Re: AP 1832 join issue with 508

Najib Akbari · ‎02-17-2026

Hi,

I have tried to add a spare 1832i into the existing C5508 WLC setup already have several working 1832 and it fails to join with this errors ( it joins for a sec then disjoin). it is not cert validation issue, it has something to do with DTLS encryption something. I have setup a LAB with same WLC model and AP to tshoot further. please assist and let me know if more info needed:

WLC 5508 - 8.3.150.0 :

*spamApTask0: Feb 17 13:29:27.498: e4:4e:2d:10:4f:10 Handshake in progress... check for bufferred msgs
*spamApTask0: Feb 17 13:29:27.499: e4:4e:2d:10:4f:10 checkAndHandleBufferredMsgs called for con 0x19c90fc8 in status 4
*spamApTask0: Feb 17 13:29:27.499: e4:4e:2d:10:4f:10 No Encrypted Handshake in Change Cipher Spec done state.
*spamApTask0: Feb 17 13:29:27.499: e4:4e:2d:10:4f:10 Buffer length 77, alloc_len 81
*spamApTask0: Feb 17 13:29:27.499: e4:4e:2d:10:4f:10 record=Handshake epoch=1 seq=1
*spamApTask0: Feb 17 13:29:27.499: e4:4e:2d:10:4f:10 con->rx_seq_valid 255 con->rx_epoch 1 epoch 1
*spamApTask0: Feb 17 13:29:27.499: e4:4e:2d:10:4f:10 seq_num 1 epoch 1con->rx_seq 14 con->rx_epoch 1
*spamApTask0: Feb 17 13:29:27.499: e4:4e:2d:10:4f:10 con. rx_seq_valid 255 rx_seq 14 rx_epoch 1
*spamApTask0: Feb 17 13:29:27.499: e4:4e:2d:10:4f:10 msg=Unknown or Encrypted
*spamApTask0: Feb 17 13:29:27.499: e4:4e:2d:10:4f:10 record length 64
*spamApTask0: Feb 17 13:29:27.499: 00000000: 16 fe fd 00 01 00 00 00 00 00 01 00 40 20 d0 e7 ............@...
*spamApTask0: Feb 17 13:29:27.499: e4:4e:2d:10:4f:10 Calling BIO_write! 0x19c90fc8, buflen 77

*spamApTask0: Feb 17 13:29:27.499: e4:4e:2d:10:4f:10 Handshake in progress... check for bufferred msgs
*spamApTask0: Feb 17 13:29:27.499: e4:4e:2d:10:4f:10 checkAndHandleBufferredMsgs called for con 0x19c90fc8 in status 4
*spamApTask0: Feb 17 13:29:27.499: e4:4e:2d:10:4f:10 No Encrypted Handshake in Change Cipher Spec done state.
*osapiBsnTimer: Feb 17 13:29:27.965: e4:4e:2d:10:4f:10 Monitor SSL called for 0x19c90fc8

(Cisco Controller) >*osapiBsnTimer: Feb 17 13:30:18.965: Same gateway prevails
*osapiBsnTimer: Feb 17 13:30:28.965: Same gateway prevails
*spamApTask0: Feb 17 13:30:38.027: e4:4e:2d:11:8c:40 Discovery Request from 10.2.1.101:5272

*spamApTask0: Feb 17 13:30:38.028: e4:4e:2d:11:8c:40 ApModel: AIR-AP1832I-B-K9

*spamApTask0: Feb 17 13:30:38.028: e4:4e:2d:11:8c:40 Join Priority Processing status = 0, Incoming Ap's Priority 1, MaxLrads = 117, MaxLicense=17 joined Aps =0
*spamApTask0: Feb 17 13:30:38.028: e4:4e:2d:11:8c:40 apType = 58 apModel: AIR-AP1832I-B-K9

*spamApTask0: Feb 17 13:30:38.028: e4:4e:2d:11:8c:40 apType: Ox3a bundleApImageVer: 8.3.150.0
*spamApTask0: Feb 17 13:30:38.028: e4:4e:2d:11:8c:40 version:8 release:3 maint:150 build:0
*spamApTask0: Feb 17 13:30:38.028: e4:4e:2d:11:8c:40 Discovery Response sent to 10.2.1.101 port 5272

*spamApTask0: Feb 17 13:30:38.028: e4:4e:2d:11:8c:40 Discovery Response sent to 10.2.1.101:5272

*osapiBsnTimer: Feb 17 13:30:38.965: Same gateway prevails
*spamApTask0: Feb 17 13:30:47.525: e4:4e:2d:10:4f:10 Buffer length 226, alloc_len 230
*spamApTask0: Feb 17 13:30:47.525: e4:4e:2d:10:4f:10 record=Handshake epoch=0 seq=0
*spamApTask0: Feb 17 13:30:47.525: e4:4e:2d:10:4f:10 con->rx_seq_valid 255 con->rx_epoch 1 epoch 0
*spamApTask0: Feb 17 13:30:47.525: e4:4e:2d:10:4f:10 seq_num 0 epoch 0con->rx_seq 14 con->rx_epoch 1
*spamApTask0: Feb 17 13:30:47.525: e4:4e:2d:10:4f:10 Duplicate sequence number 0:0
*spamApTask0: Feb 17 13:30:47.525: e4:4e:2d:10:4f:10 Nothing to be done for this packet! 0x19c90fc8

*osapiBsnTimer: Feb 17 13:30:48.965: Same gateway prevails

----------sysinfo----------

(Cisco Controller) >show sysinfo

Manufacturer's Name.............................. Cisco Systems Inc.
Product Name..................................... Cisco Controller
Product Version.................................. 8.3.150.0
Bootloader Version............................... 1.0.1
Field Recovery Image Version..................... 6.0.182.0
Firmware Version................................. FPGA 1.3, Env 1.6, USB console 1.27
OUI File Update Time............................. Sun Sep 07 10:44:07 IST 2014

Build Type....................................... DATA + WPS

System Name...................................... Cisco_72:7d:e4
System Location..................................
System Contact...................................
System ObjectID.................................. 1.3.6.1.4.1.9.1.1069
Redundancy Mode.................................. Disabled
IP Address....................................... 10.2.1.20
IPv6 Address..................................... ::
Last Reset....................................... Software reset
System Up Time................................... 0 days 3 hrs 31 mins 5 secs
System Timezone Location......................... (GMT -8:00) Pacific Time (US and Canada)
System Stats Realtime Interval................... 5

--More-- or (q)uit
System Stats Normal Interval..................... 180

Configured Country............................... US - United States
Operating Environment............................ Commercial (0 to 40 C)
Internal Temp Alarm Limits....................... 0 to 65 C
Internal Temperature............................. +34 C
External Temperature............................. +18 C
Fan Status....................................... OK

State of 802.11b Network......................... Enabled
State of 802.11a Network......................... Enabled
Number of WLANs.................................. 1
Number of Active Clients......................... 1

OUI Classification Failure Count................. 0

Burned-in MAC Address............................ 2C:54:2D:72:7D:E0
Power Supply 1................................... Present, OK
Power Supply 2................................... Absent
Maximum number of APs supported.................. 500
System Nas-Id....................................
WLC MIC Certificate Types........................ SHA1

----------------------------------

AP 1832-i:

[*02/17/2020 21:21:59.8775] CAPWAP State: Discovery
[*02/17/2020 21:21:59.8775] IP DNS query for CISCO-CAPWAP-CONTROLLER.corporate.int
[*02/17/2020 21:21:59.9075] Discovery Request sent to 255.255.255.255, discovery type UNKNOWN(0)
[*02/17/2020 21:21:59.9075] Discovery Response from 10.2.1.20
[*02/17/2020 21:22:09.0000] Started wait dtls timer (60 sec)
[*02/17/2020 21:22:09.0099]
[*02/17/2020 21:22:09.0099] CAPWAP State: DTLS Setup
[*02/17/2020 21:23:06.0522] OOBImageDnld: OOBImageDownloadTimer expired for image download..
[*02/17/2020 21:23:06.0522] OOBImageDnld: Do common error handler for OOB image download..
[*02/17/2020 21:23:06.1022]
[*02/17/2020 21:23:06.1022] CAPWAP State: DTLS Teardown
[*02/17/2020 21:23:06.1421] OOBImageDnld: Do common error handler for OOB image download..
[*02/17/2020 21:23:06.2621] status 'upgrade.sh: Script called with args:[CANCEL]'
[*02/17/2020 21:23:06.3121] do CANCEL, part2 is active part
[*02/17/2020 21:23:06.3321] status 'upgrade.sh: Cleanup tmp files ...'
[*02/17/2020 21:23:06.3721] Discarding msg CAPWAP_WTP_EVENT_REQUEST(type 9) in CAPWAP state: DTLS Teardown(4).
[*02/17/2020 21:23:06.3721] Discarding msg CAPWAP_WTP_EVENT_REQUEST(type 9) in CAPWAP state: DTLS Teardown(4).
[*02/17/2020 21:23:10.8007] OOBImageDnld: OOBImageDownloadTimer expired for image download..
[*02/17/2020 21:23:10.8007] OOBImageDnld: Do common error handler for OOB image download..
[*02/17/2020 21:23:10.8507] No more AP manager addresses remain..
[*02/17/2020 21:23:10.8507] No valid AP manager found for controller 'Cisco_72:7d:e4' (ip: 10.2.1.20)
[*02/17/2020 21:23:10.8507] Failed to join controller Cisco_72:7d:e4.
[*02/17/2020 21:23:10.8507] Failed to join controller.

Mark Elsen · ‎02-18-2026

- @Najib Akbari FYI : https://community.cisco.com/t5/wireless/ap-1832i-join-issue-with-wlc5508/m-p/5370851/highlight/true#M288670

M.

-- Let everything happen to you
   Beauty and terror
      Just keep going
     No feeling is final
Reiner Maria Rilke (1899)