cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1206
Views
5
Helpful
9
Replies

APs don't want to join controler

Hello and sorry for my bad english

 

I have mutiples cisco controlers and 2 virtual controlers in ESXI with firmware : 8.3.150.0

All my new AP don't want to join one of the 2 virtual controler. On the second one everthing is fine!

 

I don't understand because :
It is only new AP because all APs are connected and works fine
The 2 virtual controlers have the same version firmware
The 2 controlers are one the same server and exactly same network configuration
When i connect new AP on switch, it is always the same VLAN. So the newtork configuration for the AP is good.
I have enough licences on the controler
I had compare configuration of the AP with on other AP in the secondary controler, it is the same

In "high avaibility" option i put the good controler but the AP try to join and come back to the secondary controler.
In the controler there is no explicit logs, i just find this but nothing after this  :

*spamApTask7: Mar 12 12:38:59.462: dc:8c:37:df:03:d0 CAPWAP Control Msg Received from 10.3.10.184:5264

*spamApTask7: Mar 12 12:38:59.463: dc:8c:37:df:03:d0 CAPWAP Control Msg Received from 10.3.10.184:5264

 

any ideas ?

 

thanks a lot

9 Replies 9

Rafael E
Cisco Employee
Cisco Employee

Can you share the show log from one if the APs? 

do you have by any chance master WLC on the WLC where AP can join? 

in the high availability for APs what do you have configured? 

 

 

Saludos,
Rafael - TAC

"Can you share the show log from one if the APs? "
How i can have this logs ?

 

"do you have by any chance master WLC on the WLC where AP can join?"
Yes, the WLC who have trouble is master

 

"in the high availability for APs what do you have configured?"
Like i do each time, primary controler :  the name of the WLC and the IP adress
Secondary, the second WLC who works

"Can you share the show log from one if the APs?"
I tried connect with SSH on the AP, but it seems not allow. How to do ?

Leo Laohoo
Hall of Fame
Hall of Fame

@Service Informatique wrote:

All my new AP don't want to join one of the 2 virtual controler. On the second one everthing is fine!


Post the complete output to the following WLC commands (from both WLC): 

sh sysinfo
sh ap max
sh time

Result :

 

show sysinfo ot the WLC who work :
Manufacturer's Name.............................. Cisco Systems Inc.
Product Name..................................... Cisco Controller
Product Version.................................. 8.3.150.0
RTOS Version..................................... 8.3.150.0
Bootloader Version............................... 8.3.15.96
Emergency Image Version.......................... 8.3.150.0

OUI File Update Time............................. Sun Sep 07 10:44:07 IST 2014
:2 0:45
Build Type....................................... DATA + WPS

System Name...................................... VWLCARE01
System Location..................................
System Contact...................................
System ObjectID.................................. 1.3.6.1.4.1.9.1.1631
IP Address....................................... 10.3.125.201
IPv6 Address..................................... ::
System Up Time................................... 145 days 21 hrs 17 mins 34 sec s
System Timezone Location......................... (GMT +1:00) Amsterdam, Berlin, Rome, Vienna
System Stats Realtime Interval................... 5
System Stats Normal Interval..................... 180

--More-- or (q)uit

Configured Country............................... FR - France

State of 802.11b Network......................... Enabled
State of 802.11a Network......................... Enabled
Number of WLANs.................................. 5
Number of Active Clients......................... 6

OUI Classification Failure Count................. 43564

Burned-in MAC Address............................ 00:50:56:8D:E9:A5
Maximum number of APs supported.................. 200
System Nas-Id.................................... VWLCARE01
WLC MIC Certificate Types........................ SHA1
Licensing Type................................... RTU
vWLC config...................................... Small

 

Show sys info of the WLC who doesn't work :
Manufacturer's Name.............................. Cisco Systems Inc.
Product Name..................................... Cisco Controller
Product Version.................................. 8.3.150.0
RTOS Version..................................... 8.3.150.0
Bootloader Version............................... 8.3.15.96
Emergency Image Version.......................... 8.3.150.0

OUI File Update Time............................. Sun Sep 07 10:44:07 IST 2014

Build Type....................................... DATA + WPS

System Name...................................... VWLCOCE01
System Location..................................
System Contact...................................
System ObjectID.................................. 1.3.6.1.4.1.9.1.1631
IP Address....................................... 10.3.131.201
IPv6 Address..................................... ::
System Up Time................................... 0 days 15 hrs 19 mins 16 secs
System Timezone Location......................... (GMT +1:00) Amsterdam, Berlin, Rome, Vienna
System Stats Realtime Interval................... 5
System Stats Normal Interval..................... 180


Configured Country............................... FR - France

State of 802.11b Network......................... Enabled
State of 802.11a Network......................... Enabled
Number of WLANs.................................. 6
Number of Active Clients......................... 24

OUI Classification Failure Count................. 30

Burned-in MAC Address............................ 00:0C:29:93:A3:51
Maximum number of APs supported.................. 200
System Nas-Id.................................... VWLCOCE01
WLC MIC Certificate Types........................ SHA1
Licensing Type................................... RTU
vWLC config...................................... Small


Show AP max of the WLC who work :
Max APs Supported................................ 200
Max AP Groups Supported.......................... 200
Max AP join limit................................ 105


Show AP max of the WLC who doesn't work :
Max APs Supported................................ 200
Max AP Groups Supported.......................... 200
Max AP join limit................................ 105


sh time on the WLC who work :
Time............................................. Tue Jun 9 08:25:15 2020

Timezone delta................................... 0:0
Timezone location................................ (GMT +1:00) Amsterdam, Berlin, Rome, Vienna

NTP Servers
NTP Polling Interval......................... 3600

Index NTP Key Index NTP Server Status NTP Msg Auth Status
------- ----------------------------------------------------------------------------------------------
1 0 10.3.255.254 In Sync AUTH DISABLED

 

sh time on the wlc who doesn't work :
Time............................................. Tue Jun 9 08:25:21 2020

Timezone delta................................... 0:0
Timezone location................................ (GMT +1:00) Amsterdam, Berlin, Rome, Vienna

NTP Servers
NTP Polling Interval......................... 3600

Index NTP Key Index NTP Server Status NTP Msg Auth Status
------- ----------------------------------------------------------------------------------------------
1 0 10.3.255.254 In Sync AUTH DISABLED

 

 


@Service Informatique wrote:

10.3.131.201


Is this the Primary WLC?  And all the APs are configured to have "10.3.131.201" as the primary WLC? 

yes

Ok, pick one of the AP and post the complete output to the command "sh ap config general <AP Name>".

result :

 

Cisco AP Identifier.............................. 35
Cisco AP Name.................................... PAOC25
Universal AP..................................... Yes
Universal AP Prime Status........................ NDP
Country code..................................... FR - France
Regulatory Domain allowed by Country............. 802.11bg:-E 802.11a:-E
AP Country code.................................. FR - France
AP Regulatory Domain............................. 802.11bg:-E 802.11a:-E
Switch Port Number .............................. 13
MAC Address...................................... f4:cf:e2:a5:3c:18
IP Address Configuration......................... DHCP
IP Address....................................... 10.3.131.169
IP NetMask....................................... 255.255.0.0
Gateway IP Addr.................................. 10.3.255.254
NAT External IP Address.......................... None
CAPWAP Path MTU.................................. 1485
DHCP Release Override............................ Disabled
Telnet State..................................... Globally Disabled
Ssh State........................................ Globally Disabled
Cisco AP Location................................ Tropical administration couloi r
Cisco AP Floor Label............................. 0

--More-- or (q)uit
Cisco AP Group Name.............................. Oceanopolis
Primary Cisco Switch Name........................ VWLCOCE01
Primary Cisco Switch IP Address.................. 10.3.131.201
Secondary Cisco Switch Name...................... WLCOC1
Secondary Cisco Switch IP Address................ 10.3.131.200
Tertiary Cisco Switch Name.......................
Tertiary Cisco Switch IP Address................. Not Configured
Administrative State ............................ ADMIN_ENABLED
Operation State ................................. REGISTERED
Mirroring Mode .................................. Disabled
AP Mode ......................................... FlexConnect
Public Safety ................................... Disabled
AP SubMode ...................................... Not Configured
Rogue Detection ................................. Enabled
AP Vlan Trunking ................................ Enabled (Inherited)
AP Native Vlan ID: .............................. 3 (Inherited)
Remote AP Debug ................................. Disabled
Logging trap severity level ..................... emergencies
Logging syslog facility ......................... kern
S/W Version .................................... 8.3.150.0
Boot Version ................................... 15.2.4.5
Mini IOS Version ................................ 8.0.115.0
Stats Reporting Period .......................... 180

--More-- or (q)uit
Stats Collection Mode ........................... normal
Radio Core Mode ................................. Disabled
Slub Debug Mode ................................. Disabled
LED State........................................ Enabled
PoE Pre-Standard Switch.......................... Disabled
PoE Power Injector MAC Addr...................... Disabled
Power Type/Mode.................................. DC / Full Power
Number Of Slots.................................. 2
AP Model......................................... AIR-AP2702I-UXK9
AP Image......................................... C2700-K9W8-M
IOS Version...................................... 15.3(3)JD17$
Reset Button..................................... Enabled
AP Serial Number................................. FCW1904P950
AP Certificate Type.............................. Manufacture Installed
AP LAG Configuration Status ..................... Disabled
LAG Support for AP .............................. No
AP multicast mode :.............................. Enabled
Native Vlan Inheritance: ........................ AP
FlexConnect Vlan mode :.......................... Enabled
Native ID :..................................... 3
FlexConnect VLAN ACL Mappings
FlexConnect Group................................ default-flex-group
Group VLAN ACL Mappings

--More-- or (q)uit


Group VLAN Name to Id Mappings
Template in Modified State - apply it to see mappings

AP-Specific FlexConnect Policy ACLs :
L2Acl Configuration ............................. Not Available
FlexConnect Local-Split ACLs :

WLAN ID PROFILE NAME ACL TYPE
------- -------------------------------- --------------------------------- -------

Flexconnect Central-Dhcp Values :

WLAN ID PROFILE NAME Central-Dhcp DNS Override Nat-Pat Type
------- --------------------------------- -------------- -------------- --------- ------

FlexConnect Backup Auth Radius Servers :
Primary Radius Server........................... Disabled
Secondary Radius Server......................... Disabled
FlexConnect Radius/Local Auth Parameters :
Radius Retransmit Count......................... 3 (default)
Active Radius Timeout........................... 5 (default)

--More-- or (q)uit

AP User Mode................................... AUTOMATIC
AP User Name..................................... admin
AP Dot1x User Mode............................... Not Configured
AP Dot1x User Name............................... Not Configured
Cisco AP system logging host..................... 255.255.255.255
AP Up Time....................................... 21 days, 23 h 19 m 38 s
AP LWAPP Up Time................................. 0 days, 00 h 01 m 41 s
Join Date and Time............................... Tue Jun 9 13:49:31 2020
Join Taken Time.................................. 0 days, 00 h 03 m 56 s
Unencrypted Data Keep Alive ..................... Enable
AP broken antenna detection - Status ............ Disabled (Global)
GPS Present...................................... NO
Ethernet Vlan Tag................................ Disabled
Ethernet Port Duplex............................. Auto
Ethernet Port Speed.............................. Auto
AP Link Latency.................................. Disabled
Rogue Detection.................................. Enabled
AP TCP MSS Adjust................................ Disabled
AP CAPWAP Control Port........................... 21442
AP CAPWAP Data Port.............................. 21442
Hotspot Venue Group.............................. Unspecified
Hotspot Venue Type............................... Unspecified

--More-- or (q)uit
DNS server IP ............................. 255.255.255.255
Time Zone Config :
Time Zone State................................. Disabled
Time Zone Offset Hour........................... 00
Time Zone Offset Minute......................... 00

Review Cisco Networking for a $25 gift card