Buy or Renew
Buy or Renew
NEW: Try the Beta AI Summary feature on posts in the Routing and SD-WAN forum. Click to go to the forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1985
Views
0
Helpful
3
Replies

Airprovision Problem.

Go to solution
walidake
Visitor

‎11-13-2022 08:46 AM

Hi,

We have  WLC 9800 with different APs connected to him, last night we upgraded it from 17.3.5 to 17.3.6 for some compatibility reasons with 9130axi to add some new APs, so far everything was good, but after the upgrade, several access points from the same location (about 50 Access point) didn't join the controller, they are diffusing SSID named 'Cisco1' 'Cisco2':

walidake_0-1668357709973.png

After some research, I found that one of the's APs is now the controller for the rest of the 50 ones that didn't join the original controller:

walidake_1-1668357740585.png

Does anyone out there have any tips, I hope someone can help me with this problem, which I think it's an air provision problem. Thank you.

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Arshad Safrulla
VIP Alumni
VIP Alumni

‎11-13-2022 01:55 PM

Looks like you had a EWC capable AP in the same broadcast domain of AP management. You have to make sure that at no point of time there are 2 WLC WMI's in the same VLAN, also if you have more than 100APs make sure that AP management is in a different VLAN, not in the same VLAN as WLC WMI. It is highly recommended that you prime the APs (configure primary and standby WLC WMI per AP). Using option 43 is also recommended.

In your case easiest option would be login to the new EWC WLC and go to Configuration>>Wireless>>Access Points

Select all the APs and click on convert to capwap. Or you can ssh to EWC and type (ap-type capwap)This will make sure that there are no EWC capable APs in your network (actually APs will not participate in EWC process) 

For other APs let it find the WLC via broadcast or you can use any other method like option 43 or DNS to advertise the WLC WMI.

___________________________________________
TAC recommended codes for AireOS WLC's
Best Practices for AireOS WLC's
TAC recommended codes for 9800 WLC's
Best Practices for 9800 WLC's
Cisco Wireless compatibility matrix
___________________________________________
Arshad Safrulla

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Mark Elsen
Hall of Fame
Hall of Fame

‎11-13-2022 10:21 AM

 

 - Reboot a problematic AP , immediately after reboot login to it and issue the command show logging , look for anomalies from the boot process which is then still available in the output. Also check the logs on the controller when a none-working AP tries to join. Make sure the intended access points are still in CAPWAP (client) mode. Also  review the current 9800 WLC   configuration with the CLI command : show  tech   wireless , have the output analyzed by  https://cway.cisco.com/tools/WirelessAnalyzer/  , please note do not use classical show tech-support (short version) , use the command denoted in green for Wireless Analyzer.               Checkout all advisories!



-- Let everything happen to you  
       Beauty and terror
      Just keep going    
       No feeling is final
Reiner Maria Rilke (1899)
0 Helpful

Go to solution
Arshad Safrulla
VIP Alumni
VIP Alumni

‎11-13-2022 01:55 PM

Looks like you had a EWC capable AP in the same broadcast domain of AP management. You have to make sure that at no point of time there are 2 WLC WMI's in the same VLAN, also if you have more than 100APs make sure that AP management is in a different VLAN, not in the same VLAN as WLC WMI. It is highly recommended that you prime the APs (configure primary and standby WLC WMI per AP). Using option 43 is also recommended.

In your case easiest option would be login to the new EWC WLC and go to Configuration>>Wireless>>Access Points

Select all the APs and click on convert to capwap. Or you can ssh to EWC and type (ap-type capwap)This will make sure that there are no EWC capable APs in your network (actually APs will not participate in EWC process) 

For other APs let it find the WLC via broadcast or you can use any other method like option 43 or DNS to advertise the WLC WMI.

___________________________________________
TAC recommended codes for AireOS WLC's
Best Practices for AireOS WLC's
TAC recommended codes for 9800 WLC's
Best Practices for 9800 WLC's
Cisco Wireless compatibility matrix
___________________________________________
Arshad Safrulla
0 Helpful

Go to solution
Rich R
VIP
VIP

‎11-14-2022 07:03 AM

You can also disable EWC via option 43 remotely:

https://www.cisco.com/c/en/us/products/collateral/wireless/embedded-wireless-controller-catalyst-access-points/white-paper-c11-743398.html#Conversion

 

Converting EWCs to CAPWAP using option 43

DHCP option 43 is a vendor-specific option and is used for providing WLC IP addresses to the access point. Using option 43 with a specific subtype option, you can have the EWC convert to CAPWAP and join a WLC appliance or virtual controller. After the AP receives DHCP option 43 and subtype 0xF2 at bootup, the AP type will be converted to CAPWAP, and the AP will follow the regular joining process.

The DHCP configuration on the switch is shown below.

Switch(dhcp-config)#option 43 hex F2056464645801

Configure your option 43 then cycle all the EWC APs.  Then they should boot up as standard CAPWAP APs.  The other conversion methods are in that link too.

------------------------------
Please click Helpful if this post helped you and Accept as Solution (drop down menu at top right of this reply) if this answered your query.
------------------------------
TAC recommended codes for AireOS WLC's   and   TAC recommended codes for 9800 WLC's
Best Practices for AireOS WLC's,   Best Practices for 9800 WLC's   and   Cisco Wireless compatibility matrix
Check your 9800 WLC config with Wireless Config Analyzer using "show tech wireless" output or "config paging disable" then "show run-config" output on AireOS and use Wireless Debug Analyzer to analyze your WLC client debugs
Field Notice: FN63942 APs and WLCs Fail to Create CAPWAP Connections Due to Certificate Expiration
Field Notice: FN72424 Later Versions of WiFi 6 APs Fail to Join WLC - Software Upgrade Required
Field Notice: FN72524 IOS APs stuck in downloading state after 4 Dec 2022 due to Certificate Expired
- Fixed in 8.10.196.0, latest 9800 releases, 8.5.182.12 (8.5.182.13 for 3504) and 8.5.182.109 (IRCM, 8.5.182.111 for 3504)
Field Notice: FN70479 AP Fails to Join or Joins with 1 Radio due to Country Mismatch, RMA needed
Field Notice: FN74383 APs Running 17.12.4/5/6/6a May Run Out of Flash Space Preventing Upgrades
How to avoid boot loop due to corrupted image on Wave 2 and Catalyst 11ax Access Points (CSCvx32806)
Field Notice: FN74035 - Wave2 APs DFS May Not Detect Radar After Channel Availability Check Time
Leo's list of bugs affecting 2800/3800/4800/1560 APs
Default AP console baud rate from 17.12.x is 115200 - introduced by CSCwe88390
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card