As discussed earlier, there are licenses for various features. The licenses for the Steelhead appliances can be found on the Riverbed Support website, except for the SSL license.
There are several reasons why the Steelhead appliance would need to be reconfigured with the licenses:
The Steelhead appliances lost its configuration when it got factory reset because of relocation or software downgrade.
The original license was a temporary evaluation license which has expired and the purchased license was not delivered to the networking group responsible for the Steelhead appliances.
The device got replaced in an RMA and the licenses need to be swapped.
Somebody got too enthousiastic on the license management page in the GUI and deleted the current licenses.
If the assets can't be found on the Riverbed Support website, please contact the Riverbed TAC for assistance. If the license required is an SSL license, then the application forms on the Riverbed Support website should be followed.
The following licenses are available on Steelhead appliances:
BASE license, for example "LK1-SH10BASE-0000-...". This license is to allow the Steelhead appliance to perform SDR services like data reduction.
CIFS license, for example "LK1-SH10CIFS-0000-...". This license is to allow the Steelhead appliance to perform CIFS latency optimization.
MAPI license, for example "LK1-SH10EXCH-0000-...". This license is to allow the Steelhead appliance to perform MAPI latency optimization.
SSL license, for example "LK1-SH40SSL-0000...". This license is to allow SSL pre-optimization and SSL secure peering.
RSP license, for example "LK1-SH50RSP-0000...". This license is to allow the Riverbed Services Platform feature for RiOS 5.0 to be enabled.
RSP license, for example "LK1-SH55RSPM-0000...". This license is to allow the Riverbed Services Platform feature on the xx20 and xx50 series models for RiOS 5.5 and later to be enabled.
Print Package License, for example "LK1-SH55PKGPRNT-0000-...". This license is to allow a single instance of the RSP Print Package for RiOS 5.5 and later to be enabled.
WAN Bandwidth licenses, for example "LK1-SH70BWLIMIT#100000-0000-...". This license is to allow the optimizable WAN bandwidth for the EX1160VH and EX1260VH models to be increased from 50 Mbps to 100 Mbps.
Professional Services license, for example "LK1-PROFSRV-0000...". This license is to allow access to the underlying operating system without the challenge/response authorization.
High Speed TCP license, for example "LK1-SH20HTCP-0000...". This license is to enable the High Speed TCP feature. It has been obsoleted.
Hardware model upgrade, for example "LK1-SH20HWUP-0000...". This license is for the xx20 series models and allows an upgrade towards a higher capacity model.
Machine specification license, for example "LK1-MSPEC2050M-0000...". This license is to specify the base model of the xx50 series model. In this case the device is a 2050M model.
Machine specification configuration upgrade, for example "LK1-MSPECHWUP1050H-0000...". This license is for the xx50 series models and allows an upgrade towards a higher capacity configuration.
Granite license, for example "LK1-GRANITE-000...". This license is to enable the Granite feature.
SCPS license, for example "LK1-SH55SCPS-0000...". This license is to enable the Space Communication Protocol Specifications specific features.
FIPS license, for example "LK1-FIPS-0000...". This license is to enable the Steelhead appliance to run the FIPS specific software.
The following licenses are available on Steelhead Mobile Controllers:
Base license, for example "LK1-SMCVE#00087F85-0000...". This license is to allow the SMC VE to work.
Virtual SMC license, for example "LK1-SMCVBASE#VA6MR00012334-0000...". This license is to allow the Virtual SMC to work.
Additional client license, for example "LK1-SMCEL#190+4E12346D-0000-...". This license allows extra Steelhead Mobile Clients to be active. The string 190 in the license is the extra capacity in hex.
Standard CIFS license for Steelhead Mobile Clients, for example "LK1-SMCCIFS-0000-...". This license allows the Steelhead Mobile Client to perform CIFS latency optimization.
Standard MAPI license for Steelhead Mobile Clients, for example "LK1-SMCMAPI-0000-...". This license allows the Steelhead Mobile Client to perform MAPI latency optimization.
SSL license, for example "LK1-SMCSSL-0000...". This license is to allow SSL pre-optimization and SSL secure peering.
The following licenses are available on Central Management Console:
Base license, for example "LK1-CMC10BASE-0000". This license is to allow the CMC appliance to manage the devices.
Base license for the CMC VE, for example "LK1-CMCVEBASE#V58GW000D1234-0000-". This license is to allow the CMC VE appliance to manage the devices. The string V58GW000D1234 is the serial number of the CMC VE.
Additional devices license, for example "LK1-CMCVE#32+50CA2E1D-0000-". This license increases the number of devices allowed to be managed. The string 32 is the extra number of devices.
Additional devices license, for example "LK1-CMC10S0050-0000". This license increases the number of devices allowed to be managed. The string 0050 is the extra number of devices.
Increased devices license, for example "LK1-CMCIL#122+51535ABE-0000-". The string 122 is the hex value of the extra number of devices.
The following licenses are available on the Interceptor appliance:
The Interceptor base license, for example "LK1-IB10BASE-0000-...". This license is to allow the Interceptor to redirect traffic.
In the xx20 series models, there were no licenses to upgrade between models. In the xx50 series models, there are licenses to upgrade between the different configurations inside the same model, but the appliances coming out of the manufacturing plants still had the distinction between if it was a 1050L, 1050M or 1050H model.
In the newer CX and EX series, the appliances coming out of the manufacturing plants will be the basic models like a 755 or 760 model, but not with licenses to make it a 755L or 755H configuration.
When obtaining a new CX or EX series model, the configuration first needs to be activated. This can be done by going to the Riverbed Licensing website at https://licensing.riverbed.com/. You will be asked for your name, email address, phone number and device serial number. Next you will be asked what the base level is you want to make for it, for example an L or an M or an H model.
Once activated, the licenses are generated and available for download when the Steelhead appliance is powered up:
Figure 4.24. Automatic fetching of licenses at the startup of a new CX series model
SH mgmtd[5156]: [mgmtd.INFO]: Attempting automatic license retrieval SH mgmtd[5156]: [mgmtd.INFO]: Next automatic license retrieval attempt in 81002 seconds SH mgmtd[5156]: [mgmtd.NOTICE]: Installing new license 'LK1-MSPECCX755H-0000-0000-1-72D2-F \ FCA-9FBC' SH mgmtd[5156]: [mgmtd.INFO]: Starting database commit
After that the optimization server gets started and the Steelhead appliance will start optimization new TCP sessions.
Of course there are various network related problems which can occur.
DNS lookup failures for the licensing server: Can the DNS server resolve external hosts?
Unable to connect to the licensing server: Does the traffic need to go through a web proxy?
Figure 4.25. Failure of automatic fetching because of a DNS related failure
SH mgmtd[5156]: [mgmtd.INFO]: Attempting automatic license retrieval SH mgmtd[5156]: [mgmtd.WARNING]: Automatic licensing server api.licensing.riverbed.com is \ unreachable: Couldn't resolve host name SH mgmtd[5156]: [mgmtd.INFO]: Next automatic license retrieval attempt in 300 seconds
Once access to the licensing server has been fixed, the command
license autolicense fetch
can be used to force an update of the licenses.
Figure 4.26. Manual update of the licenses with "license autolicense fetch"
SH cli[9572]: [cli.INFO]: user admin: Executing command: license autolicense fetch SH cli[9572]: [cli.INFO]: user admin: Command license autolicense fetch authorized SH mgmtd[5156]: [mgmtd.INFO]: Attempting automatic license retrieval SH mgmtd[5156]: [mgmtd.INFO]: Next automatic license retrieval attempt in 81571 seconds SH mgmtd[5156]: [mgmtd.INFO]: Skipping already installed license 'LK1-MSPECCX755H-0000-000 \ 0-1-72D2-FFCA-9FBC' SH mgmtd[5156]: [mgmtd.INFO]: Skipping already installed license 'LK1-MSPECCX755M-0000-000 \ 0-1-6799-DA37-1EF7' SH mgmtd[5156]: [mgmtd.INFO]: Skipping already installed license 'LK1-SH10BASE-0000-0000-1 \ -E32A-DC6A-E50F' SH mgmtd[5156]: [mgmtd.INFO]: Skipping already installed license 'LK1-SH10CIFS-0000-0000-1 \ -8BD2-4668-8EDA' SH mgmtd[5156]: [mgmtd.NOTICE]: Installing new license 'LK1-SH10EXCH-0000-0000-1-211C-36AC \ -455C'
When purchasing a virtual appliance, you will get a License Request Token. Once the virtual machine has been created and the appliance software has been installed in the virtual machine, you will enter this License Request Token in the GUI and it is converted to a license Request String. This License Request String contains some unique information about the virtual machine like the UID and the MAC address. The License Request String can be redeemed on the Riverbed Licensing website and the licenses will be generated. After that the license can be installed manually or automatically fetched by the appliance.