Help with Unifi CloudKey remote access!

Klutch9

Klutch9

Joined
Jan 7, 2009
Messages
3,037
Location
Rochester, MI, US, World
Yesterday I made some changes to my home Unifi network. I have a USG and several access points that were previously managed via a controller I had running on a local PC 24/7. I could always access my network via WAN or LAN. I didn't want to have the PC running all the time, and I was in the mood for tinkering, so I am now running my network on a Gen 1 CloudKey (yes, I know this CloudKey is EOL, but that shouldn't affect me in this case). I re-configured the network from scratch; didn't use any backups since my network is pretty simple.. Everything is working great, but I can rarely access the console from WAN. I can always access it (via PC or iOS Unifi app) on LAN, but via WAN it hardly ever works. Just times out. All my settings appear to be correct, and remote access IS enabled. I have tried different DNS servers (Google, Quad 9, Cloudfare) to no avail. What am I missing? Is this old CloudKey EOL to the point where the WAN access doesn't work?

MODS: can you please move this to the Computer forum? I think the subject matter fits better there. Thanks!
 
Klutch9 said:
I have not. I have power cycled the CloudKey though. I’ll try with the USG later.
Click to expand...
I'm not very familiar with that type of setup as I have mostly newer gear.. Do you have to port forward for the cloudkey etc?
So you are:
trying to manage from separate internet to the remote cloudkey behind the USG?

What happens if you are on local wifi?
 
Last edited:
Rand said:
I'm not very familiar with that type of setup as I have mostly newer gear.. Do you have to port forward for the cloudkey etc?
So you are:
trying to manage from separate internet to the remote cloudkey behind the USG?

What happens if you are on local wifi?
Click to expand...
No port forwarding is required with a cloud key. Yes, I am trying to manage my network from WAN, either cellular or another external WiFi network.

If I try to connect while on my LAN/local WiFi, I can connect quickly every time.
 
Klutch9 said:
No port forwarding is required with a cloud key. Yes, I am trying to manage my network from WAN, either cellular or another external WiFi network.
Click to expand...
are you sure? I am seeing conflicting info on google.

Also your problem seems to fit with that.
 
Rand said:
are you sure about that? I am seeing conflicting info on google.
Click to expand...
There are a few common ports it uses for traffic, but no port forwarding should be required. I didn’t need to forward any ports when I had my last system hosted on my PC.

The weirdest part is that SOMETIMES it will connect while I’m on a WAN. That tells me that it’s configured properly, it just doesn’t like to connect that way for some reason.
 
Make sure the cloud key is logged into and owned by your ui.com account and not a local admin account. I had this problem recently with a client's device (Express) that was on DSL and setup locally first, then migrated to the cloud. I could always connect to it locally, could see it online through the portal, but never actually manage it. Went onsite, added my UI account to it, transferred the ownership to that account, and then it was able to managed from the web without issue.
 
OVERKILL said:
Make sure the cloud key is logged into and owned by your ui.com account and not a local admin account. I had this problem recently with a client's device (Express) that was on DSL and setup locally first, then migrated to the cloud. I could always connect to it locally, could see it online through the portal, but never actually manage it. Went onsite, added my UI account to it, transferred the ownership to that account, and then it was able to managed from the web without issue.
Click to expand...
I set the cloud key up using my Ui.com login. How do I check that it’s not registered locally? If I go into Settings - System - Admins, my email address is shown as the login (the one I use for Unifi). In the tab above under Administration, the “Enable remote access” box is checked, as is the “Sync local admin with Ubiquiti SSO” box. FYI.
 
I tried a few more things… even though it isn’t necessary, there are 5 ports that I opened that tech support recommended. I seemingly can now reliably manage the system on a WAN via the “Site manager” section on Unifi.ubnt.com, or on the mobile app under “Site manager” (these are both the same thing - looks basically like you’re in a web browser and gives you full access to all settings).

However, if I just open the app on a WAN and click on the site that comes up (not under site manager, but under sites), it will not connect. It shows online, but no connection. This interface is the simpler one that doesn’t give access to all settings, but is more mobile-friendly. I have no idea why it won’t work, but the full UI site manager will now. Some progress at least.
 
tmorris1 said:
If UNIFI cloud access is enabled you shouldn't need to do any port forwarding.
Click to expand...
I agree, except when you read online there seems to be a group of people who are having nearly the same problem that had to Fwd ports to make it work
🤷‍♂️

All my current gear has the management on the router so no way I could test anything

Just trying to give the OP ideas.
 
Klutch9 said:
I set the cloud key up using my Ui.com login. How do I check that it’s not registered locally? If I go into Settings - System - Admins, my email address is shown as the login (the one I use for Unifi). In the tab above under Administration, the “Enable remote access” box is checked, as is the “Sync local admin with Ubiquiti SSO” box. FYI.
Click to expand...
OK, those settings are a bit different than on my UDM and the Express I was working on, which looked like this:
Screenshot 2024-11-22 at 9.23.07 AM.webp


The top account (green) is my UI account, which I had to transfer the ownership to under Control Plane (Remote Management was already enabled) as the Admin account you see there (local account) was the owner originally.
 
You must log in or register to reply here.

Similar threads

Klutch9
Ubiquiti/Unifi experts, come in!
Replies
10
Views
1K
Rand
Donald
Unifi managed network switch
2
Replies
30
Views
633
Donald
dogememe
Very Pleased with Aruba Instant On Home Network/WiFi
Replies
12
Views
3K
dogememe
9
Ubiquiti access points on different subnet / separate from 192.168.1.x
Replies
7
Views
2K
OVERKILL
OVERKILL
Sophos XG105 teardown
Replies
7
Views
1K
terry274
Back
Top Bottom