3504 WLC

@Haydn Andrews Are you referring to updating the AP IOS or the primary software as you described? I'm trying to update AP IOS image due to vulnerabilities.

3504?  Oh that is easy.  

And what sort of APs do you want this done?  Are they APs with classic IOS or COS (different OS platform, different command)?

@Leo Laohoo That is how I update the IOS image per AP. Is that the only way to update the AP IOS, one at a time?

 @Arshad Safrulla The controllers are running 8.5.131.0 and the APs are using IOS 15.3(3)JF7$. I will be updating to 15.3(3)JK6 and 15.3(3)JF15 per 3600/3700 AP. I am not updating the AireOS as that would render our 3600s useless as they are no longer supported after a certain release. Is there not a way to only update the IOS image from the controller or prime for all APs?

@Haydn Andrews When trying to use software images in prime, I uploaded the image in step 1 and can't move forward in step 2. The IOS image I uploaded resides on the prime server. See pictures below:

What you have downloaded here are Autonomous AP IOS Software, these are used only when AP's are not centrally managed by a WLC. Since you mentioned about an availability of an WLC managing the AP's, You need to upgrade your WLC to 8.5.171.0 which is the TAC recommended release, this will automatically upgrade the AP's to the same code as well.

@Arshad Safrulla Those are k9w8 images, not k9w7. How are they autonomous images? Are you saying update the controller software will also update AP IOS images? I wasn't aware of that. 

You are correct, these are lightweight images. I will update my previous post to correct the mistake.

!

Yes, as I mentioned before you cannot run a different image in WLC and a different image in AP when AP's are managed by WLC.

---

@Arshad Safrulla wrote:

Is that the only way to update the AP IOS, one at a time?

---

No, I can update several hundred at a time using the method above.  Just cut-n-paste the entire lot in and it will be fine.

Hi,

You cannot upgrade only AP IOS only, since the AP's are controlled by a WLC (3504 in ur case) firmware for the AP's is also provided and controlled by WLC. Therefor both WLC and AP's must run the same code.

Recommended AireOS codes- https://www.cisco.com/c/en/us/support/docs/wireless/wireless-lan-controller-software/200046-tac-recommended-aireos.html

Before the upgrade please make sure that the AP models you have are compatible with the new AireOS you are planning to upgrade. Also if you have PRIME you have to make sure it's compatibility as well. Wireless compatibility matrix as below

https://www.cisco.com/c/en/us/td/docs/wireless/compatibility/matrix/compatibility-matrix.html

Below article will provide an overview in to the WLC upgrade procedure,

https://www.cisco.com/c/en/us/support/docs/wireless-mobility/wireless-lan-wlan/68835-wlc-upgrade.html

However it is recommended that you follow the release notes of the AireOS code that you are intending to upgrade to.

While upgrading it is best that you upload the new AireOS image you are planning to upgrade in to the WLC and then predownload it to all the AP's. This way you can minimize the downtime.

https://www.cisco.com/c/en/us/td/docs/wireless/controller/8-5/config-guide/b_cg85/managing_software.html