we have a virtual WLAN controller V2110 configured with different "Topology Names" (VLAN-ID tagged on esa0 in B@EWC mode) because all traffic from the WLAN Users should be tunneled to the EWC and come out at esa0.
One "Topology Name" is configured as physical interface and tagged for VLAN-ID 410 with IP address so that it will be possible to manage the EWC and allow APs to registrate.
If we try to enforce with Netsight 8 the policies to the LAN switches everything is OK.
But if we try to enforce the policies to the WLAN controller, it will failed with event message:
Policy Manager can not manage Wireless Controller (172.17.230.233) with a configuration using an EWC physical VLAN (410[INTERNAL PHYSICAL1]). Change the domain configuration to use a different VLAN (410[WLAN-Mgmt]), and be sure the 'Always write to device' option is not selected for this VLAN. Right-click the VLAN in the Access Control Configuration view and select 'Role/Service Usage to see/edit where the VLAN is used.
In VLAN 410 resist all my APs and they should registrate themselfs against the EWC. The outher options to configure at the EWC is "routed, B@AP or B@EWC".
Or have we use a separate (different) Policy Domain only for the EWC?