not requesting UPoE power when connected to Cisco 94xx switch.

CSCvo64729

vWLC on Microsoft Hyper-V not passing centrally switched traffic

CSCvo74306

Cisco 1815W APs: Per-user BW contract not working with web policy

CSCvo84924

Cisco Wave 2 AP unexpectedly reloads frequently after upgrading to 8.8.111.0

CSCvo87763

Cisco 1815 ME AP dropping DHCP behind RLAN

CSCvo89811

WLC CLI : Index 4 is missing in "config ap ethernet "

CSCvo90764

AP4800: AP recurrent unexpected reloads found in multiple places

CSCvo94878

Cisco Wave 2 APs: Reloads unexpectedly when PC is at find_get_entries+0x64/0x15c

CSCvp01439

Cisco 1815 AP leaking RLAN VLAN traffic when port looped

CSCvp05117

P-Q domain Wave 2 APs cannot join the controller and the AP reloads unexpectedly

Resolved Caveats

Table 14. Resolved Caveats in Release 8.8.125.0

Caveat ID Number

Description

CSCvj69298

Data Plane reloads unexpectedly due to RPE/Double bit errors

CSCvj79841

Cisco 3802 AP reboots unexpectedly

CSCvk79765

apstatEngineMsgQ MSGQ_RUNNING_HIGH or MSGQ_SEND_FAILED Queue Utilization Issues

CSCvk79850

Extend 'config flexconnect arp-cache' CLI support to fabric AP

CSCvm18273

Handling of Cisco 702W AP reloads due to memory limitation from 8.5release and other memleak fixes

CSCvm65360

Cisco controller redirects to internal webauth login page after successful external webauth login

CSCvm81901

Cisco 3800 AP does not acknowledge the client frames

CSCvm88213

Cisco Wave 2 APs do not forward DHCP Offer OTA to TKIP client

CSCvm91854

Cisco 8540 controller becomes inaccessible with systemDb corruption

CSCvn53435

C3702AP on 8.5.140.0: %DOT11-2-RADIO_RX_BUF: 1E72C72C leads to unexpected reloads with reason 44

CSCvo28124

Local switching WLANs is changed to central switching in some scenarios

CSCvp05117

P-Q domain Wave 2 APs cannot join the controller and the AP reloads unexpectedly

CSCvp05891

In AP SSO, FT 802.1x/PSK auth break in Flex Wave 2 AP when mobility MAC different from burned in MAC

CSCvp26465

Cisco AireOS HA: The mobility hash keys are not getting synced UP in AireOS

CSCvp35686

Cisco 5508/ 5520 controller running 8.5.140.0 dropping all wireless clients

CSCvp36540

Cisco 2802, 3802 APs: System memory is running low

CSCvp49290

Cisco 5520 controller running 8.8 release: LSC device certificate cannot be installed

CSCvp52994

WLC fails to learn AAA VLAN, fails to send Central Switched VLAN on second Add mobile

CSCvp57188

Cisco 4800 AP: memory leak in kmalloc-512 and kmalloc-1024 in 8.8.X.X code

CSCvp64806

AP reloads due to power fluctuations when connected to CAT9400 switches.

CSCvp71391

WLC lobby ambassador GUI become unresponsive with Form submit action failed due to Cross Site Attack

CSCvp73499

Cisco 3800 AP transmits ACK at lower RSSI

CSCvp91931

702 AP as WGB keeps sending a new association req every 7 seconds when connected to 2800, 3800 APs

Table 15. Resolved Caveats for 8.8.120.0

Caveat ID Number

Description

CSCvi06408

Wave 1 AP failed to send DHCP packet to wired side under VLAN Override

CSCvi77141

HA_send_usmDbSpamSetRadSlotBand, ErrType:Apply Config failed on Standby

CSCvi82746

Cisco controller reloads unexpectedly with Task Name SISF BT Process

CSCvi84734

Cisco 702w AP: client intermittently cannot connect- decrypt errors

CSCvj48316

AP3700: process "QoS stats process" causes unexpected reloads

CSCvj72136

Cisco 2800, 3800 APs loose its ability to reach the default gateway

CSCvj80129

Cisco Wave 2 AP uses invalid CAPWAP-Data keep-alive source port

CSCvj97430

Mobility Express AP - Loop detected that causes AP reboot

CSCvj97602

WLC Client RSSI and SNR values to be updated as part of Assoc & reassoc request processing

CSCvk00885

DHCP Address Assignment gets disabled after any sucessive WLAN config in WLC GUI

CSCvk36887

Some clients cannot associate because their entry is not getting deleted at the WLC.

CSCvk41603

WLC - Unable to add/delete DCA channels in RF-Profile while Channel width configured as 80 MHz.

CSCvk68688

Client traffic seen on the 5508 Standby Hot WLC causing MAC flapping on switch

CSCvk76386

Reaper Reset due to too much CPU while SW Watchdog is disabled - various processes

CSCvk79597

Frequent DFS detection

CSCvm11060

WLC: After soft-roam of client, client is not able to see new Apple TV from associated AP-Grp VLAN

CSCvm51648

Cisco WLC open auth guest clients unable to pass traffic and PEM state struck in STATICIP_NOL3SEC

CSCvm54487

WLC sends Accounting Start without Framed-IP-address while WLAN has DHCP required

CSCvm62619

Cisco controller reloads unexpectedly with task emweb after 'debug flexconnect' command is typed

CSCvm65858

2800 APs using Flexible Radio Assignment has admin status and clean air status down

CSCvm69246

Cisco controller applying wrong interface policy to re-associated client after SSO

CSCvm73244

AP3800 in sniffer mode not capturing ACK,RTS in 8.7 and 8.8 CSCvf74377

CSCvm80592

Cisco 2800 AP reloads unexpectedly with ERROR TAMD device 'ap-tam' heartbeat failure

CSCvm83223

AP1832: Kernel panic: PC is at _raw_spin_lock+0x44/0x84

CSCvm84941

Cisco 1600, 1700 APs: memory leak due to packets accumulation

CSCvm90337

Cisco 18xx APs unexpectedly reload due to 'radio failure(radio recovery failed)'

CSCvn03560

Decrypt errors seen on Cisco 702 AP

CSCvn03915

After controller upgrades it reloads unexpectedly due to kernel panic

CSCvn04046

Cisco 2800,3800 AP does not map the DSCP to the correct WMM UP Value for FlexConnect Local Switching

CSCvn05881

Cisco Phone 8821 has roaming issues with 2802/3802 access points MIC mismatch

CSCvn07126

Cisco FlexConnect - Cisco 2802 AP's lowers the priority UP on QoS on the downlink transmit

CSCvn11947

Cisco 1815w:RLAN port traffic will get stuck at TX direction after end device restarts several times

CSCvn13314

Cisco 2802, 3802 APs: Default SSID "IP Cheetah" broadcasted during AP boot up

CSCvn17267

702AP: WGB is disconnectig from root AP 'parent lost: Too many retries' RTS when root AP is offchanl

CSCvn18615

APs could not authenticate with ISE 2.5.0.311 when EAP method is set as EAP-FAST

CSCvn20446

Wireless client moves from local switching SSID to central switching SSID DHCP traffic gets dropped

CSCvn23565

Cisco 702w AP enables POE in LAN 4 before joining Cisco controller after reboot

CSCvn25524

Cisco 5520, 8540 controllers: Throughput is low with Port 2 with 1 Gig SFP

CSCvn27111

Cisco WLC on 8.8.114.54 reloads unexpectedly due "pmalloc detected memory corruption spamAP Task4"

CSCvn27144

Unable to restore 802.11ac MCS parameter

CSCvn27902

%SAFEC-3-SAFEC_ERROR observed while decoding iPSK key from RADIUS

CSCvn32314

Cisco 2800 AP on 8.8.114.54 reloads unexpectedly due to WCPD

CSCvn42184

Cisco 1562 ME WLC Console is flooded with "/usr/sbin/nginx-helper: line 115: retry++: not found" msg

CSCvn47094

CLI not taking all the commands sent via "paste" action

CSCvn49888

Cisco 702, 1532 AP has tracebacks and beacons stuck with load 8.5.140.0

CSCvn50968

Invalid web-auth https-redirect command in startup-config

CSCvn53514

AP Syslog Facility does not work on IOS AP

CSCvn54782

IGMP snooping needs to be enabled for Local Mode Local switching RLAN

CSCvn55904

WLC modified FlexACLs rules are not populated on the Flex AP

CSCvn61436

Cisco 5520 controller reloads unexpectedly on taskname : NFV9_Task

CSCvn66293

3802 AP relays CDP Packets from wireless devices using Cisco IP Communicator to the switch

CSCvn66715

3800 AP stops passing traffic under client with Intel NIC 8260/8265 load in MU-MIMO deployment

CSCvn68423

Passive client config is lost upon WLC Reload or HA failover

CSCvn68501

WLC LSC : Device certificate can't be installed and showing as "Not Present"

CSCvn68752

Cisco 1542/1562 APs Failed to get ARP entry for WLC

CSCvn71004

WLC Mbuf allocation problem / Mbuf Max reached

CSCvn98214

Cisco 1830 AP: core-radio1FW found during WGB association, WGB did not join

CSCvn98598

FT 802.1X clients cannot authenticate after ME primary AP / N+1 WLC failover

CSCvo04251

dot1x_aaa_eapresp_supp: sending MDNS request to ISE flooding when running "debug client [macaddr]"

CSCvo05093

Cisco controller reloads unexpectedly with task name radiusTransportThread

CSCvo06832

Sensor test failed using Open as well as EAP authentication

CSCvo41016

Cisco controller reloads unexpectedly when adding 4096 bit key size device cert for LSC

CSCvo48759

AP deauths associated clients with reason code 7, Class 3 frame received from nonassociated STA

CSCvo60307

Cisco controller reloads unexpectedly at Client Profiler Task

CSCvo71753

AP side: Multicast Traffic stops working when enabling Inline Tagging on CTS

Communications, Services, and Additional Information

  • To receive timely, relevant information from Cisco, sign up at Cisco Profile Manager.

  • To get the business impact you’re looking for with the technologies that matter, visit Cisco Services.

  • To submit a service request, visit Cisco Support.

  • To discover and browse secure, validated enterprise-class apps, products, solutions and services, visit Cisco Marketplace.

  • To obtain general networking, training, and certification titles, visit Cisco Press.

  • To find warranty information for a specific product or product family, access Cisco Warranty Finder.

Cisco Bug Search Tool

Cisco Bug Search Tool (BST) is a web-based tool that acts as a gateway to the Cisco bug tracking system that maintains a comprehensive list of defects and vulnerabilities in Cisco products and software. BST provides you with detailed defect information about your products and software.