Introduction
This document highlights new features and significant updates in cnMaestro On-Premises. Note 2.2.0, is a major release, and Cambium recommends all customers update to the latest version.
|
Important |
|
cnMaestro 2.2.0 On-Premises is distributed as an OVA file, which can be installed as a new Virtual Machine or used to update an existing 2.1.0 OVA installation. Please verify at least 1 GB of available memory before updating using the OVA. Existing cnMaestro On-Premises users running with version 1.6.3 should export their data and import it into cnMaestro 2.2.0. Data exported from cnMaestro 1.6.3 is supported. |
|
Important: Web Browser |
|
You may need to restart your browser (or clear the browser cache with a hard reload) after the 2.2.0 update. |
|
Important: AMI Installation |
|
This OVA cannot be used to upgrade the cnMaestro 2.1.1 AWS AMI released in the Amazon AWS Marketplace. There will be a separate AMI release for 2.2.0. |
Layer 2 High Availability (HA) 
(On-Premises)
cnMaestro On-Premises supports Layer 2 High Availability Beta through an Active-Standby (1+1) architecture. The default HA installation has a single Management interface (eth0) and a Shared (floating) Management IP address. HA is configured through the Console.
Failover Times
An on-premises failover occurs over the following intervals:
|
15-20 seconds |
Commit to failover. |
|
60-90 seconds |
Transition databases and services. UI becomes available during this period. |
|
Up to 5 minutes |
Devices reconnect in staggered fashion, to limit large deployment overhead. |
During a failover, RADIUS Proxy will be unavailable until the hosting device reconnects, and EoGRE requires service initiation on the new Active system. Data Plane failover will be optimized in a later release.
Rogue AP Detection
A Rogue AP is an unsanctioned AP not onboarded to a Site. The Cambium AP scans channels and collects details about neighboring APs, which are displayed in cnMaestro.
Configuring Rogue (Unsanctioned) AP
- Navigate to AP Groups > Configuration > Security page
- Select the Enable Rogue AP detection check box
Monitoring Rogue APs
Rogue APs can be monitored at the Access Point and Site levels in the hierarchy. The graphic below highlights the Rogue AP Dashboard for an Access Point. Rogues can be visualized by channel over time, and they can be whitelisted directly from the Dashboard.
Secondary External Authentication Servers (On-Premises)
Support for an optional Secondary Authentication Server for cnMaestro application authentication. The default Local Users authentication will only be performed if both Primary and Secondary servers are unreachable.
Guest Portal Self Registration
The user can customize the fields in the Splash page by choosing the Custom Field option in the Guest Access Portal page and clicking Add New button.
Wired Clients for cnPilot Home
Added support to display Wired Clients for cnPilot Home devices.
Wired Guest Clients for cnPilot Enterprise
Added support to display Wired Guest Clients for cnPilot Enterprise devices.
CLI Debug Option for cnPilot Enterprise APs
Execute CLI commands on cnPilot Enterprise APs as part of Advanced Debug option. This feature is for debugging purposes: it is not meant to configure APs. This option is supported on APs running software version 3.10.2 or higher.
cnPilot Radio Enable/Disable Override
The Device Override section in the Device Configuration tab now has the option to enable/disable Radio 2.4 GHz and Radio 5 GHz.
Enhanced Statistics for PTP Devices
Below parameters are added to Statistics table for PTP devices:
- Error Seconds
- Severe Error Seconds
- Unavailable Seconds
A new Network Info tab is added under the Details tab for PTP devices.
Enhanced Data Report for PTP Devices
Existing Devices Data Report is enhanced with addition of significant PTP Radio parameters.
Unique Device Name Enforcement
Device name validation to enforce uniqueness across the system. In case of Managed Services, uniqueness is enforced within the Managed Account.
Satellite View (US and EU)
Support for Satellite View in Map is added in limited United States and European Union regions. This option can be enabled from Application > Settings > Advanced Features page.
API Updates (On-Premises)
New APIs
|
Path |
Details |
|
Guest Portal API (Section 19.3) |
|
|
/api/v1/portals/{Portal ID}/vouchers/{voucher plan} |
List of vouchers |
|
/api/v1/portals/{Portal ID}/vouchers/{voucher plan}/generate |
Generate vouchers |
|
/api/v1/portals/{Portal ID}/events |
List of guest login events |
|
Devices API (Section 8.5.6) |
|
|
/api/v1/devices/{MAC Address}/disconnect_clients |
Disconnect clients under an AP |
Supported Cambium Products
cnMaestro supports the following Cambium Networks products. The software versions are the minimum required to use cnMaestro (not the recommended versions).
|
Family |
Model |
Version |
|
cnPilot |
cnPilot R200, R200P |
4.2.3-R4 |
|
cnPilot R201, R201P |
4.2.3-R4 |
|
|
cnPilot R190V, R190W |
4.3.2-R4 |
|
|
cnPilot E400/E500 |
2.5.2-r3 |
|
|
cnPilot E410/E430w/E600 |
3.5.2-R4 |
|
|
cnPilot E501S |
3.2.1-r6 |
|
|
cnPilot E502S |
3.2.1-r6 |
|
|
cnPilot E700 |
3.8 |
|
|
ePMP 1000 Hotspot |
ePMP 1000 Hotspot |
2.5.2-r3 |
|
ePMP |
ePMP 1000, Force 180/200 |
2.6.2 |
|
ePMP 2000 |
3.0.1 |
|
|
ePMP Elevate |
3.0.1 |
|
|
ePMP Force 190 |
3.5 |
|
|
ePMP Force 300 |
4.1.1 |
|
|
ePMP PTP 550 |
4.1.1 |
|
|
ePMP 3000 |
4.3.0.1 |
|
|
PMP |
PMP 450i, PMP 450, PMP 450m, PMP 430 SM |
15.0.1 |
|
PTP 450, and PTP 450i |
15.0.1 |
|
|
PTP |
PTP 650 |
01-47 |
|
PTP 670 (650 Emulation) |
01-47 |
|
|
PTP 670, PTP 700 |
02-67 |
|
|
cnReach (Beta) |
N500 |
5.2.17e |
|
cnMatrix |
cnMatrix |
2.0.4-r1 |
Supported Browsers
cnMaestro supports the following browsers:
|
Platform |
Browser |
Version |
|
Windows |
Internet Explorer |
11 and above |
|
Firefox |
45 and above |
|
|
Chrome |
49 and above |
|
|
MacOS |
Safari |
9 and above |
|
Linux |
Firefox |
45 and above |
|
Chrome |
49 and above |
Significant Fixes
The following issues have been fixed:
|
Id |
Details |
|
CNSSNG-2396 |
cnMaestro is logging out automatically even though the session should not expire until the browser closes. |
|
CNSSNG-3910 |
PTP 450 Bi-directional Frame Utilization information is missing. |
|
CNSSNG-9596 |
Client sessions data not exporting when exporting and importing to new server. |
|
CNSSNG-9611 |
No option to enable/disable SSIDs in C3VoIP. |
|
CNSSNG-9705 |
Link Test does not work for ePMP AC devices. |
|
CNSSNG-9723 |
R201 supports 1Gbps for LAN and WAN port, while setting speed from cnMaestro using QoS, we can set maximum as 100 Mbps. |
|
CNSSNG-10356 |
Replacement variables can't be unset. Blank defaults not properly supported. |
|
CNSSNG-10362 |
Report jobs which are in processing state during failover is creating empty/incomplete report. |
|
CNSSNG-10478 |
Static gateway is not being deleted from cnMaestro. |
|
CNSSNG-10546 |
Device name restrictions not consistent. |
|
CNSSNG-10604 |
By default, Telnet is enabled for config pushed through cnMeastro. |
|
CNSSNG-10633 |
Delimiter for MAC Address in MAC Authentication (in WLAN Group) must accept only valid parameters. |
|
CNSSNG-10670 |
802.11k RRM configuration is not available in cnMaestro WLAN configuration page. |
|
CNSSNG-10804 |
Equals sign = Breaks User-Defined Overrides. |
|
CNSSNG-10820 |
Maps view do not display any device with Lat/Long coordinate of 0,0. |
|
CNSSNG-10986 |
Not able to export vouchers after creation using generate and export option. |
|
CNSSNG-11002 |
Top Wi-Fi Networks by Throughput/Clients is not fetching managed accounts. |
|
CNSSNG-11015 |
"Redirect Hostname" option missing for external hotspot in cnMaestro. |
|
CNSSNG-11072 |
Move PPPoE configuration as per cnPilot device. |
|
CNSSNG-11090 |
Web access protocol HTTPS needs to be removed under R-Series AP Group under Management. |
Known Issues
The following issues exist:
|
Id |
Issue |
Details |
|
AURA-388 |
WiFi Guest Access does not work with Microsoft Edge Browser |
Guest Access on cnMaestro does not work with Edge browser on cnPilot 1.4.0-r12 with 3.2.1-6 and 1.5.0-r4 with 3.3 beta builds. Workaround: Users need to use supported browsers like Chrome, Firefox, or Internet Explorer (IE) 11. |
|
AURA-470 |
Failure to load success page after quick pay authentication |
|
|
AURA-474 |
Error contacting server when clicking on Orange Money button |
|
|
CNSSNG-4083 |
DHCP errors after cnMaestro Reboot |
When cnMaestro On-Premises is rebooted, after Data Import, sometimes DHCP and Disk Errors are encountered. Workaround: Explicitly run the dhclient command from the Command Line (accessed through the CLI) after reboot to assign the IP address. |
|
CNSSNG-4906 |
Captive Portal Auto Login fails with latest Android devices |
Workaround: Whitelist the URL for Google (*.google.com). |
|
CNSSNG-5365 |
RADIUS Proxy drops packets after retry exhausted |
After RADIUS Proxy Retries are exhausted in cnMaestro On-Premises, all subsequent RADIUS packets are dropped. Workaround: Reboot cnMaestro. |
|
CNSSNG-7626 |
Access token is expired after data migration |
Workaround: User has to generate a new token after the migration. |
|
CNSSNG-7372 |
Auto sync always times out if the device IP changes during auto sync |
|
|
CNSSNG-8304 |
ePMP: “No GPS Sync” or |
ePMP devices are not sending the GPS Sync status events to cnMaestro when GPS Sync is down or there is NO GPS Sync. Also for PMP GPS SYNC events, details shows sync source instead of indicating whether the GPS SYNC source is up or Down. |
|
CNSSNG-10145 |
Certificate export is not part of Data Backup and restore |
Certificates must be exported manually. |
|
CNSSNG-10187 |
While Migration is happening moving or deleting a device from the Managed account will mark all the events and alarms as undefined once migration is completed |
|
|
CNSSNG-10189 |
cnReach performance reports do not have throughput values for radios |
|
|
CNSSNG-10223 |
MSP images not imported on server when exported from 1.6.3 and imported in 2.2.0 |
Workaround: Customers need to apply 1.6.3-r39 build and then import the data to 2.2.0 |
|
CNSSNG-9631 |
HA: Network cable unplug: Device count is taken from NOC1 and jobs/users list is taken from NOC2. |
|
|
CNSSNG-9632 |
HA: Network cable unplug: Devices Onboarded during network disconnect needs to be reapproved by user. |
|
|
CNSSNG-11289 |
HA No Standby Server Banner message will be seen when we do any bulk operation in cnMaestro. |
|
|
CNSSNG-11299 |
AP Regulatory Channel list support check needed for checking valid channels. |
|
|
CNSSNG-11389 |
Microsoft Edge Browser does not support in system OVA file upgrade. |
Workaround: Use the Google chrome browser |
Where to Get Help
There are a number of places to get help with cnMaestro.
Cambium Community: The cnMaestro Forum provides the best place to ask questions and get up-to-date information.
- On-Premises Quick Start Guide: This guide walks you through the initial management process and allows you to get onboarded quickly. It is embedded into the cnMaestro image and can be accessed on the Home Page of the UI. It can also be downloaded in PDF format from the Cambium Support website.
- Cambium Support: The Cambium Support team is available 24x7 to answer questions and resolve issues.
