I have a Cisco 1200 Series (AIR-AP1231G-A-K9) access point, I have been upgrading these models to lightweight mode but are having issues with one in particular, this access point keeps "rebooting" itself, I am assuming that the upgrade faild, how can I get the access point upgraded?
I might have an answer for you... or I might be COMPLETELY WRONG
If it isn't just a "failed" upgrade, as in you've tried the upgrade again and it still is happening.... I was reading something about older APs not have a Manufacturing-installed certificate (MIC) and these AP's generating a Self-signed Certificate (SSC).
The error you have is referring to SSC so I'm writing this as if you have not had to previously do this step for your other conversions.
I believe a couple of things needs to happen for SSC AP's.
1) Must enable controller to accept self-signed certificated.
Security > AAA > AP Polices > Accept Self Signed Certificate > Apply
2) Add AP to Authorization List in Security > AAA > AP Polices > Add AP To Authrorization List
Enter MAC Address of the AP
Certificate type = SSC
SHA1 Key Hash can be obtained from the controller by issueing this command:
"debug pm pki enable"
Look for the line: sshpmGetIssuerHandles: SSC Key Hash is XXXXXXXXXXXXXXXXXXXXXXXXXX
I believe you use the XXXXXXXXXXXXXXXXXXXXX as the SHA1 Key Hash.
3) If required, you may also need to add the AP MAC Address in the Mac-Filter: Security > AAA > MAC Filtering > New >
Hopefully its either a reload of the software or this SSC thing that fixes the problem....
I did a little more researching and it looks like the LWAPP conversion tool is supposed to provide a CSV file with the SHA1 Key HASH for each Access Point... so maybe I am wrong about the key hash I mentioned in the previous statement. However, maybe that key hash is a return of the debug for when the AP tries to join the controller (and therefor is the right one....)
If you've already done the SSC steps, then I think resetting the AP to default and trying to reload the image is the best step...
Transferring Crash file from standby:
Login to the Active WLC in HA.
(Cisco Controller) >transfer upload datatype crash
(Cisco Controller) >transfer upload filename <Desired filename>
(Cisco Controller) >transfer up...
This is the start of a display filter cross reference between Wireshark and OmniPeek.
The 1st installment is a table of advanced filters. More filters will be added as time allows.
It is a living doc, so check back for changes every so often
Please feel ...
I have created a Powershell script to automatically add a Wireless Guest User on Cisco WLCs. (tested on 2500 Series)
The script should be completely self explanatory.
Powershell SNMP Module (Install-Module -Name SNMP)
SNMP Write Access to...