Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1701
Views
5
Helpful
10
Replies

AP 3700 cannot join vWLC

Go to solution
wfqk
Level 5
Level 5

‎04-09-2021 08:24 PM - edited ‎07-05-2021 01:07 PM

Hello, Anyone can help to resolve the issue? AP3702 cannot join vWLC 8.5, Below is some info, 

with below message, why it has ip address 10.0.100.175, i did not assign the ip

Please let me know it if any info needed. Thank you

 

 

AP:

 

Invalid input detected at '^' marker.

Translating "CISCO-CAPWAP-CONTROLLER"...domain server (255.255.255.255)

*Apr 10 03:12:29.999: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 10.0.100.55:5246
*Apr 10 03:12:30.003: %LWAPP-3-CLIENTERRORLOG: Config load from flash failed. Initialising Cfg

*Apr 10 03:12:30.019: %LWAPP-3-CLIENTERRORLOG: Config load from flash failed. Initialising Cfg

*Apr 10 03:12:40.019: AP has SHA2 MIC certificate - Using SHA2 MIC certificate for DTLS.

*Apr 10 03:12:00.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.0.100.175 peer_port: 5246
*Apr 10 03:12:00.223: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.0.100.175 peer_port: 5246
*Apr 10 03:12:00.223: %CAPWAP-5-SENDJOIN: sending Join Request to 10.0.100.175
*Apr 10 03:12:05.223: %CAPWAP-5-SENDJOIN: sending Join Request to 10.0.100.175
ipv6 enable
^
% Invalid input detected at '^' marker.

ipv6 address autoconfig
^
% Invalid input detected at '^' marker.

ipv6 address dhcp
^
% Invalid input detected at '^' marker.

Translating "CISCO-CAPWAP-CONTROLLER"...domain server (255.255.255.255)

*Apr 10 03:12:59.999: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 10.0.100.175:5246
*Apr 10 03:13:00.003: %LWAPP-3-CLIENTERRORLOG: Config load from flash failed. Initialising Cfg

*Apr 10 03:13:00.019: %LWAPP-3-CLIENTERRORLOG: Config load from flash failed. Initialising Cfg

*Apr 10 03:13:10.019: AP has SHA2 MIC certificate - Using SHA2 MIC certificate for DTLS.

*Apr 10 03:13:10.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.0.100.175 peer_port: 5246
*Apr 10 03:13:10.223: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.0.100.175 peer_port: 5246
*Apr 10 03:13:10.223: %CAPWAP-5-SENDJOIN: sending Join Request to 10.0.100.175
*Apr 10 03:13:15.223: %CAPWAP-5-SENDJOIN: sending Join Request to 10.0.100.175
ipv6 enable
^
% Invalid input detected at '^' marker.

ipv6 address autoconfig
^
% Invalid input detected at '^' marker.

ipv6 address dhcp
^
% Invalid input detected at '^' marker.

Translating "CISCO-CAPWAP-CONTROLLER"...domain server (255.255.255.255)

*Apr 10 03:14:09.999: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 10.0.100.175:5246
*Apr 10 03:14:10.003: %LWAPP-3-CLIENTERRORLOG: Config load from flash failed. Initialising Cfg

*Apr 10 03:14:10.019: %LWAPP-3-CLIENTERRORLOG: Config load from flash failed. Initialising Cfg

*Apr 10 03:14:20.019: AP has SHA2 MIC certificate - Using SHA2 MIC certificate for DTLS.

*Apr 10 03:14:20.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.0.100.175 peer_port: 5246
*Apr 10 03:14:20.223: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.0.100.175 peer_port: 5246
*Apr 10 03:14:20.223: %CAPWAP-5-SENDJOIN: sending Join Request to 10.0.100.175
*Apr 10 03:14:25.223: %CAPWAP-5-SENDJOIN: sending Join Request to 10.0.100.175
ipv6 enable
^
% Invalid input detected at '^' marker.

ipv6 address autoconfig
^
% Invalid input detected at '^' marker.

ipv6 address dhcp
^
% Invalid input detected at '^' marker.

Translating "CISCO-CAPWAP-CONTROLLER"...domain server (255.255.255.255)

*Apr 10 03:15:19.999: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 10.0.100.175:5246
*Apr 10 03:15:20.003: %LWAPP-3-CLIENTERRORLOG: Config load from flash failed. Initialising Cfg

*Apr 10 03:15:20.019: %LWAPP-3-CLIENTERRORLOG: Config load from flash failed. Initialising Cfg

*Apr 10 03:15:30.019: AP has SHA2 MIC certificate - Using SHA2 MIC certificate for DTLS.

*Apr 10 03:15:30.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.0.100.175 peer_port: 5246
*Apr 10 03:15:30.223: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.0.100.175 peer_port: 5246
*Apr 10 03:15:30.223: %CAPWAP-5-SENDJOIN: sending Join Request to 10.0.100.175
*Apr 10 03:15:35.223: %CAPWAP-5-SENDJOIN: sending Join Request to 10.0.100.175
ipv6 enable
^
% Invalid input detected at '^' marker.

ipv6 address autoconfig
^
% Invalid input detected at '^' marker.

ipv6 address dhcp
^
% Invalid input detected at '^' marker.

Translating "CISCO-CAPWAP-CONTROLLER"...domain server (255.255.255.255)

*Apr 10 03:16:29.999: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 10.0.100.175:5246
*Apr 10 03:16:30.003: %LWAPP-3-CLIENTERRORLOG: Config load from flash failed. Initialising Cfg

*Apr 10 03:16:30.019: %LWAPP-3-CLIENTERRORLOG: Config load from flash failed. Initialising Cfg

*Apr 10 03:16:40.019: AP has SHA2 MIC certificate - Using SHA2 MIC certificate for DTLS.

*Apr 10 03:16:40.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.0.100.175 peer_port: 5246
*Apr 10 03:16:40.223: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.0.100.175 peer_port: 5246
*Apr 10 03:16:40.223: %CAPWAP-5-SENDJOIN: sending Join Request to 10.0.100.175

 

xxxxxx#sh capwap ip config

LWAPP Static IP Configuration
IP Address 10.0.100.112
IP netmask 255.255.255.0
Default Gateway 10.0.100.55
Primary Controller 10.0.100.55

 

(Cisco Controller) >show sysinfo

Manufacturer's Name.............................. Cisco Systems Inc.
Product Name..................................... Cisco Controller
Product Version.................................. 8.5.131.0
RTOS Version..................................... 8.5.131.0
Bootloader Version............................... 8.5.1.85
Emergency Image Version.......................... 8.5.131.0

OUI File Last Update Time........................ Sun Sep 07 10:44:07 IST 2014


Build Type....................................... DATA + WPS

System Name...................................... admin
System Location..................................
System Contact...................................
System ObjectID.................................. 1.3.6.1.4.1.9.1.1631
IP Address....................................... 10.0.100.55
IPv6 Address..................................... ::
System Up Time................................... 0 days 0 hrs 34 mins 34 secs
System Timezone Location.........................
System Stats Realtime Interval................... 5
System Stats Normal Interval..................... 180

--More-- or (q)uit

Configured Country............................... US - United States

State of 802.11b Network......................... Enabled
State of 802.11a Network......................... Enabled
Number of WLANs.................................. 1
Number of Active Clients......................... 0

OUI Classification Failure Count................. 0

Burned-in MAC Address............................ 00:0C:29:5C:59:0A
Maximum number of APs supported.................. 3000
System Nas-Id....................................
WLC MIC Certificate Types........................ SHA1
Licensing Type................................... RTU
vWLC config...................................... Large

 

(Cisco Controller) >show ap summary

Number of APs.................................... 0

Global AP User Name.............................. Not Configured
Global AP Dot1x User Name........................ Not Configured

 

 

 

1 Accepted Solution

Accepted Solutions
10 Replies 10

Go to solution
Leo Laohoo
Hall of Fame
Hall of Fame

‎04-09-2021 08:48 PM

What is the exact model of the AP?  Post the complete output to the AP command of "sh version".

This is a vWLC, was the EULA accepted?

0 Helpful

Go to solution
wfqk
Level 5
Level 5
In response to Leo Laohoo

‎04-10-2021 06:18 AM - edited ‎04-10-2021 07:21 AM

Thank you Leo. Please see the below:

 

AP#sh ver
Cisco IOS Software, C3700 Software (AP3G2-RCVK9W8-M), Version 15.3(3)JA3, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2015 by Cisco Systems, Inc.
Compiled Thu 19-Feb-15 10:27 by prod_rel_team

ROM: Bootstrap program is C3700 boot loader
BOOTLDR: C3700 Boot Loader (AP3G2-BOOT-M) LoaderVersion 15.2(4)JB, RELEASE SOFTWARE (fc1)

APd8b1.909c.b654 uptime is 14 minutes
System returned to ROM by power-on
System image file is "flash:/ap3g2-rcvk9w8-mx/ap3g2-rcvk9w8-xx"
Last reload reason:

 

This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
export@cisco.com.

cisco AIR-CAP3702I-A-K9 (PowerPC) processor (revision A0) with 376810K/134656K bytes of memory.
Processor board ID FCW1922N6GY
PowerPC CPU at 800Mhz, revision number 0x2151
Last reset from power-on
LWAPP image version 8.0.115.0
1 Gigabit Ethernet interface

32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: D8:B1:80:9C:B0:54
Part Number : 73-15243-01
PCA Assembly Number : 000-00000-00
PCA Revision Number :
PCB Serial Number : FOC19217KWZ
Top Assembly Part Number : 068-100374-02
Top Assembly Serial Number : FCW1922N6GY
Top Revision Number : A0
Product/Model Number : AIR-CAP3702I-A-K9

 

Configuration register is 0xF

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to wfqk

‎04-10-2021 06:55 AM

What other models or aps do you have joined to that controller?
-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
wfqk
Level 5
Level 5
In response to Scott Fella

‎04-10-2021 07:20 AM

AP3702i and 3602e can join vWLC8.0, but cannot join vWLC 8.5 or higher version

Thanks

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to wfqk

‎04-10-2021 08:24 AM

So the vWLC was upgrade from 8.0 to 8.5? This isn’t a new install of the vWLC on 8.5?
-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
wfqk
Level 5
Level 5
In response to Scott Fella

‎04-10-2021 08:40 AM

Its new install

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to wfqk

‎04-10-2021 09:01 AM

I would then say that you have an issue with how you setup your vWLC. Also if the ap is pointing to another up, it’s probably because you have option 43 or dns configured. Also it can be that the ap has that ip stored in nvram.
-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
wfqk
Level 5
Level 5
In response to Scott Fella

‎04-10-2021 09:12 AM

Thank you Scott, I also think the installation has some issue. because I just installed vWLC8.0 again in ESXi(last time installed at workstation it can work), but now the vWLC8.0 no longer work(cannot join). I installed it using normal protocol. Not sure what can cause the issue.

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to wfqk

‎04-10-2021 09:35 AM

You need to make sure promiscuous mode is enabled on any ESXi host. Take a look at the guide again to make sure you have all the requirements and have followed the steps for ESXi. VM Workstation is different.
-Scott
*** Please rate helpful posts ***
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card