cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
3305
Views
23
Helpful
41
Replies

Aironet APs not joining the 4402 controller

ethutchinson
Level 1
Level 1

     Got a strange one here.

I have six Aironet a/b/g access points that wont join my 4402 Wireless

Lan Controller. They are getting IP s from my DHCP server. I have

set up the scope with the Vendor description and Option 43 info

that has the ip of the controller embedded. The controller can ping

the APs no problem but when I reboot them they do not join the controller

Any ideas?

41 Replies 41

Stephen Rodriguez
Cisco Employee
Cisco Employee

What type of AP's do you have, and what code are you running on the WLC?

HTH,
Steve

------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered

HTH,
Steve

------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered

They are Cisco Aironet 802.11a/b/g Access points. The Cisco Wireless Lan Controller

is running 7.0.235.3. The whole setup is used. It used to work for a different department

in my organization. There network does not connect to mine.

ok, but what is the model name of the AP?  1130, 1240 1600 etc.

HTH,
Steve

------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered

HTH,
Steve

------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered

Paste the output of these commands:

From WLC: sh sysinfo

From AP: sh version

Also connect your AP with console cable and paste the entire bootprocess here.

Regards

Just to add.... because it worked before, doesn't mean it will work after changing things around.  I would either put the AP's on the same subnet as the WLC management is on.... this is temporary and is fast.  Once they join the WLC and download code if necessary, you can then move them to a different vlan.  Or you can create a DNS entry and don't worry about the whole option 43 and the hex thing which many have issues with.

cisco-capwap-controller..com

cisco-lwapp-controller..com

Make sure these entries point to the management ip address of the WLC.

Thanks,

Scott

Help out other by using the rating system and marking answered questions as "Answered"

-Scott
*** Please rate helpful posts ***

Post the output of AP console when you reboot it & trying to register for a WLC

Rasika

Sorry for the delay. We need more help here.

Here is the boot log of one of my APs

Xmodem file system is available.
flashfs[0]: 9 files, 4 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 15998976
flashfs[0]: Bytes used: 6976512
flashfs[0]: Bytes available: 9022464
flashfs[0]: flashfs fsck took 28 seconds.
Base ethernet MAC Address: 00:1b:d4:c1:6c:1a
Initializing ethernet port 0...
Reset ethernet port 0...
Reset done!
ethernet link up, 100 mbps, full-duplex
Ethernet port 0 initialized: link is up
Loading "flash:/c1240-k9w8-mx.v124_25e_jam.201303281206/c1240-k9w8-mx.v124_25e_#####################################################

File "flash:/c1240-k9w8-mx.v124_25e_jam.201303281206/c1240-k9w8-mx.v124_25e_jam.201303281206" uncompressed and installed, entry poi0
executing...

              Restricted Rights Legend

Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.

           cisco Systems, Inc.
           170 West Tasman Drive
           San Jose, California 95134-1706

Cisco IOS Software, C1240 Software (C1240-K9W8-M), Experimental Version 12.4(20130328:192659) [BLD-WNBU_V124_25E_JAM_BASELINE_20130]
Copyright (c) 1986-2013 by Cisco Systems, Inc.
Compiled Thu 28-Mar-13 12:33 by wnbubld


Proceeding with system init

Proceeding to unmask interrupts
Initializing flashfs...

flashfs[2]: 9 files, 4 directories
flashfs[2]: 0 orphaned files, 0 orphaned directories
flashfs[2]: Total bytes: 15740928
flashfs[2]: Bytes used: 6976512
flashfs[2]: Bytes available: 8764416
flashfs[2]: flashfs fsck took 4 seconds.
flashfs[2]: Initialization complete....done Initializing flashfs.

Radio0  present A506 7100 E8000000 A0000000 80000000 3
Rate table has 12 entries (0 SGI/0 BF variants)

Radio1  present A506 6700 E8000100 A0040000 80010000 2
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
export@cisco.com.

cisco AIR-LAP1242AG-A-K9    (PowerPCElvis) processor (revision A0) with 27638K/5120K bytes of memory.
Processor board ID FTX1120B4HZ
PowerPCElvis CPU at 262Mhz, revision number 0x0950
Last reset from power-on
LWAPP image version 7.4.100.6
1 FastEthernet interface
2 802.11 Radio(s)

32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: 00:1B:D4:C1:6C:1A
Part Number                          : 73-9925-06
PCA Assembly Number                  : 800-26579-05
PCA Revision Number                  : A0
PCB Serial Number                    : FOC11171ZC7
Top Assembly Part Number             : 800-29232-01
Top Assembly Serial Number           : FTX1120B4HZ
Top Revision Number                  : A0
Product/Model Number                 : AIR-AP1242AG-A-K9  
% Please define a domain-name first.


Press RETURN to get started!


*Mar  1 00:00:06.207: %SOAP_FIPS-2-SELF_TEST_IOS_SUCCESS: IOS crypto FIPS self test passed
*Mar  1 00:00:07.819: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 0
*Mar  1 00:00:08.294: %LINK-6-UPDOWN: Interface FastEthernet0, changed state to up
*Mar  1 00:00:09.483: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 1
*Mar  1 00:00:09.555: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0, changed state to up
*Mar  1 00:00:09.581: %LWAPP-4-CLIENTEVENTLOG: Read and initialized AP event log (contains, 1028 messages)

*Mar  1 00:00:11.778: %SYS-5-RESTART: System restarted --
Cisco IOS Software, C1240 Software (C1240-K9W8-M), Experimental Version 12.4(20130328:192659) [BLD-WNBU_V124_25E_JAM_BASELINE_20130]
Copyright (c) 1986-2013 by Cisco Systems, Inc.
Compiled Thu 28-Mar-13 12:33 by wnbubld
*Mar  1 00:00:11.779: %SNMP-5-COLDSTART: SNMP agent on host AP001b.d4c1.6c1a is undergoing a cold start
*Mar  1 00:00:12.046: %SSH-5-ENABLED: SSH 2.0 has been enabled
*Mar  1 00:00:12.046: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Mar  1 00:00:12.046: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up
*Mar  1 00:00:12.282: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
*Mar  1 00:00:12.283: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to resetlwapp_crypto_init: MIC Present and Parsed Succey

*Mar  1 00:00:13.049: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Mar  1 00:00:13.049: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to down
*Mar  1 00:00:14.855: %LINEPROTO-5-UPDOWN: Line protocol on Interface BVI1, changed state to up
*Mar  1 00:00:20.169: %DHCP-6-ADDRESS_ASSIGN: Interface BVI1 assigned DHCP address 192.168.10.147, mask 255.255.255.0, hostname AP0a

*Mar  1 00:00:30.750: Logging LWAPP message to 255.255.255.255.

Translating "CISCO-CAPWAP-CONTROLLER.AD.NEWTONMA.GOV"...domain server (192.9.202.207)
*Mar  1 00:00:41.795: %CAPWAP-5-DHCP_OPTION_43: Controller address 192.9.200.141 obtained through DHCP [OK]

Translating "CISCO-LWAPP-CONTROLLER.AD.NEWTONMA.GOV"...domain server (192.9.202.207) [OK]

*Mar  1 00:00:41.795: %CAPWAP-3-ERRORLOG: Did not get log server settings from DHCP.
*Mar  1 00:00:51.805: %CAPWAP-3-ERRORLOG: Go join a capwap controller
*Feb  4 13:46:11.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 192.168.10.2 peer_port: 5246
*Feb  4 13:46:51.000: DTLS_CLIENT_ERROR: ../capwap/base_capwap/dtls/base_capwap_dtls_connection_db.c:2051 Max retransmission count !
*Feb  4 13:46:52.919: %CDP_PD-4-POWER_OK: Full power - NON_CISCO-NO_CDP_RECEIVED inline power source
*Feb  4 13:46:53.953: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up
*Feb  4 13:46:54.953: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to up
*Feb  4 13:46:54.992: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Feb  4 13:46:55.992: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Feb  4 13:47:10.999: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 192.168.10.2:5246
*Feb  4 13:47:13.999: %CAPWAP-3-ERRORLOG: Go join a capwap controller
*Feb  4 13:46:11.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 192.168.10.2 peer_port: 5246
*Feb  4 13:46:51.000: DTLS_CLIENT_ERROR: ../capwap/base_capwap/dtls/base_capwap_dtls_connection_db.c:2051 Max retransmission count !
*Feb  4 13:47:10.999: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 192.168.10.2:5246
*Feb  4 13:47:14.046: %LWAPP-3-CLIENTERRORLOG: LWAPP LED Init: incorrect led state 255
*Feb  4 13:47:14.075: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to administratively down
*Feb  4 13:47:14.075: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to administratively down
*Feb  4 13:47:14.077: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Feb  4 13:47:14.129: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up
*Feb  4 13:47:15.075: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to down
*Feb  4 13:47:15.104: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to down
*Feb  4 13:47:15.109: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Feb  4 13:47:16.097: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to up
*Feb  4 13:47:16.104: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Feb  4 13:47:16.134: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Feb  4 13:47:16.139: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to down
*Feb  4 13:47:16.144: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
*Feb  4 13:47:17.134: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Feb  4 13:47:17.139: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to down
*Feb  4 13:47:17.163: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up
*Feb  4 13:47:18.163: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to up
*Feb  4 13:47:24.127: %CAPWAP-3-ERRORLOG: Go join a capwap controller
*Feb  4 13:48:27.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 192.168.10.2 peer_port: 5246

User Access Verification

Can you paste the output of this command from WLC: sh sysinfo

Regards

Hi,

its look your AP is not able to establish a secure connection to the controller..


You can do these:

simply set the AP back to factory settings

or

Update WLC software.

Regards

How do I reset them back to factory settings? Is that

what the mode button is for?

You can either use the mode button or clear the nvram

Factory reset
http://www.cisco.com/en/US/products/hw/wireless/ps430/products_tech_note09186a00808e2d27.shtml

Erase NVRAM

debug lwapp console cli
debug capwap console cli
erase /all nvram

*******************************************************
Example:

Entered the username and password
debug capwap console cli
erase /all nvram:
[confirm]
undebug all
reload
[confirm]


Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***

Hi,

Unplug the AP then hold in the mode button (use a paper clip or pen tip). While still holding the button down plug the device back in and wait for the light(s) to go steady red. If your AP has a console port you should be good to go

In other words:

Resetting to Default Settings Using the MODE Button

  • Disconnect power (the power jack for external power or the Ethernet cable for in-line power) from the access point.
  • Press and hold the MODE button while you reconnect power to the access point.
  • Hold the MODE button until the Status LED turns amber (approximately 1 to 2 seconds), and release the button. All access point settings return to factory defaults.

Reagrds

Hi,

Befor reset the AP to factory default I will request you put the output from WLC: sh sysinfo

Reagrds

Here you go

(Cisco Controller) >show sysinfo

Manufacturer's Name.............................. Cisco Systems Inc.
Product Name..................................... Cisco Controller
Product Version.................................. 7.0.235.3
RTOS Version..................................... 7.0.235.3
Bootloader Version............................... 4.0.219.0
Emergency Image Version.......................... N/A
Build Type....................................... DATA + WPS

System Name...................................... Cityhall Wireless controller
System Location..................................
System Contact...................................
System ObjectID.................................. 1.3.6.1.4.1.14179.1.1.4.3
IP Address....................................... 192.9.200.141
System Up Time................................... 0 days 20 hrs 25 mins 19 secs
System Timezone Location......................... (GMT -5:00) Eastern Time (US )

Configured Country............................... US  - United States
Operating Environment............................ Commercial (0 to 40 C)
Internal Temp Alarm Limits....................... 0 to 65 C
Internal Temperature............................. +33 C


--More-- or (q)uit
State of 802.11b Network......................... Enabled
State of 802.11a Network......................... Enabled
Number of WLANs.................................. 1
Number of Active Clients......................... 0

Burned-in MAC Address............................ 00:24:C4:E6:19:E0
Crypto Accelerator 1............................. Absent
Crypto Accelerator 2............................. Absent
Power Supply 1................................... Absent
Power Supply 2................................... Present, OK
Maximum number of APs supported.................. 50

(Cisco Controller) >

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: