Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
22648
Views
17
Helpful
5
Replies

9800-CL WLC - No valid AP manager found for controller

brettlarkins
Level 1
Level 1

‎11-18-2019 02:22 PM - edited ‎07-05-2021 11:19 AM

Standing up a 9800-CL wireless controller. 

Got through the initial deployment, the Day Zero config, and can log into the WLC, but I cannot get my AP's to join it.

AP models are 1832 and 3802. 

Tried WLC versions 16.11 and 16.12, both with the same results.

I can ping the WLC from the AP, and I can log into the GUI fine from my PC.

My AP's can reach the controller, but keep dropping the DTLS session when they try to join.

Here's the output from the console on the AP:

 

[*11/18/2019 22:08:20.0122] CAPWAP State: DTLS Teardown
[*11/18/2019 22:08:24.7707] No more AP manager addresses remain..
[*11/18/2019 22:08:24.7707] No valid AP manager found for controller 'C9800-CL' (ip: 10.10.221.200)
[*11/18/2019 22:08:24.7707] Failed to join controller C9800-CL.
[*11/18/2019 22:08:24.7707] Failed to join controller.
[*11/18/2019 09:58:31.0000]

 

14 people had this problem
Labels:
0 Helpful
5 Replies 5

Rasika Nayanajith
VIP
VIP

‎11-18-2019 02:28 PM

Pls check this post as it describe a workaround for this issue

https://gblogs.cisco.com/ch-tech/setup-your-lab-with-catalyst-9800-cl/ 

 

HTH

Rasika

*** Pls rate all useful responses ***

Diana L.
Level 1
Level 1
In response to Rasika Nayanajith

‎06-23-2020 11:51 PM

Hello! Is there a solution description for IOS WLC 9800-CL? Thanks in advance. 

Best regards Diana 

0 Helpful

Diana L.
Level 1
Level 1
In response to Diana L.

‎06-24-2020 01:49 AM

I found the solution for my lab deployment. As I skipped the day-0 configuration Setup wizzard, I forgot to configure a trustpoint / certificate for the APs.

 

I had to manually create a trustpoint via CLI:

 

WLC_Lab#wireless config vwlc-ssc key-size 2048 signature-algo sha256 password 0 ...

WLC_Lab#show wireless management trustpoint
Trustpoint Name : WLC_Lab_WLC_TP
Certificate Info : Available
Certificate Type : SSC
Certificate Hash : a7fa051c906585774843fe2...
Private key Info : Available
FIPS suitability : Not Applicable

 

Now, the APs can connect to WLC. 

Best regards

Diana 

brettlarkins
Level 1
Level 1
In response to Diana L.

‎06-24-2020 07:49 AM

Yes, trustpoint certificate was my issue as well.

Thank you for posting the response!

0 Helpful

Scott Fella
Hall of Fame
Hall of Fame
In response to Diana L.

‎06-24-2020 06:04 PM

Make sure you set NTP, have the country code and Trustpoint defined.
-Scott
*** Please rate helpful posts ***
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card