- In general you will find device compatibility info's for prime here :

                https://www.cisco.com/c/en/us/support/cloud-systems-management/prime-infrastructure/products-device-support-tables-list.html

 M.

If i want to upgrade the WLC to 8.10.171.0 do I need to upgrade ISE also?

Not necessary.  8.10.171.0  is supported in ISE 2.4

Even though 8.10 supported by ISE 2.4, ISE 2.4 software itself is EOS and no more maintained by Cisco. So you have to expect limited support from TAC.

Cisco Identity Services Engine - End of Life Announcement for the Cisco Identity Services Engine Software Version 2.4 - Cisco

So IMHO, it is recommended that you upgrade your ISE nodes to latest Cisco recommended to extend its support cycle and importantly ISE 2.4 without the hot patch is vulnerable to log4j attacks as well.

Hi,

I would strongly recommend you to run the WLAN poller before the upgrade, otherwise it will become a hectic task. You do not need any programming knowledge to run this. Cisco has provided an extensive guide on what needs to be done. Please keep in mind this flash  issue impacts only 1600, 1700, 2600, 2700, 3600, and 3700 Series APs.

Field Notice - Field Notice: FN - 70330 - Cisco IOS Access Point Stranded Due to Flash Corruption Issue - Workaround Provided - Cisco

WLAN poller deployment guide - Understanding Various AP-IOS Flash Corruption Issues - Cisco

Upgrade path - Wireless LAN Controller (WLC) Software Upgrade - Cisco

TAC recommended codes - Recommended AireOS Wireless LAN Controller Releases - Cisco

Always follow the Cisco documentation and the recommended process unless you have staged the upgrade previously in a test bed and the results and use cases are well documented.

When running the tool i got so many warnings as " MD5 check - Failure determining active IOS image"

What does that mean?

See the attached!

Those APs are probably affected and need fixing before upgrade.  You'll need to go and check those APs yourself manually.

Did you read the documentation @Arshad Safrulla linked above?  Did you run the script twice as per the instructions?

"md5_fail: True when md5 at least one file is different from the stored in the database."

• md5_error: Error message retrieving md5 value if it was not possible to get md5 for the filename.

Note: There could be scenarios where the WLAN Poller recovery script is unable to recover certain AP's and those AP remains flagged as failed in the report. In those scenarios, manual AP recovery by telnet/SSH/console into AP CLI is recommended. Please open TAC SR if you needed assistance on this process. Attach all output generated from WLAN poller to the case. 

One of our eng's wrote his own custom version of the tool based on Cisco's because unlike Flavio we needed to use it because hundreds of our APs (we have thousands) were affected at each upgrade by the flash corruption issue.  If you haven't upgraded in a while there's a very high risk you'll encounter it and then some of the APs won't come back (doesn't matter how intelligent the WLC is, the bugs are in the AP IOS code).  If you have remote PoE control then you might be able to recover them with power cycling but if they're on power injectors it may need visits to the APs.  Save yourself all that trouble by doing the homework before you start the upgrades.  I don't think we've seen the flash corruption in the last 2 years so I think they eventually got the various bugs fixed in current releases but definitely not in the older releases.