cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2414
Views
11
Helpful
21
Replies

Error air-AP2802l-H-K9 device.

SOM
Level 1
Level 1

I have reset the device and i able login to Mobile Express Web UI but i dont access point.It say zero.I have i have ceck ap in cli .My connected ap shows zeroI I am assuming the it show have ap also .So it act Controller as well as AP .but ibn cli its showing zero.I have went through tutrial and google ..No luck.

 

PLease hlep with any clue or make me understnd this technology.

Thank you in adv .

Following are myn running config

(Cisco Controller) >show run?
run-config running-config
(Cisco Controller) >show run-config


commands Display list of configured commands on WLC.

startup-commands Display list of configured startup commands on WLC.

no-ap Display running configuration of controller without AP configuration.
<cr> Display running configuration of controller.

(Cisco Controller) >show run-config

Press Enter to continue...

System Inventory
NAME: "Mobility Express" , DESCR: "Cisco Aironet 2800 Series Mobility Express"
PID: AIR-AP2802I-H-K9, VID: V03, SN: FGL2329L5EU

Burned-in MAC Address............................ 08:4F:A9:1F:5B:40
Maximum number of APs supported.................. 100
Press Enter to continue or <ctrl-z> to abort


System Information
Manufacturer's Name.............................. Cisco Systems Inc.
Product Name..................................... Cisco Controller
Product Version.................................. 8.10.142.0
OUI File Last Update Time........................ N/A

System Name...................................... jan
System Location..................................
System Contact...................................
System ObjectID.................................. 1.3.6.1.4.1.9.1.2370
IP Address....................................... 172.17.30.253
Last Reset....................................... 1: reload command

System Up Time................................... 0 days 0 hrs 12 mins 13 secs
System Timezone Location.........................
System Stats Realtime Interval................... 5
System Stats Normal Interval..................... 180

Configured Country............................... IN - India

State of 802.11b Network......................... Enabled
State of 802.11a Network......................... Enabled
Number of WLANs.................................. 1

--More or (q)uit current module or <ctrl-z> to abort
Number of Active Clients......................... 0

OUI Classification Failure Count................. 0

Memory Current Usage............................. 77
Memory Average Usage............................. 77
CPU Current Usage................................ 1
CPU Average Usage................................ 3

Flash Type....................................... Compact Flash Card
Flash Size....................................... 1073741824

Burned-in MAC Address............................ 08:4F:A9:1F:5B:40
Maximum number of APs supported.................. 100
System Nas-Id....................................
WLC MIC Certificate Types........................ SHA1/SHA2
Press Enter to continue or <ctrl-z> to abort


Backup Controller Configuration

AP primary Backup Controller ....................
AP secondary Backup Controller ..................
Press Enter to continue or <ctrl-z> to abort


System Time Information:

Time............................................. Thu Jul 18 02:31:49 2019

Timezone delta................................... 0:0
Timezone location................................

NTP Servers
NTP Version.................................. 3
NTP Polling Interval......................... 86400

Index NTP Key Index NTP Server Status NTP Msg Auth Status
---------------------------------------------------------------------------------------------------------------------
1 0 0.ciscome.pool.ntp.org Not Synched AUTH DISABLED
2 0 1.ciscome.pool.ntp.org Not Synched AUTH DISABLED
3 0 2.ciscome.pool.ntp.org Not Synched AUTH DISABLED


Press Enter to continue or <ctrl-z> to abort


Redundancy Information
Press Enter to continue or <ctrl-z> to abort


AP Bundle Information not supported.
Press Enter to continue or <ctrl-z> to abort


Switch Configuration
802.3x Flow Control Mode......................... Disable
FIPS prerequisite features....................... Disabled
WLANCC prerequisite features..................... Disabled
UCAPL prerequisite features...................... Disabled
Last login information display................... Disabled
Last login information display duration.......... 0
DTLS WLC MIC .................................... SHA2
secret obfuscation............................... Enabled
Master key....................................... Not-Configured
password encryption.............................. Disabled
Strong Password Check Features
case-check.................................... Enabled
consecutive-check............................. Enabled
default-check................................. Enabled
username-check................................ Enabled
position-check................................ Enabled
case-digit-check.............................. Enabled
Min. Password length.......................... 8
Min. Upper case chars......................... 0
Min. Lower case chars......................... 0
Min. Digits chars............................. 0

--More or (q)uit current module or <ctrl-z> to abort
Min. Special chars............................ 0
Mgmt User
Password Lifetime [days]...................... 0
Password Lockout.............................. Disabled
Lockout Attempts.............................. 3
Lockout Timeout [mins]........................ 5
Restore-Password.............................. Enabled
SNMPv3 User
Password Lifetime [days]...................... 0
Password Lockout.............................. Disabled
Lockout Attempts.............................. 3
Lockout Timeout [mins]........................ 5
Press Enter to continue or <ctrl-z> to abort


Network Information
RF-Network Name............................. jan
DNS Server IP1.............................. 208.67.222.222
DNS Server IP2.............................. 208.67.220.220
Web Mode.................................... Disable
Secure Web Mode............................. Enable
Secure Web Mode Cipher-Option High.......... Enable
Secure Web Mode SSL Protocol................ Disable
OCSP........................................ Disabled
OCSP responder URL..........................
Network 2-factor-authentcation.............. Disable
2FA Username field ..................... Common Name
Secure Shell (ssh).......................... Enable
Secure Shell (ssh) Cipher-Option High....... Enable
Telnet...................................... Disable
Ethernet Multicast Forwarding............... Disable
Ethernet Broadcast Forwarding............... Disable
IPv4 AP Multicast/Broadcast Mode............ Multicast Address : 0.0.0.0
IPv6 AP Multicast/Broadcast Mode............ Multicast Address : ::
IGMP snooping............................... Disabled
MLD snooping................................ DisabledMLD time
IGMP timeout................................ 60 seconds
IGMP Query Interval......................... 20 seconds
.......................... 300 seconds
Cisco AP Default Master..................... Disable
AP Join Priority............................ Disable
Mgmt Via Wireless Interface........out................................. 60 secondsMLD query interval.......................... 20 secondsUser Idle Timeout........................... 300 secondsARP Idle Timeout..
......... En
able
Mgmt Via Dynamic Inte
rface.................. Disa
ble
Bridge MAC filter Conf
ig.................... Enabl
e
Bridge Security Mode....
............
........ EAP
Mesh Full Sector DFS.........
............
... Enable
Mesh Backhaul R
RM..........................
. Disable
AP Fallback ....
............................
Enable
AP EasyAdmin .....
.......................... D
isable
AP Virtual IP .....
......................... 10
.1.0.6
Web Auth CMCC Suppo
rt ...................... Di
sabled
Web Auth Redirect P
orts .................... 80

Web Auth Proxy Redirect
................... Disable

Web Auth Captive-Bypass
.................. Disable

Web Auth Secure Web ......
................. Enable
W
eb Auth Secure Web Cipher Op
tion ......... Disable
We
b Auth Secure Web Sslv3 ...
.............. Disable
Web
Auth Secure Redirection ..
............. Enable
Web A
uth AP Ethernet MAC in Redir
ection .... Disable
Fast S
SID Change ........................... Enabled
Max WLAN Supported ......................... 512
IP/MAC Addr Binding Check .................. Enabled
Link Local Bridging Status ................. Disabled
CCX-lite status ............................ Disable
oeap-600 dual-rlan-ports ................... Disable
oeap local-network ......................... Enable
oeap-600 Split Tunneling (Printers)......... Disable
mDNS snooping............................... Disabled
mDNS Query Interval......................... 15 minutes
Web Color Theme............................. Default
Capwap Prefer Mode.......................... IPv4
Network Profile............................. Disabled
Client ip conflict detection (DHCP) ........ Disabled
Mesh BH RRM ................................ Disable
Mesh Aggressive DCA......................... Disable
Mesh Auto RF................................ Disable
HTTP Profiling Port......................... 80
HTTP-Proxy Ip Address....................... 0.0.0.0
HTTP-Proxy Port............................. 80
WGB Client Forced L2 Roam................... Disabled
DHCP Timeout (seconds)...................... 120
Press Enter to continue or <ctrl-z> to abort

--More or (q)uit current module or <ctrl-z> to abort

Port Summary
STP Admin Physical Physical Link Link
Pr Type Stat Mode Mode Status Status Trap POE
-- ------- ---- ------- ---------- ---------- ------ ------- ---------
1 Normal Forw Enable Auto 1000 Full Up Enable N/A
Press Enter to continue or <ctrl-z> to abort

AP Summary
Number of APs.................................... 0
Global AP User Name.............................. janGlobal AP Dot1x User Name........................ Not ConfiguredGlobal AP Dot1x EAP Method....................... EAP-FA* prefix indicates Cisco Internal AAP Tcp-Mss-Adjust InfoAP Name TCP State MSS Size------------------ -------- AP LocationTotal Number of AP Groups........................ 1 Site Name........................................ default-groupSite Description................................. <none>NAS-identifier................................... noneClient Traffic QinQ Enable....................... FALSEDHCPv4 QinQ Enable............................... FALSEAP Operating Class............................... Not-configuredCapwap Prefer Mode............................... Not-configuredAP broken antenna detection - Status............. DisabledCustomWeb Global Status.......................... EnabledExternal Web Authentication URL.................. <None>Lan Fast Switching Status........................ DisableRF Profile----------2.4 GHz band..................................... <none>5 GHz band....................................... <noneWLAN ID Interface Network Admission Control Radio Policy OpenDnsProfile------- ----------- ------------------ 1 management Disabled None None*AP3600 with 802.11ac Module will only advertise first 8 WLANs on 5GHz radio Lan Port configs ---------------LAN Status POE Power Level RLAN--- ------- ---- ---------- ----- 1 Disabled Disabled None None
NAT Configura 2 Disabled Disabled None None 3 Disabled None 4 Disabled Disabled None External Module configs ----------------------------LAN Status POE RLAN--- ------- ---- ----- 1 Disabled -----------------------------USB Module Status................................ EnableAP Name Slots AP Model Ethernet MAC Location Port Country Priority------------------ ----- ------------------- ----------------- ---------------- ---- ------- --------Fabric Flex Acl Template Name ................... Not ConfiguredPress Enter to continue or <ctrl-z> to abortRF ProfileNumber of RF Profiles............................ 6Out Of Box State................................. DisableOut Of Box Persistence........................... DisableRF Profile Name Band Description 11n-client-only Applied --------------------------------- ------- ----------------------------------- ------------------ ----------High-Client-Density-802.11a 5 GHz <none> disable No High-Client-Density-802.11bg 2.4 GHz <none> disable No Low-Client-Density-802.11a 5 GHz <none> disable No Low-Client-Density-802.11bg 2.4 GHz <none> disable No Typical-Client-Density-802.11a 5 GHz <none> Typical-Client-Density-802.11bg 2.4 GHz <none> disable No RF Profile name................................ High-Client-Density-802.11aDescription...................................... <none>AP Group Name.................................... <none>Radio policy..................................... 5 GHz11n-client-only.................................. disabledTransmit Power Threshold v1...................... -65 dBmTransmWLAN ID Thresho Max ClientVoice AC:Video AC: AQ = Air Quality OptimizedRoaming Additional Clean Air Settings:AQ = Air Quality RF Client Steering ConfigurationsPtion Info

ress Enter to continue or <ctrl-z> to abort IP Address Hash Key Mobility Data DTLS ConfigurationAdvanced Hotspot CommandAdvanced BLE ConfiguratiomDNS Profile Name....................
** DHCP Configuration **No scopes defined


** WLAN Configuration **
ID SSID Status Scope Name Nat Status P2PBlocking VLAN
1 som Disabled none Disabled Disabled 0


Press Enter to continue or <ctrl-z> to abort

Exclusion List ConfigurationUnable to retrieve exclusion-list entry

Press Enter to continue or <ctrl-z> to abort

CDP Configuration
cdp version v2
Press Enter to continue or <ctrl-z> to abort

Country Channels Configuration

Configured Country............................. IN - India
KEY: * = Channel is legal in this country and may be configured manually.
A = Channel is the Auto-RF default in this country.
. = Channel is not legal in this country.
C = Channel has been configured for use by Auto-RF.
x = Channel is available to be configured for use by Auto-RF.
(-,-) = (indoor, outdoor) regulatory domain allowed by this country.
-----------------:+-+-+-+-+-+-+-+-+-+-+-+-+-+-
802.11bg :
Channels : 1 1 1 1 1
: 1 2 3 4 5 6 7 8 9 0 1 2 3 4
-----------------:+-+-+-+-+-+-+-+-+-+-+-+-+-+-
IN (-A ,-AN A * * * * A * * * * A . . .
-----------------:+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-
802.11a : 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1
Channels : 3 3 3 4 4 4 4 4 5 5 6 6 0 0 0 1 1 2 2 2 3 3 4 4 4 5 5 6 6 6 7
: 4 6 8 0 2 4 6 8 2 6 0 4 0 4 8 2 6 0 4 8 2 6 0 4 9 3 7 1 5 9 3
-----------------:+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-
IN (-DN ,-DN . A . A . A . A A A A A A A A A A A A A A A A A A A A A * * *
Press Enter to continue or <ctrl-z> to abort

WPS Configuration Summary

............ UnconfiguredWLAN ConfigurationNetwork Admission ControlQuality of Service............................... SilverRadius ServersSecurity Static WEP Keys............................... Disabled FlexConnect Learn IP Address.................. EnabledDMS DB is empty Mobility Anchor ListLocal Policy---------------- Fabric StatusPolicy ConfigurationL2ACL ConfigurationRADIUS ConfigurationFallback Test:Authentication ServerAccounting ServerTACACS ConfiguratiAccounting ServersLDAP ConfigurationTimer: EAP-FAST:Dns ConfigurationFallback Radio Shut: DisabledFlexConnect Group DetailGroup Radius Servers Settings:PAC Timeout.................-------------------------------- -------Qos Profile InfoBurst Realtime Data Rate......................... 0 0dot1p............................................ 0Press Enter to continue or <ctrl-z> to abort 6 1 10 2 12 2 14 2Mac Filter InfoAuthorization LisStatistics (client-count basedDHCP Opt-82 Format: binary
--More-- or (q)uit
Auto-Immune
Auto-Immune.................................... Disabled
Auto-Immune by aWIPS Prevention................ Disabled

Client Exclusion Policy
Excessive 802.11-association failures.......... Enabled
Excessive 802.11-authentication failures....... Enabled
Excessive 802.1x-authentication................ Enabled
IP-theft....................................... Enabled
Excessive Web authentication failure........... Enabled
Maximum 802.1x-AAA failure attempts............ 3

Signature Policy
Signature Processing........................... Enabled


Management Frame Protection
Global Infrastructure MFP state................ DISABLED (*all infrastructure settings are overridden)
AP Impersonation detection..................... Disabled
Controller Time Source Valid................... False

WLAN Client
WLAN ID WLAN Name Status Protection

--More-- or (q)uit
------- ------------------------- --------- ----------
1 som Disabled Optional


Press Enter to continue or <ctrl-z> to abort

Press Enter to continue or <ctrl-z> to abort

Press Enter to continue or <ctrl-z> to abort

Custom Web Configuration

Radius Authentication Method..................... PAP
Cisco Logo....................................... Enabled
CustomLogo....................................... None
Custom Title..................................... None
Custom Message................................... None
Custom Redirect URL.............................. None
Web Authentication Login Success Page Mode....... Default
Web Authentication Type.......................... Internal Default
Logout-popup..................................... Enabled
External Web Authentication URL.................. None
QR Code Scanning Bypass Timer.................... 0

--More-- or (q)uit
QR Code Scanning Bypass Count.................... 0

Configuration Per Profile:

Press Enter to continue or <ctrl-z> to abort

Core dump Configuration

Core Dump upload is disabled

Core Dump file on flash:

 

Press Enter to continue or <ctrl-z> to abort

Press Enter to continue or <ctrl-z> to abort

Rogue AP Configuration

Rogue Detection Security Level................... high
Rogue Pending Time............................... 60 secs
Rogue on wire Auto-Contain....................... Disabled

--More-- or (q)uit
Rogue using our SSID Auto-Contain................ Disabled
Valid client on rogue AP Auto-Contain............ Disabled
Rogue AP timeout................................. 1200
Rogue Detection Report Interval.................. 30
Rogue Detection Min Rssi......................... -80
Rogue Detection Transient Interval............... 300
Rogue Detection Client Num Threshold............. 0
Validate rogue AP against AAA.................... Disabled
Rogue AP AAA validation interval................. 0 secs
Total Rogues(AP+Ad-hoc) supported................ 200
Total Rogues classified.......................... 0

MAC Address Class State #Det #Rogue #Highest RSSI #RSSI #Channel #Second Highest #RSSI #Channel
Aps Clients det-Ap RSSI Det-Ap
----------------- ------------ -------------------- ---- ------- ----------------- ------ --------------- ----------------- ------ ---------------

Rogue AP RLDP Configuration

Rogue Location Discovery Protocol................ Enabled & Monitor-Only
RLDP Schedule Config............................. Disabled
RLDP Scheduling Operation........................ Disabled
RLDP Retry....................................... 1


--More-- or (q)uit
RLDP Start Time RLDP End Time Day
--------------- ------------- ---

Rogue Auto Contain Configuration

Containment Level................................ 0(auto)
monitor_ap_only.................................. false

Adhoc Rogue Configuration

Detect and report Ad-Hoc Networks................ Enabled
Auto-Contain Ad-Hoc Networks..................... Disabled
Total Rogues(Ad-Hoc+AP) supported ............... 200
Total Ad-Hoc entries ............................ 0

Client MAC Address Adhoc BSSID State # APs Last Heard
------------------ ------------------ ----------------- ------ -----------------------

Rogue Client Configuration

Validate rogue clients against AAA............... DisabledValidate rogue clients against MSE............... EnabledTotal Rogue Clients supported......Total Rogue Clients present...................... 0MAC Address State # APs Last Heard ----------------- ------------------ ----- -----------------------Ignore List ConfigurationMAC Address ----------------- Rogue Rule ConfigurationPriority Rule Name Rule state Class Type Notify State Match Hit Count-------- -------------------------------- ----------- ----------- -------- -------- ------ ---------Rogue Rule Detailed ConfigurationRogue containment ConfigurationRogue containment flexconnect.................... disabledRogue containment auto-rate...................... enabledPress Enter to continue orMedia-Stream ConfigurationMulticast-direct State........................... disableAllowed WLANs.................................... Stream Name Start IP End IP Operation Status------------- --------------------------------------- --------------------------------------- ----------------URL.............................................. E-mail........................................... Phone............................................ Note............................................. State............................................ disable2.4G Band Media-Stream Confi

 

2 Accepted Solutions

Accepted Solutions

Rich R
VIP
VIP

1. Refer to https://www.cisco.com/c/dam/assets/prod/wireless/wireless-compliance-tool/index.html  You have configured country code India - which requires AP regulatory domain -D.   Your AP is -H (Bahrain and China)!

2. You're running 8.10.142.0 which is quite old.  Update as per links below.  I'd recommend 8.10.183.0 (current latest).

3. Do you have the AP connected to a LAN/VLAN with DHCP server?  When running ME the WLC and the AP component both require their own IP addresses.  If you don't have a DHCP server then the AP can't get an IP address then can't join the WLC.  In that case either set up DHCP or assign a static IP to the AP.

View solution in original post

None of that makes sense - please just follow the instructions in the config guide step by step.

Comments:
WLC config step - looks like you trying to convert to ME - presume "after that i have set management ip,username and password " means you succeeded and run the day zero startup config script for ME.
Then Access Point config step - you seem to be trying to convert it back to CAPWAP (why?) but using an ME tar file so that will never work well if at all!!!!  CAPWAP requires a k9w8 tar file.
"capwap ap ip address 172.17.30.5 255.255.255.0" but "capwap ap controller ip address 172.168.0.2"
Why are the AP and controller on different subnets?  ME is intended for all APs and ME WLC to be on the same subnet and layer 2 broadcast domain.  You can make it work over a router but it's not intended to be used that way and I would not recommend it - especially if you can't even get the basics working - that's really only for experienced, advanced users.  Concentrate on getting it working on the same subnet and when you understand it really well then maybe think about doing advanced stuff.  If they're on the same subnet then no need to configure the controller on the AP because it will automatically discover the controller by broadcast on the local subnet.

And I'd recommend using DHCP so that you don't need to configure AP static IP addresses.  If you desperately want them to have fixed addresses then you can reserve the IPs on the DHCP server but it's really not necessary.  You're just making life more difficult for yourself.

View solution in original post

21 Replies 21

marce1000
VIP
VIP

 

 - It's very unclear what your actual problem is ; are  you saying that other access points can not join the mobility express based controller , running on the access point ?

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '

I am trying make mobile express and I was able access webui .but control
isn't broadcasting ssid..nor showing a ap from while checking for AP from
cli.

And tried joining a other ap to mobile ..that's also not working .

Did you even read my reply? 

Remember other APs will need a TFTP server to download the software from (which you setup with the contents of the ME software zip file - unzipped on the server) and the TFTP server will need to be setup on the ME WLC which tells the AP to fetch the software from the configured TFTP server.

Dear Sir,

Following are the  step i have done to configure ap and wlc.You help and suggestion will be highl apcrciated .Thnak you adv

PLease remcomend me right one 

Following are my command thats has been used to configure wlc and ap

DHCP and DNS is working fine

WLC Config step
capwap ap ip 172.17.30.2 255.255.255.0 172.17.30.1
ap ap-type mobile express tftp://172.17.30.11/AIR-AP1815-K9-ME-8-10-142-0.tar
tftp was setup in my laptop
after that i have set management ip,username and password with the ip of management i am able to login to controller

Access Point Config step
capwap ap ip address 172.17.30.5 255.255.255.0
capwap ap ip default-gateway 172.17.30.1
capwap ap controller ip address 172.168.0.2
ap ap-type capwap tftp://172.17.30.2/AIR-AP1815-K9-ME-8-10-142-0.tar

None of that makes sense - please just follow the instructions in the config guide step by step.

Comments:
WLC config step - looks like you trying to convert to ME - presume "after that i have set management ip,username and password " means you succeeded and run the day zero startup config script for ME.
Then Access Point config step - you seem to be trying to convert it back to CAPWAP (why?) but using an ME tar file so that will never work well if at all!!!!  CAPWAP requires a k9w8 tar file.
"capwap ap ip address 172.17.30.5 255.255.255.0" but "capwap ap controller ip address 172.168.0.2"
Why are the AP and controller on different subnets?  ME is intended for all APs and ME WLC to be on the same subnet and layer 2 broadcast domain.  You can make it work over a router but it's not intended to be used that way and I would not recommend it - especially if you can't even get the basics working - that's really only for experienced, advanced users.  Concentrate on getting it working on the same subnet and when you understand it really well then maybe think about doing advanced stuff.  If they're on the same subnet then no need to configure the controller on the AP because it will automatically discover the controller by broadcast on the local subnet.

And I'd recommend using DHCP so that you don't need to configure AP static IP addresses.  If you desperately want them to have fixed addresses then you can reserve the IPs on the DHCP server but it's really not necessary.  You're just making life more difficult for yourself.

https://www.cisco.com/c/en/us/td/docs/wireless/access_point/mob_exp/810/user_guide/b_ME_User_Guide_810.html

https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/8-8/b_cisco_mobility_express_8_8.html

https://www.cisco.com/c/en/us/td/docs/wireless/access_point/mob_exp/810/cmd_ref/me_cr_book-810.html

https://www.cisco.com/c/en/us/td/docs/wireless/access_point/mob_exp/810/release_notes/b_ME_RN_810.html

https://www.cisco.com/c/en/us/support/docs/wireless/mobility-express-aironet-access-points/215410-convert-capwap-1852-access-point-ap-to.html

https://www.cisco.com/c/en/us/support/docs/wireless/mobility-express/210531-Mobility-Express-Internal-DHCP.html

 

Dear sir,

now i getting this error .

CAPWAP State: DTLS Teardown
[*11/04/2020 13:46:55.1419] Script called with args:[ABORT]
[*11/04/2020 13:46:55.2022] do ABORT, part2 is active part
[*11/04/2020 13:46:55.2238] Cleanup tmp files ...
AP084F.A91F.5B56#[*11/04/2020 13:47:09.8175] Discovery Request sent to FlexME 172.17.30.253
[*11/04/2020 13:47:09.8204] Discovery Request sent to FlexME ::
[*11/04/2020 13:47:09.8212] Discovery Response from 172.17.30.253
[*11/04/2020 13:47:19.1804]
[*11/04/2020 13:47:19.1804] CAPWAP State: DTLS Setup
[*11/04/2020 13:47:19.5310]
[*11/04/2020 13:47:19.5310] CAPWAP State: Join
[*11/04/2020 13:47:19.5343] Sending Join request to 172.17.30.253 through port 5256
[*11/04/2020 13:47:19.5392] Join Response from 172.17.30.253
[*11/04/2020 13:47:19.5393] AC accepted join request with result code: 0
[*11/04/2020 13:47:19.5393] Received wlcType 1, timer 120
[*11/04/2020 13:47:19.5791]
[*11/04/2020 13:47:19.5791] CAPWAP State: Image Data
[*11/04/2020 13:47:19.5795] AP image version 8.10.142.0 backup 0.0.0.0, Controller 8.10.142.0
[*11/04/2020 13:47:19.5795] Version is the same, do not need update.
[*11/04/2020 13:47:19.6143] Script called with args:[NO_UPGRADE]
[*11/04/2020 13:47:19.7007] do NO_UPGRADE, part2 is active part
[*11/04/2020 13:47:19.7075]
[*11/04/2020 13:47:19.7075] CAPWAP State: Configure
[*11/04/2020 13:47:23.1708] Re-Tx Count=1, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:47:23.1708]
[*11/04/2020 13:47:26.0217] Re-Tx Count=2, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:47:26.0217]
[*11/04/2020 13:47:28.8725] Re-Tx Count=3, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:47:28.8725]
[*11/04/2020 13:47:31.7234] Re-Tx Count=4, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:47:31.7234]
[*11/04/2020 13:47:34.5742] Re-Tx Count=5, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:47:34.5742]
[*11/04/2020 13:47:37.4251] Max retransmission count exceeded, going back to DISCOVER mode.
[*11/04/2020 13:47:37.4251] Dropping msg CAPWAP_CONFIGURATION_STATUS, type = 4, len = 2809, eleLen = 2817, sendSeqNum = 1
[*11/04/2020 13:47:37.4499]
[*11/04/2020 13:47:37.4499] CAPWAP State: DTLS Teardown
[*11/04/2020 13:47:37.5254] Script called with args:[ABORT]
[*11/04/2020 13:47:37.5833] do ABORT, part2 is active part
[*11/04/2020 13:47:37.6052] Cleanup tmp files ...
[*11/04/2020 13:47:52.1991] Discovery Request sent to FlexME 172.17.30.253
[*11/04/2020 13:47:52.2071] Discovery Request sent to FlexME ::
[*11/04/2020 13:47:52.2087] Discovery Response from 172.17.30.253
[*11/04/2020 13:48:01.5632]
[*11/04/2020 13:48:01.5632] CAPWAP State: DTLS Setup
[*11/04/2020 13:48:01.9156]
[*11/04/2020 13:48:01.9156] CAPWAP State: Join
[*11/04/2020 13:48:01.9186] Sending Join request to 172.17.30.253 through port 5256
[*11/04/2020 13:48:01.9217] Join Response from 172.17.30.253
[*11/04/2020 13:48:01.9218] AC accepted join request with result code: 0
[*11/04/2020 13:48:01.9219] Received wlcType 1, timer 120
[*11/04/2020 13:48:01.9618]
[*11/04/2020 13:48:01.9618] CAPWAP State: Image Data
[*11/04/2020 13:48:01.9621] AP image version 8.10.142.0 backup 0.0.0.0, Controller 8.10.142.0
[*11/04/2020 13:48:01.9621] Version is the same, do not need update.
[*11/04/2020 13:48:01.9967] Script called with args:[NO_UPGRADE]
[*11/04/2020 13:48:02.0540] do NO_UPGRADE, part2 is active part
[*11/04/2020 13:48:02.0608]
[*11/04/2020 13:48:02.0608] CAPWAP State: Configure
[*11/04/2020 13:48:05.5537] Re-Tx Count=1, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:48:05.5537]
[*11/04/2020 13:48:08.4045] Re-Tx Count=2, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:48:08.4045]
[*11/04/2020 13:48:11.2554] Re-Tx Count=3, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:48:11.2554]
[*11/04/2020 13:48:14.1063] Re-Tx Count=4, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:48:14.1063]
[*11/04/2020 13:48:16.9572] Re-Tx Count=5, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:48:16.9572]
[*11/04/2020 13:48:19.8081] Max retransmission count exceeded, going back to DISCOVER mode.
[*11/04/2020 13:48:19.8081] Dropping msg CAPWAP_CONFIGURATION_STATUS, type = 4, len = 2809, eleLen = 2817, sendSeqNum = 1
[*11/04/2020 13:48:19.8327]
[*11/04/2020 13:48:19.8327] CAPWAP State: DTLS Teardown
[*11/04/2020 13:48:19.9075] Script called with args:[ABORT]
[*11/04/2020 13:48:19.9661] do ABORT, part2 is active part
[*11/04/2020 13:48:19.9876] Cleanup tmp files ...
[*11/04/2020 13:48:34.5861] Discovery Request sent to FlexME 172.17.30.253
[*11/04/2020 13:48:34.5942] Discovery Request sent to FlexME ::
[*11/04/2020 13:48:34.5949] Discovery Response from 172.17.30.253
[*11/04/2020 13:48:43.9461]
[*11/04/2020 13:48:43.9461] CAPWAP State: DTLS Setup
[*11/04/2020 13:48:44.2942]
[*11/04/2020 13:48:44.2942] CAPWAP State: Join
[*11/04/2020 13:48:44.2972] Sending Join request to 172.17.30.253 through port 5256
[*11/04/2020 13:48:44.3004] Join Response from 172.17.30.253
[*11/04/2020 13:48:44.3004] AC accepted join request with result code: 0
[*11/04/2020 13:48:44.3004] Received wlcType 1, timer 120
[*11/04/2020 13:48:44.3400]
[*11/04/2020 13:48:44.3400] CAPWAP State: Image Data
[*11/04/2020 13:48:44.3403] AP image version 8.10.142.0 backup 0.0.0.0, Controller 8.10.142.0
[*11/04/2020 13:48:44.3404] Version is the same, do not need update.
[*11/04/2020 13:48:44.3756] Script called with args:[NO_UPGRADE]
[*11/04/2020 13:48:44.4332] do NO_UPGRADE, part2 is active part
[*11/04/2020 13:48:44.4400]
[*11/04/2020 13:48:44.4400] CAPWAP State: Configure
[*11/04/2020 13:48:47.9366] Re-Tx Count=1, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:48:47.9366]
[*11/04/2020 13:48:50.7875] Re-Tx Count=2, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:48:50.7875]
[*11/04/2020 13:48:53.6384] Re-Tx Count=3, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:48:53.6384]
[*11/04/2020 13:48:56.4894] Re-Tx Count=4, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:48:56.4894]
[*11/04/2020 13:48:59.3403] Re-Tx Count=5, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:48:59.3403]
[*11/04/2020 13:49:02.1911] Max retransmission count exceeded, going back to DISCOVER mode.
[*11/04/2020 13:49:02.1912] Dropping msg CAPWAP_CONFIGURATION_STATUS, type = 4, len = 2809, eleLen = 2817, sendSeqNum = 1
[*11/04/2020 13:49:02.2152]
[*11/04/2020 13:49:02.2152] CAPWAP State: DTLS Teardown
[*11/04/2020 13:49:02.2899] Script called with args:[ABORT]
[*11/04/2020 13:49:02.3492] do ABORT, part2 is active part
[*11/04/2020 13:49:02.3711] Cleanup tmp files ...
[*11/04/2020 13:49:16.9664] Discovery Request sent to FlexME 172.17.30.253
[*11/04/2020 13:49:16.9737] Discovery Request sent to FlexME ::
[*11/04/2020 13:49:16.9756] Discovery Response from 172.17.30.253
[*11/04/2020 13:49:26.3471]
[*11/04/2020 13:49:26.3471] CAPWAP State: DTLS Setup
[*11/04/2020 13:49:26.7158]
[*11/04/2020 13:49:26.7158] CAPWAP State: Join
[*11/04/2020 13:49:26.7188] Sending Join request to 172.17.30.253 through port 5256
[*11/04/2020 13:49:26.7261] Join Response from 172.17.30.253
[*11/04/2020 13:49:26.7262] AC accepted join request with result code: 0
[*11/04/2020 13:49:26.7262] Received wlcType 1, timer 120
[*11/04/2020 13:49:26.7615]
[*11/04/2020 13:49:26.7616] CAPWAP State: Image Data
[*11/04/2020 13:49:26.7619] AP image version 8.10.142.0 backup 0.0.0.0, Controller 8.10.142.0
[*11/04/2020 13:49:26.7619] Version is the same, do not need update.
[*11/04/2020 13:49:26.7971] Script called with args:[NO_UPGRADE]
[*11/04/2020 13:49:26.8545] do NO_UPGRADE, part2 is active part
[*11/04/2020 13:49:26.8613]
[*11/04/2020 13:49:26.8613] CAPWAP State: Configure
[*11/04/2020 13:49:30.3236] Re-Tx Count=1, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:49:30.3236]
[*11/04/2020 13:49:33.1744] Re-Tx Count=2, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:49:33.1744]
[*11/04/2020 13:49:36.0253] Re-Tx Count=3, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:49:36.0253]
[*11/04/2020 13:49:38.8762] Re-Tx Count=4, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:49:38.8762]
[*11/04/2020 13:49:41.7271] Re-Tx Count=5, Max Re-Tx Value=5, SendSeqNum=1, NumofPendingMsgs=1
[*11/04/2020 13:49:41.7271]
[*11/04/2020 13:49:44.5779] Max retransmission count exceeded, going back to DISCOVER mode.
[*11/04/2020 13:49:44.5780] Dropping msg CAPWAP_CONFIGURATION_STATUS, type = 4, len = 2809, eleLen = 2817, sendSeqNum = 1
[*11/04/2020 13:49:44.5993]
[*11/04/2020 13:49:44.5993] CAPWAP State: DTLS Teardown
[*11/04/2020 13:49:44.6765] Script called with args:[ABORT]
[*11/04/2020 13:49:44.7344] do ABORT, part2 is active part
[*11/04/2020 13:49:44.7569] Cleanup tmp files ...

 

1. Upgrade to 8.10.183.0
https://software.cisco.com/download/home/286304510/type/286289839/release/8.10.183.0
https://software.cisco.com/download/home/286306794/type/286289839/release/8.10.183.0
2. Take note of my previous comments about mismatched regulatory domain and country code.

yes sir i have setpup wlc on ap

WLC is not detecting its own ap 

Following are the command thats is being used to configure

DHCP and DNS is working fine

WLC Config step
capwap ap ip 172.17.30.2 255.255.255.0 172.17.30.1
ap ap-type mobile express tftp://172.17.30.11/AIR-AP1815-K9-ME-8-10-142-0.tar
tftp was setup in my laptop
after that i have set management ip,username and password with the ip of management i am able to login to controller

Access Point Config step
capwap ap ip address 172.17.30.5 255.255.255.0
capwap ap ip default-gateway 172.17.30.1
capwap ap controller ip address 172.168.0.2
ap ap-type capwap tftp://172.17.30.2/AIR-AP1815-K9-ME-8-10-142-0.tar

Rich R
VIP
VIP

1. Refer to https://www.cisco.com/c/dam/assets/prod/wireless/wireless-compliance-tool/index.html  You have configured country code India - which requires AP regulatory domain -D.   Your AP is -H (Bahrain and China)!

2. You're running 8.10.142.0 which is quite old.  Update as per links below.  I'd recommend 8.10.183.0 (current latest).

3. Do you have the AP connected to a LAN/VLAN with DHCP server?  When running ME the WLC and the AP component both require their own IP addresses.  If you don't have a DHCP server then the AP can't get an IP address then can't join the WLC.  In that case either set up DHCP or assign a static IP to the AP.

Dear Mr @ Richard

Following are the  step i have done to configure ap and wlc.Please if you have docuemt to configure on ap and wlc.Please do share me.I have tried with google and youtube i was not able to solve this problem,You help and suggestion will be highl apcrciated .

DHCP and DNS is working fine

WLC Config step
capwap ap ip 172.17.30.2 255.255.255.0 172.17.30.1
ap ap-type mobile express tftp://172.17.30.11/AIR-AP1815-K9-ME-8-10-142-0.tar
tftp was setup in my laptop
after that i have set management ip,username and password with the ip of management i am able to login to controller

Access Point Config step
capwap ap ip address 172.17.30.5 255.255.255.0
capwap ap ip default-gateway 172.17.30.1
capwap ap controller ip address 172.168.0.2
ap ap-type capwap tftp://172.17.30.2/AIR-AP1815-K9-ME-8-10-142-0.tar

Dear sir,

I have completed configuring WLC(air-ap2802l-h-k9 ) and it working perfectly

Now i m trying to connect my AP(air-ap181551-h-k9) to WLC (I have checked version both in wcl and ap its same,both wlc and ap are same networking.I am able to ping from both)

However my ap is discarding following message

CAPWAP State: DTLS Teardown
[*07/17/2019 19:45:01.2874] upgrade.sh: Script called with args:[ABORT]
[*07/17/2019 19:45:01.3841] do ABORT, part2 is active part
[*07/17/2019 19:45:01.4486] upgrade.sh: Cleanup tmp files ...
[*07/17/2019 19:45:01.5312] Discarding msg CAPWAP_WTP_EVENT_REQUEST(type 9) in CAPWAP state: DTLS Teardown(4).
[*07/17/2019 19:45:01.5314] Discarding msg CAPWAP_WTP_EVENT_REQUEST(type 9) in CAPWAP state: DTLS Teardown(4).
[*07/17/2019 19:45:05.8331] No more AP manager addresses remain..
[*07/17/2019 19:45:05.8332] No valid AP manager found for controller 'sa' (ip: 172.17.30.253)
[*07/17/2019 19:45:05.8332] Failed to join controller sa.
[*07/17/2019 19:45:05.8333] Failed to join controller.
[*07/17/2019 19:45:25.8413]
[*07/17/2019 19:45:25.8413] CAPWAP State: Discovery
[*07/17/2019 19:45:25.8528] Discovery Request sent to 255.255.255.255, discovery type UNKNOWN(0)
[*07/17/2019 19:45:25.8545] Discovery Response from 172.17.30.253
[*07/17/2019 19:45:36.0011]
[*07/17/2019 19:45:36.0011] CAPWAP State: DTLS Setup
[*07/17/2019 19:45:36.0654] dtls_process_packet: DTLS Error: 1046
[*07/17/2019 19:45:36.0655] dtls_process_packet: The controller shut down the DTLS connection.
[*07/17/2019 19:45:36.0655] dtls_process_packet: Please verify that the AP certificate is valid and has not expired.
[*07/17/2019 19:46:33.0807]
[*07/17/2019 19:46:33.0808] CAPWAP State: DTLS Teardown
[*07/17/2019 19:46:33.2889] upgrade.sh: Script called with args:[ABORT]
[*07/17/2019 19:46:33.3834] do ABORT, part2 is active part
[*07/17/2019 19:46:33.4463] upgrade.sh: Cleanup tmp files ...
[*07/17/2019 19:46:33.5268] Discarding msg CAPWAP_WTP_EVENT_REQUEST(type 9) in CAPWAP state: DTLS Teardown(4).
[*07/17/2019 19:46:33.5270] Discarding msg CAPWAP_WTP_EVENT_REQUEST(type 9) in CAPWAP state: DTLS Teardown(4).
[*07/17/2019 19:46:37.8317] No more AP manager addresses remain..
[*07/17/2019 19:46:37.8318] No valid AP manager found for controller 'sa' (ip: 172.17.30.253)
[*07/17/2019 19:46:37.8318] Failed to join controller sa.
[*07/17/2019 19:46:37.8319] Failed to join controller.

- Have you resolved the country code and regulatory domain mismatch yet?

- What do the AP join statistics on the WLC show?

- Did you do a factory default reset on the AP?

Dear Sir,

1 Have you resolved the country code and regulatory domain mismatch yet?
I have changed country code and regulatory domain for WLC (In then way when i was resseting it was country code where i have set to BH,After that my WLC start working, Do i need to set country code and regulatory domain i tried i havent command to set country code and regulatory domain in AP(If yes please adivise what would command to set country code and regulatory domain in AP) )


2 What do the AP join statistics on the WLC show?
Number of APs.............................................. 2
Base Mac AP EthernetMac AP Name IP Address Status
08:4f:a9:4e:be:00 08:4f:a9:1f:5b:56 AP084F.A91F.5B56 172.17.30.11 Joined
10:06:ed:6b:83:c0 N A AP1006.ED66.E158 172.17.30.12 Not Joined

3 Did you do a factory default reset on the AP?
Yes i did ,
What i notice is it automatically trying to join WLC

Review Cisco Networking for a $25 gift card