I take it you have the correct username/password or AAA authentication setup for this switch,

if using Tacacs or radius is the new switch  in the AAA server database?

if using local is the privilege level setup correctly?

I use local authentication.  I have username setup with privilege level set to 15.  Also have enabled:

aaa new-model

aaa authentication login default local

aaa authorization exec default local

aaa authorization network default local

ip http server

ip http authentication local

ip http secure-server

as a matter of interest if you try and discover it as a read only do you still get the same problem, also I assume you can ping the switch from the device that is running  CNA, also I assume you can telnet/ssh into the switch ok

What do you mean by discover it as read only?

The switch shows up in CNA.  I can bring up its "Device Manager".  I can ping the unadded switch from any switch in my community and my unadded switch can ping any of the switches in the Community.  It joins the VTP domain just fine and VLANs are replicated 100%.  And I can ssh into the unadded switch.

I dont know about CNA 6.2 but earlier versions you had the option of discovering with priv 7 read only, or 15 read/write 

You can not  have more than 40 devices in a community according to CNA 6.2 release notes.You are not trying to exceed that are you?

see comunity limitations from release notes below

Community Limitations

These limitations apply only to communities:

• A community can contain up to 40 devices. This limit is enforced whenever you add devices to a community.
• CSCsd04956

The Topology view does not show the internal Gigabit Ethernet link between routers and the EtherSwitch service modules NME-16ES-1G and NME-X-23ES-1G.

There is no workaround.

• Changes to the topology or the network do not propagate across all open Network Assistant sessions connected to the same community. You see this inconsistency when multiple Network Assistant sessions are open on one desktop and they are pointing to the same community.

Open one Network Assistant session per desktop per community. (CSCeh53619)

• In the Topology view, the redundant link for an HSRP group is not shown. There is no workaround. (CSCeh54526)
• If a community has members that are connected to a member through a hub or a Gigastack module, the Topology view shows all the connections. However, if nonmembers are connected to a community member through a hub or a Gigastack module, the Topology view shows only the connection of the first nonmember.
• Accessing a community through a router running Network Address Translation (NAT) is not supported.
• When a device with a device ID that exceeds 40 characters is added to the community, its link disappears. The device ID is usually the hostname, but if a domain name is specified, the device ID is in the form hostname.domain-name. There is no workaround, other than to limit the size of the device ID to 40 characters or less. (CSCsi77210)

I only have about 12 items in my Community. 

And I have tried, what I think is ready only mode, and there's no difference.  Maybe I should try an earlier version of CNA?

If I create a new community, then the switch connects just fine with all the other switches.  Weird. 

Maybe I'll just delete the community I have and create a new one.

Thanks for your help

Thank you for very helpful advice.