This one goes out to my library people who need to report unique clients by location to Uncle Sam in order to get paid. If you can get a data dump of your Wi-Fi stats that include all connected client MAC addresses you can use Microsoft Excel on Windows & PowerPivot table tools to create a report of what you need.
Many libraries across the nation chose Aerohive and HiveManager Classic for this very reason. Our ExtremeCloud IQ reports aren't quite as elegant so this is an easy way to get your stats.
"When in doubt, go to the library." — Ron Weasley in Harry Potter and the Chamber of Secrets by J.K. Rowling
So you bought this new cloud-managed Wi-Fi system and you plug-in your first access point and nothing is happening. Let's take a step back and ensure layer 1 is good to go. The OSI Model will be our guide. While this guide is going to focus on ExtremeCloud IQ (XIQ) the steps are similar to many systems.
Layer 1:
Is the AP properly powered?
Check your switch port power over Ethernet (PoE) capability. Is it 802.3af or 802.3at capable?
What is the switch PoE budget and is it overloaded?
Is your Ethernet cable length within spec?
Are you using at least Cat5e cables minimum as required for PoE?
Does your cable pass a continuity test? All copper wires need to be aligned, none are broken, or crossed.
If your AP is located outdoors, are you using a shielded Ethernet cable run and is it properly grounded?
This isn't intended to cover all aspects of structured cabling but it's important to get it right.
Layer 2:
Switch port configuration:
The AP port needs to be set as Trunk.
Native VLAN: your AP by default is using an untagged management VLAN.
Allowed VLANs: not critical yet but ensure that all tagged traffic VLANs are in this list.
Go up the stack and verify your uplink ports are configured properly. Devices on the native VLAN need to get to the DHCP server.
Run the VLAN Probe to confirm your AP can query the DHCP server. (Click to enlarge image)
Does your DHCP scope have enough available IPs?
Is DHCP handing out valid DNS addresses?
TIP: APs by default use OpenDNS addresses to resolve redirector.aerohive.com. If these are blocked then your AP can't reach XIQ. Exact addresses are located in a Network Policy > Additional Settings tab > DNS Server
If you are blocking OpenDNS IPs you have options; get a console cable, SSH, or temporarily allow it on the management network.
CLI: Show dns
CLI: DNS server-ip <enter internal DNS IP>
CLI: capwap client server (to check on its status)
If you're using a local cloud deployment then you need to check two settings:
Check your DNS 'A' Record for hivemanager.contso.com
Next, check your DHCP scope for Option 43 to ensure its pointing to your local virtual machine
Layer 3:
Make sure your layer 3 device is either servicing DHCP or it needs a DHCP helper.
Ensure your firewalls are configured according to the Firewall Configuration Guide located in XIQ > mouse hover over your name and click About. (click to enlarge)
Click the hyperlink:
Next steps:
Did you forget to add the device serial numbers to XIQ?
Console into your AP
Username: admin
Password: aerohive (default until the AP joins a network policy)
Is your AP getting an IP address: show interface mgt0
Can you PING your gateway IP, 8.8.8.8, and www.google.com?
So you got your AP communicating with the cloud. Nice work! But, always a butt. Your APs are flapping up and down and you confirmed the AP is stable on the LAN. You need to configure your Firewall to extend the UDP timeout for port 12222 to 5+ minutes. Each firewall vendor is different.
When in doubt, factory reset the AP and start from scratch.
Okay, if you're cursing now and want to throw your AP out the window, go ahead and give support a call. They can dive into your specific network configuration to see where the issue may lie.
In my experience, no two networks are alike so I hope something in here helped you solve your issue.
If you're reading this you're probably searching for any guidance on accomplishing the task of migrating your Aerohive Wi-Fi system from Classic to the new HiveManager NG platform. It's worth noting that Extreme Networks has rebranded HiveManager to ExtremeCloud IQ or XIQ for short. It's the same platform, just with a new name. Classic end of sale has been announced: March 31, 2020. It will continue to function after this date, just no new sales.
There isn't an easy button to migrate to XIQ. The software platforms are not A to B so the Network Policy needs to be rebuilt from scratch. You can migrate your maps, drawn walls, hostnames, static IPs, and AP locations fairly easily. There's a YouTube video that covers the Classic Cloud to the new Cloud. There's a written VHM Migration Guide to aid you in the process. YouTube: https://www.youtube.com/watch?v=QOvEUEPhkVY Doc covering all migration combinations: http://docs.aerohive.com/330000/docs/help/english/ng/Content/reference/guides/mig-vhm-migration.htm ^^^If the Doc link is ever broken, click on the ? icon in XIQ's interface and search for VHM Migration Guide. Deployment Options:
Public Cloud in AWS (Most common)
Extreme also has many retail customers in Google and has recently announced Azure regional datacenter
Private Cloud in AWS, Google, Azure, or in your own datacenter
Local Cloud on-prem (VMWare Virtual Machine)
If you still need assistance, reach out to your Extreme sales team for guidance. Licensing: If you're current on your Classic Cloud subscription you can simply copy your license keys into ExtremeCloud IQ. If you are on-prem you'll need to reach out to your Extreme sales rep to get new keys. Caveats to consider when migrating:
BR200W routers are compatible but the wireless radios turn off.
Cloud Virtual Gateway (CVG) is not compatible. Virtual Gateway Virtual Appliance (VGVA) is the replacement. You can also terminate an XR600P for smaller deployments.
Make sure your devices are on the compatible list. Accurate as of the date of this post (click image to enlarge)
I hope this helps you on your journey to better Wi-Fi.
If you're looking at JumpCloud.com for cloud-hosted RADIUS and you want to integrate your ExtremeCloud IQ (formerly HiveManager NG), then you've come to the right place.
Here's a video guide that walks you through creating and configuring a simple setup in JumpCloud and how to configure an SSID to use it.
We've been approached by small school districts with a few sites that do not have Active Directory or any central directory service. JumpCloud is an option we found and figured out how to integrate our Wi-Fi system. JumpCloud has a plethora of video content to help you get the most out of their service. They offer many services beyond the scope of this post.
Based on ExtremeCloud IQ version: 19.9.1.3 (October 2019)
Feel free to leave any comments below.
Cheers!
-Mike EDIT: Here's the advanced video to assign Tunnel-IDs so that you can associate proper VLANs to specific User Groups in JumpCloud.
