cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1594
Views
5
Helpful
8
Replies

AIR-CAP2702I-A-K9 not connecting to WLC 5508

GavinDowd3340
Level 1
Level 1

I have inherited some 2702i's. I reset the config using a console cable. When they reboot they detect our WLC and download all the configuration file - I can see them on the controller whilst they are doing this.

They then reboot and refuse to reconnect. They just constantly repeat this same error:

 

*May 7 11:00:28.607: AP has SHA2 MIC certificate - Using SHA2 MIC certificate for DTLS.

*May 7 11:00:28.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 172.16.227.245 peer_port: 5246
*May 7 11:00:28.447: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 172.16.227.245 peer_port: 5246
*May 7 11:00:28.447: %CAPWAP-5-SENDJOIN: sending Join Request to 172.16.227.245
*May 7 11:00:28.487: DTLS_CLIENT_ERROR: ../capwap/base_capwap/dtls/base_capwap_dtls_record.c:169 Pkt too old last_seq_num : 1,Received sequence num: 1 distance: 0

 

I have tried searching for answers on the internet without any success. In desperation I even erased the flash: and reinstalled the image from TFTP but it is still doing the same.

1 Accepted Solution

Accepted Solutions

Product/Model Number : AIR-CAP2702I-A-K9

Regulatory Domain of the AP is "-A" (USA). 

Configured Country............................... GB - United Kingdom

Regulatory Domain configured on the WLC is UK. 

This is why the AP won't join:  Regulatory Domain Mismatch. 
The AP needs to have a Regulatory Domain of "-E" to match.

Is also explains why the AP can/will download the config from the WLC but is unable to join the controller.

View solution in original post

8 Replies 8

GavinDowd3340
Level 1
Level 1

I forgot to mention if I get a brand new 2702i out of the box and plug it into the same network point it registers itself just fine so it is something on these second hand AP's however I can't think what it can be as I have erased both the NVRAM and FLASH but still have this problem

Leo Laohoo
Hall of Fame
Hall of Fame

@GavinDowd3340 wrote:

I have inherited some 2702i's. I reset the config using a console cable. When they reboot they detect our WLC and download all the configuration file


Post the complete output to the following commands: 

  1. AP:  sh version; 
  2. AP:  sh ip interface brief; 
  3. WLC:  sh sysinfo; and
  4. WLC:  sh time


AP2cd0.2da3.9028#
AP2cd0.2da3.9028#sh ver
Cisco IOS Software, C2700 Software (AP3G2-K9W8-M), Version 15.3(3)JF7, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2018 by Cisco Systems, Inc.
Compiled Tue 05-Jun-18 05:05 by prod_rel_team

ROM: Bootstrap program is C2700 boot loader
BOOTLDR: C2700 Boot Loader (AP3G2-BOOT-M) LoaderVersion 15.2(4)JB5m, RELEASE SOFTWARE (fc2)

AP2cd0.2da3.9028 uptime is 31 minutes
System returned to ROM by power-on
System image file is "flash:/ap3g2-k9w8-mx.153-3.JF7/ap3g2-k9w8-xx.153-3.JF7"
Last reload reason: Power Loss

 

This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
export@cisco.com.

cisco AIR-CAP2702I-A-K9 (PowerPC) processor (revision A0) with 376814K/134656K bytes of memory.
Processor board ID FCW2051NNJ1
PowerPC CPU at 800Mhz, revision number 0x2151
Last reset from power-on
LWAPP image version 8.5.131.0
1 Gigabit Ethernet interface
2 802.11 Radios

32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: 2C:D0:2D:A3:90:28
Part Number : 73-15824-04
PCB Serial Number : FOC20510JAK
Top Assembly Part Number : 068-100373-02
Top Assembly Serial Number : FCW2051NNJ1
Top Revision Number : A0
Product/Model Number : AIR-CAP2702I-A-K9

 

Configuration register is 0xF

 

AP2cd0.2da3.9028#sh ip interface brie
Interface IP-Address OK? Method Status Protocol
BVI1 172.16.61.8 YES DHCP up up
Dot11Radio0 unassigned NO unset up up
Dot11Radio1 unassigned NO unset up up
GigabitEthernet0 unassigned NO unset up up
GigabitEthernet1 unassigned NO unset administratively down down
VIOS_FABRIC0 unassigned YES unset up up
Virtual-WLAN0 unassigned NO unset up up
Virtual-WLAN0.1 unassigned NO unset up up
Virtual-WLAN0.2 unassigned NO unset up up
Virtual-WLAN0.3 unassigned NO unset up up
Virtual-WLAN0.4 unassigned NO unset up up
Virtual-WLAN0.5 unassigned NO unset up up
Virtual-WLAN0.6 unassigned NO unset up up
Virtual-WLAN0.7 unassigned NO unset up up
Virtual-WLAN0.8 unassigned NO unset up up
Virtual-WLAN0.9 unassigned NO unset up up
Virtual-WLAN0.10 unassigned NO unset up up
Virtual-WLAN0.11 unassigned NO unset up up
Virtual-WLAN0.12 unassigned NO unset up up
Virtual-WLAN0.13 unassigned NO unset up up
Virtual-WLAN0.14 unassigned NO unset up up
Virtual-WLAN0.15 unassigned NO unset up up
Virtual-WLAN0.16 unassigned NO unset up up
AP2cd0.2da3.9028#

(Cisco Controller) show>sysinfo

Manufacturer's Name.............................. Cisco Systems Inc.
Product Name..................................... Cisco Controller
Product Version.................................. 8.5.131.0
Bootloader Version............................... 1.0.20
Field Recovery Image Version..................... 7.6.95.16
Firmware Version................................. FPGA 1.7, Env 1.8, USB console 2.2
OUI File Last Update Time........................ Sun Sep 07 10:44:07 IST 2014


Build Type....................................... DATA + WPS

System Name...................................... TGH-WLC5508
System Location..................................
System Contact...................................
System ObjectID.................................. 1.3.6.1.4.1.9.1.1069
Redundancy Mode.................................. SSO
IP Address....................................... 172.16.227.245
IPv6 Address..................................... ::
Last Reset....................................... Software reset
System Up Time................................... 84 days 20 hrs 44 mins 22 secs
System Timezone Location......................... (GMT) London, Lisbon, Dublin, Edinburgh

--More-- or (q)uit
System Stats Realtime Interval................... 5
System Stats Normal Interval..................... 180

Configured Country............................... GB - United Kingdom
Operating Environment............................ Commercial (0 to 40 C)
Internal Temp Alarm Limits....................... 0 to 65 C
Internal Temperature............................. +37 C
External Temperature............................. +20 C
Fan Status....................................... OK

State of 802.11b Network......................... Enabled
State of 802.11a Network......................... Enabled
Number of WLANs.................................. 16
Number of Active Clients......................... 878

OUI Classification Failure Count................. 0

Burned-in MAC Address............................ F4:CF:E2:95:0B:80
Power Supply 1................................... Present, OK
Power Supply 2................................... Absent
Maximum number of APs supported.................. 500
System Nas-Id.................................... B15_WLC5508-01
WLC MIC Certificate Types........................ SHA1/SHA2

--More-- or (q)uit

(Cisco Controller) show>

(Cisco Controller) show>time

Time............................................. Thu May 7 12:15:21 2020

Timezone delta................................... 0:0
Timezone location................................ (GMT) London, Lisbon, Dublin, Edinburgh

NTP Servers
NTP Version.................................. 3
NTP Polling Interval......................... 600

Index NTP Key Index NTP Server Status NTP Msg Auth Status
------- ---------------------------------------------------------------------
1 0 172.16.8.1 In Sync AUTH DISABLED


(Cisco Controller) show>

Product/Model Number : AIR-CAP2702I-A-K9

Regulatory Domain of the AP is "-A" (USA). 

Configured Country............................... GB - United Kingdom

Regulatory Domain configured on the WLC is UK. 

This is why the AP won't join:  Regulatory Domain Mismatch. 
The AP needs to have a Regulatory Domain of "-E" to match.

Is also explains why the AP can/will download the config from the WLC but is unable to join the controller.

Is there a way to change domain on the AP or have the WLC accept American AP's ?

You cant chnage the AP domain.

 

Just change the country code on WLC to US and then try again.

 

Regards

Dont forget to rate helpful posts

Thanks I did that and they are working fine now.

 

Thanks for your help

Presume you're aware that it would be illegal to use APs from a different regulatory domain in UK?
Obviously if you're actually using them in the US then that's fine.
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: