Deployment Requirements

Please make sure you have covered all the prerequisites before you start the configuration.

Completed all pre-requisites
1

To connect the WLC to the Cisco Spaces, the internet must be available. To establish connection between the Cisco Spaces and your wireless network, you must whitelist Cisco Spaces IP addresses – 52.20.144.155

2

WLC must be able to reach Cisco Spaces cloud over HTTPS.

3

In order to connect your wireless network with Cisco Spaces, you may have to open the ports 80 and 443 to establish connection between your wireless network and the Cisco Spaces. You can establish this connection through a public IP or VPN. Please contact Cisco Spaces team to establish a VPN connection.

4

The DigICert CA root must be imported to the WLC

5

If your network deployment contains WLC in Anchor Controller mode and Foreign Controller mode, you must import the certificate to the WLCs in both modes”.

6

To establish connection between the Cisco Spaces and your wireless network, you must whitelist Cisco Spaces IP addresses – 52.20.144.155

Install WLC Root Certificate (DigiCert CA)

To import the DigiCert CA root certificate into WLC, follow the steps below:

  • STEP 1

    To view the appropriate root certificate, go to the link: https://global-root-ca.chain-demos.digicert.com/info/index.html

    Note: If you try to connect your WLC to Cisco Spaces using a root certificate not issued by DigiCert CA, you will see an error stating, “https: SSL certificate problem: unable to get local issuer certificate”. To avoid getting the above error, you need to import the DigiCert CA root certificate to connect successfully to Cisco Spaces.

  • STEP 2

    Copy the root certificate content to any text editor and save the file with a .cer extension e.g. {your_filename}.cer.

  • STEP 3

    Copy the {your_filename}.cer file to the default directory on your TFTP.

  • STEP 4

    Log in to the WLC CLI and execute the following commands:

    • transfer download datatype cmx-serv-ca-cert
    • transfer download mode tftp
    • transfer download filename {your_filename}.cer
    • transfer download serverip {your_tftp_server_ip}
    • transfer download start
    • Type Y to start the upload.

    After the new root certificate has been uploaded successfully, execute the following commands to restart your CMX Cloud Services:

    • config cloud-services cmx disable
    • config cloud-services cmx enable

Configure Cloud Service URL in WLC

  • STEP 1

    In the Cisco Spaces dashboard, click on Setup > Wireless Networks on the left navigation

  • STEP 2

    Click on “Get Started” button and Select “Cisco AirOS/Catalyst”

  • STEP 3

    Select “Connect WLC directly” then Select “Customize Setup” button

  • STEP 4

    Go to Customized Setup page step 2 “Configure Token in WLC”, click on “View Token”

  • STEP 5

    Login to your WLC account

  • STEP 6

    Go to “Management”

  • STEP 7

    Click on “Cloud Services” on the left navigation

  • STEP 8

    Click on “Server” under “Cloud Services” on the left navigation

  • STEP 9

    Enter your Service URL and ID-token. Get the service URL and Token from the Cisco Spaces dashboard as shown in the Step 4 above.

  • STEP 10

    Click on “Apply” button on the top right corner of the page

  • STEP 11

    Click on “CMX” under “Cloud Services”

  • STEP 12

    Click on “Server Status” dropdown and select “Enable”

  • STEP 13

    Click on “Apply” button on the top right corner of the page


Categorize your locations next