10-27-2022 06:27 AM
Brought some used APs from another location AIR CAP1602I-A-K9 but having trouble joining it with 5508 WLC Software version 8.5.171.0 Recovery Image Version 7.6.95.16. The AP is not connecting automatically and only LED red blinking in the AP.
Already connected AP with the WLC are AIR CAP1702I-C-K9 which working fine.
Need some help/tips to check which configuration needs to be adjusted to join the above AP with WLC.
Thanks in Advance.
10-27-2022 09:51 AM
- Check controller logs when the AP tries to join.
M.
10-27-2022 10:25 AM
Maybe I would console to AP check the Logs.
1. did AP get IP address from DHCP
2. What is your option to join WLC controller ?
11-01-2022 02:10 AM - edited 11-01-2022 02:23 AM
The AP gets the IP address from DHCP but did not get the profile from the controller. a green light continuously blinking. The following steps were taken.
The regulatory Domain enables C
MIC enable commands were applied
Console the AP, and the AP OS restarting repeatedly.
11-01-2022 02:38 AM
@Miankhel wrote:
Console the AP, and the AP OS restarting repeatedly.
Console into the AP and reboot. Post the entire boot-up process.
Post the complete output to the following WLC commands:
10-27-2022 10:29 AM
Since your APs were transferred from another location, I would assume that they were used there and thus have the configuration for joining a controller on their previous site. You should clear the configuration of the AP using the command "clear capwap ap all-config" to ensure that it will work properly on the new site.
Another thing to check is if the AP and WLC are on different subnets; if they are, then you should provide a way for the AP to know how to reach the desired controller. You could either configure it manually to the AP with the command "capwap ap primary-base <WLC-sysname> <IP-address>" or provision the information via DHCP option 43 or DNS by adding the DNS entry for cisco-capwap-controller on your DNS server.
Optionally, if your AP and WLC are on different subnets, you could configure a broadcast relay on the default gateway of the AP subnet. This would allow capwap broadcast discovery packets to be relayed to the WLC. To do this, you would need to use the commands "ip helper-address <WLC-IP-address>" and "ip forward-protocol udp 5246".
Besides that, the AP AIR-CAP1602I-A-K9 is an older model that may have an expired certificate by the time being which wouldn't allow to create a capwap tunnel with the controller. If that's the case, then you need to use the command "config ap cert-expiry-ignore mic enable" on the WLC so the controller will bypass the certificate validation check. To validate if your AP or WLC are affected by an expired certificate, check the steps in the link below:
10-27-2022 03:02 PM
Look at the Regulatory Domain of the existing/working APs (-C) and look at the ones purchased (-A). The Regulatory Domain do not match.
10-28-2022 07:56 AM - edited 10-28-2022 07:59 AM
I also noticed the regulatory domain mismatch.
-C = Pakistan
-A = Argentina, Bolivia, Canada, Chile, Colombia, Costa Rica, Ecuador, Peru, Philippines, Uruguay, Venezuela
https://www.cisco.com/c/dam/assets/prod/wireless/wireless-compliance-tool/index.html
Remember in most countries it will be illegal to use APs from another regulatory domain.
And to add to what @jonathga94 mentioned about certs refer to the FN in my signature below for full details. WLC or APs could have expired certs and you'll need to follow the full procedure to get them to join if that's the case - just applying the config alone will not make them join.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide