AP 3702 not join the WLC

Similar Messages

• AIR-CAP3501I access point not joining the Cisco 2100 Wireless Lan controller.

  Hello All,
  I am installing a new LAP (AIR-CAP3501I ) through the wireless lan controller (AIR-WLC2112-K9) with software version 7.0. I have an external ADSL modem which will act as the DHCP server for the wireless clients and the LAP.
  Please find my network setup as below:
  The ISP ADSL modem , WLC and LAP are connected to a unmanaged POE switch. The LAP gets its power through the POE switch. When i connect the LAP and the WLC to the switch along with the ADSL modem, the LAPs are getting the ip address from the ADSL modem, however they are not joining the WLC for further process.
  ADSL Modem ip address: 192.168.1.254
  Management ip address on the LAP: 192.168.1.1 ( Assigned to port 1, untagged Vlan).
  Ap Manager ip address: 192.168.1.1 ( Assigned to the same port i.e port1, Untagged Vlan).
  The LAP is getting an IP address from the ADSL modem in the range of the DHCP scope.
  I will paste the logs very soon.
  Please let me know if i am doing anything wrong oe what will be the issue.
  Thanks in advance,
  Mohammed Ameen

  Hello All,
  Please find the logs for  "debug capwap event" from the WLC below:
  *spamReceiveTask: Sep 26 19:44:59.196: e8:04:62:0a:3f:10 Join Version: = 117465600
  *spamReceiveTask: Sep 26 19:44:59.197: e8:04:62:0a:3f:10 Join resp: CAPWAP Maximum Msg element len = 92
  *spamReceiveTask: Sep 26 19:44:59.197: e8:04:62:0a:3f:10 Join Response sent to 192.168.1.156:45510
  *spamReceiveTask: Sep 26 19:44:59.197: e8:04:62:0a:3f:10 CAPWAP State: Join
  *spamReceiveTask: Sep 26 19:44:59.197: e8:04:62:0a:3f:10 capwap_ac_platform.c:1216 - Operation State 0 ===> 4
  *apfReceiveTask: Sep 26 19:44:59.198: e8:04:62:0a:3f:10 Register LWAPP event for AP e8:04:62:0a:3f:10 slot 0
  *spamReceiveTask: Sep 26 19:44:59.341: e8:04:62:0a:d1:20 DTLS connection not found, creating new connection for 192:168:1:158 (45644) 192:168:1:2 (5246)
  *spamReceiveTask: Sep 26 19:45:00.119: e8:04:62:0a:d1:20 DTLS Session established server (192.168.1.2:5246), client (192.168.1.158:45644)
  *spamReceiveTask: Sep 26 19:45:00.119: e8:04:62:0a:d1:20 Starting wait join timer for AP: 192.168.1.158:45644
  *spamReceiveTask: Sep 26 19:45:00.121: e8:04:62:0a:d1:20 Join Request from 192.168.1.158:45644
  *spamReceiveTask: Sep 26 19:45:00.123: e8:04:62:0a:d1:20 Join Version: = 117465600
  *spamReceiveTask: Sep 26 19:45:00.123: e8:04:62:0a:d1:20 Join resp: CAPWAP Maximum Msg element len = 92
  *spamReceiveTask: Sep 26 19:45:00.124: e8:04:62:0a:d1:20 Join Response sent to 192.168.1.158:45644
  *spamReceiveTask: Sep 26 19:45:00.124: e8:04:62:0a:d1:20 CAPWAP State: Join
  *spamReceiveTask: Sep 26 19:45:00.124: e8:04:62:0a:d1:20 capwap_ac_platform.c:1216 - Operation State 0 ===> 4
  *apfReceiveTask: Sep 26 19:45:00.125: e8:04:62:0a:d1:20 Register LWAPP event for AP e8:04:62:0a:d1:20 slot 0
  *spamReceiveTask: Sep 26 19:45:00.273: e8:04:62:0a:d1:20 Configuration Status from 192.168.1.158:45644
  *spamReceiveTask: Sep 26 19:45:00.273: e8:04:62:0a:d1:20 CAPWAP State: Configure
  *spamReceiveTask: Sep 26 19:45:00.273: Invalid channel 1 spacified for the AP APf866.f2ab.24b6, slotId = 0
  *spamReceiveTask: Sep 26 19:45:00.274: e8:04:62:0a:d1:20 Updating IP info for AP e8:04:62:0a:d1:20 -- static 0, 192.168.1.158/255.255.255.0, gtw 192.168.1.254
  *spamReceiveTask: Sep 26 19:45:00.274: e8:04:62:0a:d1:20 Updating IP 192.168.1.158 ===> 192.168.1.158 for AP e8:04:62:0a:d1:20
  *spamReceiveTask: Sep 26 19:45:00.274: e8:04:62:0a:d1:20 Setting MTU to 1485
  *spamReceiveTask: Sep 26 19:45:00.274: e8:04:62:0a:d1:20 Finding DTLS connection to delete for AP (192:168:1:158/45644)
  *spamReceiveTask: Sep 26 19:45:00.274: e8:04:62:0a:d1:20 Disconnecting DTLS Capwap-Ctrl session 0xa06d6a4 for AP (192:168:1:158/45644)
  *spamReceiveTask: Sep 26 19:45:00.274: e8:04:62:0a:d1:20 CAPWAP State: Dtls tear down
  *spamReceiveTask: Sep 26 19:45:00.277: spamProcessGlobalPathMtuUpdate: Changing Global LRAD MTU to 576
  *spamReceiveTask: Sep 26 19:45:00.277: e8:04:62:0a:d1:20 DTLS connection closed event receivedserver (192:168:1:2/5246) client 192:168:1:158/45644).
  The Acess point joins the Controller for 2-3 seconds and then unjoins again. I am not sure what i am doing wrong here. The access points are getting the IPs from the ADSL modem through the switch, then it talks to the WLC, however it does not join the controller for further process.
  Note:
  The Managemnet interface and the AP manager interface are assigned to the same port 1 with unassigned Vlan as mention above.

• Ap won't join the WLC

  Hello Guys,
  I have converted ap 1131 from autonomous to lwapp successfully by using upgrade utility tool but the AP does not join the WLC 2106. I can see it as a neighbor on the switch with no IP address. please help me.
  Thank you

  Hello Scott,
  Thank you for the reply
  Please find the attached file for the config, i found out that i have not updated the time on WLC  but i did update the time on WLC and tested for other AP and this one too wont join the WLC. The ap are located remote.
  atsg-wl1#show run | incl hostname
  hostname atsg-wl1
  atsg-wl1#test pb display
  Display of the Parameter Block
  Total Number of Records : 7
  Number of Certs : 6
  Number of Keys : 1
  atsg-wl1#term length 0
  atsg-wl1#show version | include Cisco IOS
  Cisco IOS Software, C1130 Software (C1130-K9W7-M), Version 12.3(7)JA3, RELEASE SOFTWARE (fc1)
  atsg-wl1#show controller | include Radio AIR
  Radio AIR-AP1131G, Base Address 0019.0737.02f0, BBlock version 0.00, Software version 5.80.15
  Radio AIR-AP1131A, Base Address 0019.073b.02d0, BBlock version 0.00, Software version 5.80.15
  atsg-wl1#show controllers d0 | include Current
  Current Frequency: 2447 MHz  Channel 8
  Current CCK Power: 14 dBm
  Current OFDM Power: 14 dBm
  Current Rates:  basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
  atsg-wl1#show controllers d1 | include Current
  Current Frequency: 5805 MHz  Channel 161
  Current Power: 17 dBm
  Current Rates:  basic-6.0 9.0 basic-12.0 18.0 basic-24.0 36.0 48.0 54.0
  atsg-wl1#show run | include station-role
  station-role root
  station-role root
  atsg-wl1#test pb disp
  Display of the Parameter Block
  Total Number of Records : 7
  Number of Certs : 6
  Number of Keys : 1
  atsg-wl1#show int F0 | include address
    Hardware is PowerPCElvis Ethernet, address is 0019.555f.ccfa (bia 0019.555f.ccfa)
  atsg-wl1#show int | include Dot11Radio
  Dot11Radio0 is up, line protocol is up
  Dot11Radio1 is up, line protocol is up
  atsg-wl1#show sntp | exclude SNTP
  10.148.0.1         16        1        never     
  172.16.21.57       16        1        never     
  Broadcast client mode is enabled.
  atsg-wl1#show run
  Building configuration...
  Current configuration : 6025 bytes
  ! Last configuration change at 19:35:46 UTC Thu Jan 31 2013 by didata
  ! NVRAM config last updated at 19:13:48 UTC Fri Feb 1 2013 by didata
  version 12.3
  no service pad
  service timestamps debug datetime msec
  service timestamps log datetime localtime
  service password-encryption
  hostname atsg-wl1
  logging buffered informational
  logging console informational
  enable secret 5
  ip subnet-zero
  ip domain name aspentech.com
  ip name-server 10.96.16.230
  ip name-server 10.148.0.249
  ip name-server 10.32.19.1
  aaa new-model
  aaa group server radius rad_eap
  server 10.16.16.123 auth-port 1645 acct-port 1646
  aaa authentication login default group tacacs+ local
  aaa authentication login eap_methods group rad_eap
  aaa authentication login mac_methods local
  aaa authentication enable default group tacacs+ enable
  aaa authorization exec default group tacacs+ local
  aaa authorization commands 15 default group tacacs+ local
  aaa accounting exec default start-stop group tacacs+
  aaa accounting commands 15 default start-stop group tacacs+
  aaa accounting system default start-stop group tacacs+
  aaa session-id common
  no dot11 igmp snooping-helper
  dot11 ssid
     authentication open eap eap_methods
     authentication network-eap eap_methods
     guest-mode
     infrastructure-ssid optional
  dot11 network-map
  power inline negotiation prestandard source
  usernamepassword 7
  username privilege 15 password 7
  usernamep rivilege 15 password 7
  class-map match-all _class_Protocol_301_C351
  match access-group name Voice_Over_IP_301
  class-map match-all _class_8
  match ip dscp cs1
  class-map match-all _class_0
  match ip dscp default
  class-map match-all _class_48
  match ip dscp cs6
  class-map match-all _class_18
  match ip dscp af21
  class-map match-all _class_24
  match ip dscp cs3
  class-map match-all _class_16
  match ip dscp cs2
  class-map match-all _class_34
  match ip dscp af41
  class-map match-all _class_26
  match ip dscp af31
  class-map match-all _class_40
  match ip dscp cs5
  class-map match-all _class_46
  match ip dscp ef
  class-map match-all _class_56
  match ip dscp cs7
  class-map match-all _class_10
  match ip dscp af11
  class-map match-all _class_32
  match ip dscp cs4
  policy-map _policy_Voice_Over_IP_202
  class _class_Protocol_301_C351
    set cos 6
  policy-map _policy_fallback_policy
  class _class_0
    set cos 0
  class _class_8
    set cos 1
  class _class_10
    set cos 1
  class _class_16
    set cos 2
  class _class_18
    set cos 2
  class _class_24
    set cos 3
  class _class_26
    set cos 3
  class _class_32
    set cos 4
  class _class_34
    set cos 4
  class _class_40
    set cos 5
  class _class_46
    set cos 5
  class _class_48
    set cos 6
  class _class_56
    set cos 7
  bridge irb
  interface Dot11Radio0
  no ip address
  no ip route-cache
  shutdown
  encryption mode wep mandatory mic key-hash
  broadcast-key change 900
  ssid
  traffic-class background cw-min 5 cw-max 8 fixed-slot 2
  traffic-class best-effort cw-min 5 cw-max 8 fixed-slot 6
  traffic-class video cw-min 4 cw-max 6 fixed-slot 1
  traffic-class voice cw-min 3 cw-max 7 fixed-slot 1
  speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
  packet retries 32
  fragment-threshold 2338
  station-role root
  rts threshold 2339
  rts retries 32
  world-mode legacy
  no cdp enable
  infrastructure-client
  bridge-group 1
  bridge-group 1 subscriber-loop-control
  bridge-group 1 block-unknown-source
  no bridge-group 1 source-learning
  no bridge-group 1 unicast-flooding
  bridge-group 1 spanning-disabled
  interface Dot11Radio1
  no ip address
  no ip route-cache
  shutdown
  encryption mode wep mandatory mic key-hash
  broadcast-key change 900
  ssid aspen100abcdefgh
  speed basic-6.0 9.0 basic-12.0 18.0 basic-24.0 36.0 48.0 54.0
  station-role root
  world-mode legacy
  bridge-group 1
  bridge-group 1 subscriber-loop-control
  bridge-group 1 block-unknown-source
  no bridge-group 1 source-learning
  no bridge-group 1 unicast-flooding
  bridge-group 1 spanning-disabled
  interface FastEthernet0
  no ip address
  no ip route-cache
  duplex auto
  speed auto
  bridge-group 1
  no bridge-group 1 source-learning
  bridge-group 1 spanning-disabled
  interface BVI1
  ip address 10.148.0.7 255.255.255.0
  no ip route-cache
  ip default-gateway 10.148.0.1
  ip http server
  ip http authentication aaa
  no ip http secure-server
  ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
  ip tacacs source-interface BVI1
  ip radius source-interface BVI1
  ip access-list extended Voice_Over_IP_300
  permit 119 any any
  permit ip any any
  ip access-list extended Voice_Over_IP_301
  permit 119 any any
  permit ip any any
  logging facility local0
  snmp-server view iso_view iso included
  snmp-server community admin view iso_view RW
  snmp-server community all4114all view iso_view RW
  snmp-server community ddbos2000 RO
  snmp-server location ATSG
  snmp-server contact James Lee
  snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
  snmp-server enable traps tty
  snmp-server enable traps disassociate
  snmp-server enable traps deauthenticate
  snmp-server enable traps authenticate-fail
  snmp-server enable traps config
  snmp-server enable traps syslog
  snmp-server host 192.135.137.12 ddbos2000
  tacacs-server host 10.16.16.123 key 7
  tacacs-server host 10.96.16.245 key 7
  tacacs-server directed-request
  radius-server host 10.16.16.123 auth-port 1645 acct-port 1646 timeout 5 retransmit 3 key 7
  radius-server deadtime 120
  radius-server vsa send accounting
  radius-server vsa send authentication
  control-plane
  bridge 1 route ip
  line con 0
  transport preferred all
  transport output all
  stopbits 1
  line vty 0 4
  exec-timeout 0 0
  transport preferred all
  transport input all
  transport output all
  line vty 5 15
  exec-timeout 0 0
  transport preferred all
  transport input all
  transport output all
  end
  atsg-wl1#show run | incl hostname
  hostname atsg-wl1
  atsg-wl1#arch down /over /create-space  tftp://10.148.0.118/images/c1130-rcvk                                                                    $over /create-space  tftp://10.148.0.118/images/c1130-rcvk9                  w8-tar.12                                                                   te-space  tftp://10.148.0.118/images/c1130-rcvk9w8-tar.123                  -11.JX1.t                                                                  ftp://10.148.0.118/images/c1130-rcvk9w8-tar.123-11.JX1.ta                  r
  examining image...
  Loading images/c1130-rcvk9w8-tar.123-11.JX1.tar from 10.148.0.118 (via BVI1): !
  extracting info (273 bytes)!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
  [OK - 1873920 bytes]
  Image info:
      Version Suffix: rcvk9w8-
      Image Name: c1130-rcvk9w8-mx
      Version Directory: c1130-rcvk9w8-mx
      Ios Image Size: 1874432
      Total Image Size: 1874432
      Image Feature: WIRELESS LAN|LWAPP|RECOVERY
      Image Family: C1130
      Wireless Switch Management Version: 3.0.51.0
  Extracting files...
  Loading images/c1130-rcvk9w8-tar.123-11.JX1.tar from 10.148.0.118 (via BVI1): !
  extracting info (273 bytes)
  c1130-rcvk9w8-mx/ (directory) 0 (bytes)
  extracting c1130-rcvk9w8-mx/c1130-rcvk9w8-mx (1867816 bytes)!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
  extracting c1130-rcvk9w8-mx/info (273 bytes)
  extracting info.ver (273 bytes)!
  [OK - 1873920 bytes]
  Deleting current version...
  Deleting flash:/c1130-k9w7-mx.123-7.JA3...done.
  New software image installed in flash:/c1130-rcvk9w8-mx
  Configuring system to use new image...done.
  atsg-wl1#show archive status
  SUCCESS: Upgrade complete.
  atsg-wl1#write erase
  Erasing the nvram filesystem will remove all configuration files! Continue? [confirm]
  [OK]
  Erase of nvram: complete
  atsg-wl1#dir flash:
  Directory of flash:/
      2  -rwx        2072  Jan 31 2013 19:36:18 +00:00  private-multiple-fs
    149  drwx         128  Jan 31 2013 19:36:11 +00:00  c1130-rcvk9w8-mx
      4  -rwx         342  Jan 31 2013 19:36:14 +00:00  env_vars
  15998976 bytes total (14126080 bytes free)
  atsg-wl1#dir nvram:
  Directory of nvram:/
     30  -rw-           0                      startup-config
     31  ----           0                      private-config
      1  -rw-           0                      ifIndex-table
      2  ----          12                      persistent-data
  32768 bytes total (30668 bytes free)
  atsg-wl1#sh crypto ca trustpoints
  atsg-wl1#sh crypto ca certificates
  atsg-wl1#terminal length 0
  atsg-wl1#show run | begin BVI1
  interface BVI1
  ip address 10.148.0.7 255.255.255.0
  no ip route-cache
  ip default-gateway 10.148.0.1
  ip http server
  ip http authentication aaa
  no ip http secure-server
  ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
  ip tacacs source-interface BVI1
  ip radius source-interface BVI1
  ip access-list extended Voice_Over_IP_300
  permit 119 any any
  permit ip any any
  ip access-list extended Voice_Over_IP_301
  permit 119 any any
  permit ip any any
  logging facility local0
  snmp-server view iso_view iso included
  snmp-server community admin view iso_view RW
  snmp-server community all4114all view iso_view RW
  snmp-server community ddbos2000 RO
  snmp-server location ATSG
  snmp-server contact James Lee
  snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
  snmp-server enable traps tty
  snmp-server enable traps disassociate
  snmp-server enable traps deauthenticate
  snmp-server enable traps authenticate-fail
  snmp-server enable traps config
  snmp-server enable traps syslog
  snmp-server host 192.135.137.12 ddbos2000
  tacacs-server host 10.16.16.123 key 7
  tacacs-server host 10.96.16.245 key 7
  tacacs-server directed-request
  radius-server host 10.16.16.123 auth-port 1645 acct-port 1646 timeout 5 retransmit 3 key 7
  radius-server deadtime 120
  radius-server vsa send accounting
  radius-server vsa send authentication
  control-plane
  bridge 1 route ip
  line con 0
  transport preferred all
  transport output all
  stopbits 1
  line vty 0 4
  exec-timeout 0 0
  transport preferred all
  transport input all
  transport output all
  line vty 5 15
  exec-timeout 0 0
  transport preferred all
  transport input all
  transport output all
  end

• AP not joining to WLC

  Hi,
  After a wireless network interruption, one of MAP 1522  it's  not joining to WLC .
  What should I do to solve this problem?
  Thanks.
  (Cisco Controller) >show ap join stats detailed 00:08:30:bb:53:20
  Discovery phase statistics
  - Discovery requests received.............................. 7
  - Successful discovery responses sent...................... 5
  - Unsuccessful discovery request processing................ 0
  - Reason for last unsuccessful discovery attempt........... Not applicable
  - Time at last successful discovery attempt................ Feb 23 11:25:16.137
  - Time at last unsuccessful discovery attempt.............. Not applicable
  Join phase statistics
  - Join requests received................................... 2
  - Successful join responses sent........................... 2
  - Unsuccessful join request processing..................... 2
  - Reason for last unsuccessful join attempt................ RADIUS authorization is pending for the AP
  - Time at last successful join attempt..................... Feb 23 11:25:28.385
  - Time at last unsuccessful join attempt................... Feb 23 11:25:28.386
  Configuration phase statistics
  - Configuration requests received.......................... 3
  - Successful configuration responses sent.................. 1
  - Unsuccessful configuration request processing............ 0
  - Reason for last unsuccessful configuration attempt....... Not applicable
  - Time at last successful configuration attempt............ Feb 23 11:25:28.581
  --More-- or (q)uit
  - Time at last unsuccessful configuration attempt.......... Not applicable
  Last AP message decryption failure details
  - Reason for last message decryption failure............... Not applicable
  Last AP disconnect details
  - Reason for last AP connection failure.................... Timed out while waiting for ECHO repsonse from the AP
  - Last AP disconnect reason................................ AP's capwap state machine restarted
  Last join error summary
  - Type of error that occurred last......................... AP got or has been disconnected
  - Reason for error that occurred last...................... Timed out while waiting for ECHO repsonse from the AP
  - Time at which the last join error occurred............... Mar 18 19:07:28.864
  AP disconnect details
  - Reason for last AP connection failure.................... Timed out while waiting for ECHO repsonse from the AP

  Ioan,
  as you see here:
  Reason for last unsuccessful join attempt................ RADIUS authorization is pending for the AP
  It seems you need to add a mac filter for this AP on you WLC so it joins.
  Or, if you are using external radius for authorization, you need to add an entery for this AP on the radius server.
  Here are some links that may help:
  http://www.cisco.com/en/US/products/ps6366/products_tech_note09186a00808f8599.shtml#p5
  http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a00808c7234.shtml
  Don't please forget to rate the reply if it is useful.
  Cheers,
  Amjad

• AP(2720e) not joining a WLC (2504)

  I recently purchased two 2702e AP's to expand the wireless coverage of our network but when I plug them in, they will not join the AP for some reason.
  This is what I am getting on the controller;
  (Cisco Controller) >show ap join stats detailed f44e0544e944
  Discovery phase statistics
  - Discovery requests received.............................. 51
  - Successful discovery responses sent...................... 26
  - Unsuccessful discovery request processing................ 0
  - Reason for last unsuccessful discovery attempt........... Not applicable
  - Time at last successful discovery attempt................ Dec 08 10:24:37.695
  - Time at last unsuccessful discovery attempt.............. Not applicable
  Join phase statistics
  - Join requests received................................... 0
  - Successful join responses sent........................... 0
  - Unsuccessful join request processing..................... 0
  - Reason for last unsuccessful join attempt................ Not applicable
  - Time at last successful join attempt..................... Not applicable
  - Time at last unsuccessful join attempt................... Not applicable
  Configuration phase statistics
  - Configuration requests received.......................... 0
  - Successful configuration responses sent.................. 0
  - Unsuccessful configuration request processing............ 0
  - Reason for last unsuccessful configuration attempt....... Not applicable
  --More-- or (q)uit
  - Time at last successful configuration attempt............ Not applicable
  - Time at last unsuccessful configuration attempt.......... Not applicable
  Last AP message decryption failure details
  - Reason for last message decryption failure............... Not applicable
  Last AP disconnect details
  - Reason for last AP connection failure.................... Not applicable
  - Last AP disconnect reason................................ Not applicable
  Last join error summary
  - Type of error that occurred last......................... None
  - Reason for error that occurred last...................... Not applicable
  - Time at which the last join error occurred............... Not applicable
  AP disconnect details
  - Reason for last AP connection failure.................... Not applicable
  I have tried it with just the default settings and by setting the IP on the AP to no avail.
  Any suggestion would be much appreciated.
  Eric

  Hi Eric,
  What software code is running on your 2504 ? I hope it is 7.6.130.0
  If it is 8.0.100.0, then there was a crtical bug given below, you need to check whether you hitting this
  https://tools.cisco.com/bugsearch/bug/CSCur43050
  Conditions:
  Seen only with APs that were manufactured in August, September or October, 2014 - all Aironet APs were affected EXCEPT the 700 series. Seen with WLCs running 8.0.100.0 or an 8.0.100.x special.
  If the WLC was manufactured in September 2014, or later (i.e. has a SHA2 MIC), then the first symptom is seen, i.e. the AP joins the 8.0.100 WLC, downloads the image, but then fails to rejoin.
  If the WLC was manufactured before September 2014 (i.e. does not have a SHA2 MIC), then the second symptom is seen, i.e. the AP can join the 8.0.100 WLC OK, but then will fail download during a subsequent upgrade.
  Also seen with new APs trying to join a controller running IOS-XE 3.6.0 (15.3(3)JN k9w8 image.) (Track CSCur50946 for the IOS-XE fix)
  Workaround:
  Downgrade to AireOS 7.6.130.0, or to IOS-XE 3.3, if the APs are supported in the earlier code
  Pls attach  AP console output while trying to boot & register to see the exact reason for failure.
  HTH
  Rasika
  **** Pls rate all useful responses ****

• Converted 1140 AP can't join the WLC 5508

  Hello! Please, help me to sort my problem out.
  We have bought autonomous APs   AIR-AP1141N-E-K9 and converted them to the lightweight mode, but they cannot join the WLC 5508. The errors are below. There were NO problems with the LAPs that were bought before, together with the WLC.
  AP's IP: 172.22.90.27   IOS version  12.4
  WLC's IP: 172.22.90.20   IOS version 6.0.188.0
  ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  This Discussion has been converted into document:- https://supportforums.cisco.com/docs/DOC-23054
  +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  logs from the AP:
  Translating "CISCO-LWAPP-CONTROLLER"...domain server (255.255.255.255)
  *Oct 13 21:37:06.044: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
  *Oct 13 21:37:06.045: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
  *Oct 13 21:37:06.046: bsnInitRcbSlot: slot 1 has NO radio
  *Oct 13 21:37:06.056: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to a
  dministratively down
  *Oct 13 21:37:06.066: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to r
  eset
  *Oct 13 21:37:06.098: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up
  Translating "CISCO-CAPWAP-CONTROLLER"...domain server (255.255.255.255)
  *Oct 13 21:37:15.060: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-LWAPP-CONTROLL
  ER
  *Oct 13 21:37:24.060: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROL
  LER
  *Oct 13 21:37:34.060: %CAPWAP-3-ERRORLOG: Go join a capwap controller
  *Oct 13 21:38:34.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_i
  p: 172.22.90.20 peer_port: 5246
  *Oct 13 21:38:34.000: %CAPWAP-5-CHANGED: CAPWAP changed state to
  *Oct 13 21:38:34.822: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully
  peer_ip: 172.22.90.20 peer_port: 5246
  *Oct 13 21:38:34.823: %CAPWAP-5-SENDJOIN: sending Join Request to 172.22.90.20
  *Oct 13 21:38:34.823: %CAPWAP-5-CHANGED: CAPWAP changed state to JOIN
  *Oct 13 21:38:34.825: %CAPWAP-3-ERRORLOG: Unencrypted non-discovery CAPWAP Contr
  ol Message from 172.22.90.20
  *Oct 13 21:38:34.825: %CAPWAP-3-ERRORLOG: Invalid AC Message Type 4.
  *Oct 13 21:38:34.825: %CAPWAP-3-ERRORLOG: Failed to handle capwap control messag
  e from controller
  *Oct 13 21:38:39.823: %CAPWAP-5-SENDJOIN: sending Join Request to 172.22.90.20
  *Oct 13 21:38:39.823: %CAPWAP-3-ERRORLOG: Unencrypted non-discovery CAPWAP Contr
  ol Message from 172.22.90.20
  *Oct 13 21:38:39.823: %CAPWAP-3-ERRORLOG: Invalid AC Message Type 4.
  *Oct 13 21:38:39.823: %CAPWAP-3-ERRORLOG: Failed to handle capwap control messag
  e from controller
  *Oct 13 21:38:39.824: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap p
  acket from 172.22.90.20
  *Oct 13 21:39:33.999: %DTLS-5-SEND_ALERT: Send WARNING : Close notify Alert to 1
  72.22.90.20:5246
  *Oct 13 21:39:34.000: %CAPWAP-3-ERRORLOG: Go join a capwap controller
  *Oct 13 21:38:34.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_i
  p: 172.22.90.20 peer_port: 5246
  *Oct 13 21:38:34.000: %CAPWAP-5-CHANGED: CAPWAP changed state to
  *Oct 13 21:38:34.001: %DTLS-5-PEER_DISCONNECT: Peer 172.22.90.20 has closed conn
  ection.
  *Oct 13 21:38:34.001: %DTLS-5-SEND_ALERT: Send WARNING : Close notify Alert to 1
  72.22.90.20:5246
  *Oct 13 21:38:34.001: %CAPWAP-3-ERRORLOG: Invalid event 38 & state 3 combination
  *Oct 13 21:38:34.125: %CAPWAP-3-ERRORLOG: Dropping dtls packet since session is
  not established.
  logs from the WLC:
  debug capwap events enable
  *Dec 21 15:02:06.244: 68:bc:0c:63:3d:a0 DTLS keys for Control Plane deleted successfully for AP 172.22.90.27
    *Dec 21 15:02:06.246: 68:bc:0c:63:3d:a0 DTLS connection closed event receivedserver (172:22:90:20/5246) client (172:22:90:27/21077)
  *Dec 21 15:02:06.246: 68:bc:0c:63:3d:a0 Entry exists for AP (172:22:90:27/21077)
  *Dec 21 15:02:06.246: 68:bc:0c:63:3d:a0 apfSpamProcessStateChangeInSpamContext: Deregister LWAPP event for AP 68:bc:0c:63:3d:a0 slot 0
  *Dec 21 15:02:06.246: 68:bc:0c:63:3d:a0 Deregister LWAPP event for AP 68:bc:0c:63:3d:a0 slot 0
  *Dec 21 15:02:06.246: 68:bc:0c:63:3d:a0 apfSpamProcessStateChangeInSpamContext: Deregister LWAPP event for AP 68:bc:0c:63:3d:a0 slot 1
  *Dec 21 15:02:06.246: 68:bc:0c:63:3d:a0 Deregister LWAPP event for AP 68:bc:0c:63:3d:a0 slot 1
  Ble
  *Dec 21 15:04:03.194: 68:bc:0c:63:3d:a0 capwap_ac_platform.c:1223 - Operation State 0 ===> 4
  *Dec 21 15:04:03.194: 68:bc:0c:63:3d:a0 Register LWAPP event for AP 68:bc:0c:63:3d:a0 slot 0
    *Dec 21 15:05:36.253: 68:bc:0c:63:3d:a0 Join Version: = 100711424
  *Dec 21 15:05:36.253: 68:bc:0c:63:3d:a0 Join resp: CAPWAP Maximum Msg element len = 93
  debug capwap errors enable
  *Dec 21 16:16:51.879: 68:bc:0c:63:3d:a0 DTLS connection was closed
  *Dec 21 16:17:09.940: 68:bc:0c:63:3d:a0 Join Priority Processing status = 0, Incoming Ap's Priority 1, MaxLrads = 12, joined Aps =5
  debug capwap detail enable
  *Dec 21 16:21:49.961: 68:bc:0c:63:3d:a0 CAPWAP Control Msg Received from 172.22.90.27:21078
  *Dec 21 16:21:49.961: 68:bc:0c:63:3d:a0 packet received of length 281 from 172.22.90.27:21078
  *Dec 21 16:21:49.961: 68:bc:0c:63:3d:a0 Msg Type = 3 Capwap state = 5
  *Dec 21 16:21:49.961: 68:bc:0c:63:3d:a0 Join resp: Result Code message element len = 8
  *Dec 21 16:21:49.961: 68:bc:0c:63:3d:a0 1. 47 0
  *Dec 21 16:21:49.961: 68:bc:0c:63:3d:a0 2. 232 3
  *Dec 21 16:21:49.961: 68:bc:0c:63:3d:a0 3. 6 0
  *Dec 21 16:21:49.961: 68:bc:0c:63:3d:a0 4. 12 0
  *Dec 21 16:21:49.961: 68:bc:0c:63:3d:a0 Join resp: AC Descriptor message element len = 48
  *Dec 21 16:21:49.961: 68:bc:0c:63:3d:a0 acName = Wi-Fi_Controller
  *Dec 21 16:21:49.961: 68:bc:0c:63:3d:a0 Join resp: AC Name message element len = 68
  *Dec 21 16:21:49.961: 68:bc:0c:63:3d:a0 Join resp: WTP Radio Information message element len = 77
  *Dec 21 16:21:49.961: 68:bc:0c:63:3d:a0 Join resp: CAPWAP Control IPV4 Address len = 87
  *Dec 21 16:21:49.961: 68:bc:0c:63:3d:a0 Sending encrypted packet to AP 172:22:90:27 (21078)
  *Dec 21 16:21:49.961: 68:bc:0c:63:3d:a0 Releasing WTP
  *Dec 21 16:24:12.212: 68:bc:0c:63:3d:a0 CAPWAP Control Msg Received from 172.22.90.27:21077
  *Dec 21 16:24:12.212: 68:bc:0c:63:3d:a0 DTLS connection 0x167c8b20 closed by controller
  *Dec 21 16:24:12.212: DTL Deleting AP 9 - 0.0.0.0
  *Dec 21 16:24:12.214: CAPWAP DTLS connection closed msg
  *Dec 21 16:24:12.216: 68:bc:0c:63:3d:a0 Sending LWAPP Event DeReg to 'mfpSendEventReport+168' for AP 68:bc:0c:63:3d:a0(0)
  *Dec 21 16:24:12.216: Received SPAM_MFP_RADIO_DOWN message
  *Dec 21 16:24:12.218: 68:bc:0c:63:3d:a0 Sending LWAPP Event DeReg to 'l2roamInit+560' for AP 68:bc:0c:63:3d:a0(0)
  *Dec 21 16:24:12.220: 68:bc:0c:63:3d:a0 Sending LWAPP Event DeReg to 'apfSpamCallbackInSpamContext+1224' for AP 68:bc:0c:63:3d:a0(0)
  *Dec 21 16:24:12.222: 68:bc:0c:63:3d:a0 Sending LWAPP Event DeReg to 'apfSpamSendBlackListTable+376' for AP 68:bc:0c:63:3d:a0(0)
  *Dec 21 16:24:12.224: 68:bc:0c:63:3d:a0 Sending LWAPP Event DeReg to 'rrmIappSendChdPacket+2320' for AP 68:bc:0c:63:3d:a0(0)
  *Dec 21 16:24:12.226: 68:bc:0c:63:3d:a0 Sending LWAPP Event DeReg to 'asTrackInitTask+19360' for AP 68:bc:0c:63:3d:a0(0)
  *Dec 21 16:24:12.228: 68:bc:0c:63:3d:a0 Sending LWAPP Event DeReg to 'mfpSendEventReport+168' for AP 68:bc:0c:63:3d:a0(1)
  *Dec 21 16:24:12.228: Received SPAM_MFP_RADIO_DOWN message
  *Dec 21 16:24:12.230: 68:bc:0c:63:3d:a0 Sending LWAPP Event DeReg to 'l2roamInit+560' for AP 68:bc:0c:63:3d:a0(1)
  *Dec 21 16:24:12.232: 68:bc:0c:63:3d:a0 Sending LWAPP Event DeReg to 'apfSpamCallbackInSpamContext+1224' for AP 68:bc:0c:63:3d:a0(1)
  *Dec 21 16:24:12.234: 68:bc:0c:63:3d:a0 Sending LWAPP Event DeReg to 'apfSpamSendBlackListTable+376' for AP 68:bc:0c:63:3d:a0(1)
  *Dec 21 16:24:12.236: 68:bc:0c:63:3d:a0 Sending LWAPP Event DeReg to 'rrmIappSendChdPacket+2320' for AP 68:bc:0c:63:3d:a0(1)
  *Dec 21 16:24:12.238: 68:bc:0c:63:3d:a0 Sending LWAPP Event DeReg to 'asTrackInitTask+19360' for AP 68:bc:0c:63:3d:a0(1)
  *Dec 21 16:24:12.238: 68:bc:0c:63:3d:a0 Deleting and removing AP 68:bc:0c:63:3d:a0 from fast path
  P.S. The time is set to the WLC with the NTP
  P.P.S. Don't lookup at the time the logs were made - they were made not during the same day/time

  I have solved this as soon as published my problem!!!
  the answer is published here:
  https://supportforums.cisco.com/thread/2004491
  especially in the post of Matthew Fowler
  Hi,
  Please take a look at CSCte01087.
  I see that your WLC is 10.0.13.5 and your AP is 10.0.13.28/24 so they are on the same subnet. I also see your AP MAC address does not begin with 00. This is why I believe it is relevant.
  Please try the workaround or open a TAC case if you need a fix.
  -Matt
  Symptom:
  An access point running 6.0.188.0 code may be unable to join a WLC5508.
  Messages similar to the following will be seen on the AP.
     %CAPWAP-3-ERRORLOG: Invalid AC Message Type 4.
     %CAPWAP-3-ERRORLOG: Unencrypted non-discovery CAPWAP Control Message
  Conditions:
  At least one of the following conditions pertains:
  - The high order byte of the AP's MAC address is nonzero, and the AP is in
  the same subnet as the WLC5508's management (or AP manager) interface
  - The WLC's management (or AP manager) interface's default gateway's
  MAC address' high order byte is nonzero.
  Workaround:
  If the MAC address of the WLC's default gateway does not begin with 00,
  and if all of the APs' MAC addresses begin with 00, then: you can put
  the APs into the same subnet as the WLC's management (or AP manager)
  interface.
  In the general case, for the situation where the WLC's default gateway's
  MAC does not begin with 00, you can address this by changing it to begin
  with 00. Some methods for doing this include:
  -- use the "mac-address" command on the gateway, to set a MAC address
  that begins with 00
  -- then enable HSRP on the gateway (standby ip ww.xx.yy.zz) and use this
  IP as the WLC's gateway.
  For the case where the APs' MAC addresses do not begin with 00, then make
  sure that they are *not* in the same subnet as the WLC's management
  (AP manager) interface, but are behind a router.
  Another workaround is to downgrade to 6.0.182.0.  However, after
  downgrading the WLC to 6.0.182.0, any APs that have 6.0.188.0 IOS
  (i.e. 12.4(21a)JA2) still installed on them will be unable to join.
  Therefore, after downgrading the WLC, the APs will need to have a
  pre-12.4(21a)JA2 rcvk9w8 or k9w8 image installed on them.
  different vlan!!!! yes! thank you Matthew Fowler sooooo much!!!!

• LAP not joining the controller

  Gents
  I have 1 AP out of ten not joining the controller. I connected the access point to the network and I checked its boot. the access point reaches LWAPP Discovery" and then give me console input. I hard reset the access point and I hard coded an IP address for the AP the AP joins the controller, but when I reset it to assign it to another controller it did not join again.
  why the discovery process is not showing the DHCP option 43 configured and DNS for CISCO-LWAPP-CONTROLLER configured on the DNS. All the access point is operating normally except this one. it has many certificate inside, why a hard reset did not work to solve the problem?
  Please advise
  Thanks,

  Does the LAP have a valid IP address?
  Can the LAP ping the WLC managment IP address?
  Console into the LAP and in enable mode, type the command "lwapp ap controller ".

• Our service upgraded to 4g but now my Mac computer will not join the network, It sees the network but will not join

  Our service just upgraded to 4g. Now my Mac computer will not join the network. It "sees" the network but will not "join"

      Hi Hojo38,
  That's not good! What happens when you attempt to make the connection? Do you receive an error message? What device is the computer making a connection to? Send details please.
  Thanks,
  PamelaF_VZW
  Tweet us @vzwsupport

• Workstations not Joining the Domain after OSD

  I have a sporadic problem happening in my Environment.   OSD Deployments for the most part finish successful , workstation joins the domain with no issues.   At certain locations  occasionally the workstation does not join the
  domain.     Have you seen this happen before?  are there logs on the DC or DP which might explain why this is happening?

  While you are at it grab setupact.log and setuperr.log from two locations, c:\windows\panther and c:\windows\panther\unattendGC. These logs will give more details on why the domain join fails.
  Daniel Ratliff | http://www.PotentEngineer.com
  Also take a look at C:\Windows\debug\NetSetup.log.
  Cheers
  Paul | sccmentor.wordpress.com

• Why can I not join the wifi in the hotel when I am out of the country UK with data roaming turned off, Why can I not join the wifi in the hotel when I am out of the country UK with data roaming turned off

  Why can I not join the wi fi in the hotel on my I.phone using iso7 ???? I have turned off data roaming any ideas?????

  is it free or do you have to sign up and pay and is there a password
  Havee you asked the hotel ???

• I can not join the my home WIFI network. I have iPhone and iTouch connected as well as my windows laptop. I have trie power on rese, and network reset

  I can not join the my home WIFI network. I have iPhone and iTouch connected as well as my windows laptop. I have trie power on rese, and network reset. What do I do next?

  This is something else you can try.
  Go to Settings>WiFi>Your Network Name (tap the blue arrow)>Forget this Network. Reboot your iPad, hold down on the sleep button at the top for a couple of seconds until the red slider appears, slide to shut down. Then press the sleep button again until the Apple logo appears and let go of the button and the iPad will restart. Try to join your network again.

• Could not provision the RemoteApp collection. Error: Could not join the domain. Unable to reach the domain.

  Hi
  I am trying to set up an Azure RemoteApp Hybrid solution.
  I have created RemoteApp net and uploaded a custom image and all that is fine.
  When I link my template to my Collection it fails after provisioning for about an hour.
  I recive the following message: Could not provision the RemoteApp collection. Error: Could not join the domain. Unable to reach the domain.
  The join domin works fine and I have tryed with account with different lvl of access to my AD.
  Any suggestion how to solve this?

  Hello Eric,
     I am landing into the same Problem and i read your guidance on this issue. Let me answer it point by point. 
  1. Check the VPN state to ensure it is active or connected state:
  Sundesh:My Azure RemoteApp Virtual Network after successfull S2S configuration shows as Ready. Is that what you mean by Connected State? Earlier to S2S, it was just under connecting state.
  2. Verify your VNET configurations have proper IP address ranges
  Sundesh: The VNET address range, the Local address range and DNS has already been verified twice. In fact the same address ranges(with exception to VNET) are working fine on a VENT config on Azure VM instance. Verified.
  3. Verify your DNS IP configurations are valid, (often this is the problem)
  Sundesh: Yes its done and verified
  4. Verify the credentials entered for domain join are valid.
  Sundesh: Tested these credentials by joining a regular Azure VM to domain and it works there.
  5. Make sure your VPN endpoint that Azure RemoteApp service is connecting to is not blocking traffic.
  Sundesh: Can you please let us know the specific port numbers that we need to consider and i can have it checked with the Network team
  Thanks
  SUndesh

• HT204053 My iPad will not join the iCal at my work after I've been invited. It says it needs more information.

  My iPad will not join the iCal at my work after I've been invited. It says it needs more information. What up?

  A reset should help. Tap and hold the Home button and the On/Off buttons for approximately 10-15 seconds, until the Apple logo reappears. When the logo appears, release both buttons.

• AP not joining the new WLC

  Hi,
  I have an existing setup where in i have a 4400 WLC and AP 1242 registered to it.
  I had to replace the WLC with a new 5500 WLC. I tried registering the the 1242 AP with this new controller but i'm getting the following error message:
  AP0026.0b4d.093a#
  *Apr 25 07:51:59.216: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 10.7.51.11:5246
  Translating "CISCO-LWAPP-CONTROLLER"...domain server (255.255.255.255)
  Translating "CISCO-CAPWAP-CONTROLLER"...domain server (255.255.255.255)
  *Apr 25 07:52:13.735: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-LWAPP-CONTROLLER
  AP0026.0b4d.093a#
  Translating "CISCO-LWAPP-CONTROLLER"...domain server (255.255.255.255)
  *Apr 25 07:52:22.736: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROLLER
  *Apr 25 07:52:22.736: %CAPWAP-3-ERRORLOG: Dropping dtls packet since session is not established.
  *Apr 25 07:52:22.794: %WIDS-6-DISABLED: IDS Signature is removed and disabled.
  *Apr 25 07:52:22.795: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
  *Apr 25 07:52:22.796: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
  *Apr 25 07:52:22.863: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to administratively down
  *Apr 25 07:52:22.863: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to administratively down
  *Apr 25 07:52:22.885: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up
  *Apr 25 07:52:22.885: %LINK-3-UPDOWN: Interface Dot11Radio1, changed state to up
  *Apr 25 07:52:22.886: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
  *Apr 25 07:52:22.918: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up
  *Apr 25 07:52:22.918: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
  *Apr 25 07:52:22.946: %LINK-3-UPDOWN: Interface Dot11Radio1, changed state to up
  *Apr 25 07:52:22.947: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
  Translating "CISCO-CAPWAP-CONTROLLER"...domain server (255.255.255.255)
  *Apr 25 07:52:31.885: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-LWAPP-CONTROLLER
  *Apr 25 07:52:40.886: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROLLER
  *Apr 25 07:52:40.888:  status of voice_diag_test from WLC is false
  *Apr 25 07:52:40.889: %CAPWAP-3-ERRORLOG: Could not send primary discoveryrequest. The CAPWAP state has not moved to RUN yet
  *Apr 25 07:52:40.890: %CAPWAP-3-ERRORLOG: Could not send primary discoveryrequest. The CAPWAP state has not moved to RUN yet
  *Apr 25 07:52:40.900: %LWAPP-3-CLIENTERRORLOG: Primary Discovery Reply: received primary discovery reply when connected to a Primary/Secondary/Tertiary controller
  *Apr 25 07:52:50.887: %CAPWAP-3-ERRORLOG: Selected MWAR 'L&T-WLC-Powai'(index 0).
  *Apr 25 07:52:50.887: %CAPWAP-3-ERRORLOG: Go join a capwap controller 
  *Apr 25 13:23:03.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 172.16.5.3 peer_port: 5246
  *Apr 25 13:23:03.001: %CAPWAP-5-CHANGED: CAPWAP changed state to  
  *Apr 25 13:23:04.717: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 172.16.5.3 peer_port: 5246
  *Apr 25 13:23:04.718: %CAPWAP-5-SENDJOIN: sending Join Request to 172.16.5.3
  *Apr 25 13:23:04.718: %CAPWAP-5-CHANGED: CAPWAP changed state to JOIN
  *Apr 25 13:23:04.719: %DTLS-5-ALERT: Received WARNING : Close notify alert from 172.16.5.3
  *Apr 25 13:23:04.719: %DTLS-5-PEER_DISCONNECT: Peer 172.16.5.3 has closed connection.
  *Apr 25 13:23:04.720: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 172.16.5.3:5246
  *Apr 25 13:23:04.721: %CAPWAP-3-ERRORLOG: Go join a capwap controller 
  *Apr 25 07:52:41.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.7.51.11 peer_port: 5246
  *Apr 25 07:52:41.001: %CAPWAP-5-CHANGED: CAPWAP changed state to  
  *Apr 25 07:52:42.449: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.7.51.11 peer_port: 5246
  *Apr 25 07:52:42.450: %CAPWAP-5-SENDJOIN: sending Join Request to 10.7.51.11
  *Apr 25 07:52:42.450: %CAPWAP-5-CHANGED: CAPWAP changed state to JOIN
  *Apr 25 07:52:42.647: %CAPWAP-5-CHANGED: CAPWAP changed state to CFG
  *Apr 25 07:52:42.794: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
  *Apr 25 07:52:42.807: %CAPWAP-5-CHANGED: CAPWAP changed state to UP
  *Apr 25 07:52:42.808: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up
  *Apr 25 07:52:42.879: %CAPWAP-5-JOINEDCONTROLLER: AP has joined controller WLC1-T
  *Apr 25 07:52:42.940: %LWAPP-3-CLIENTEVENTLOG: SSID LTHE-Mobile added to the slot[0]
  Writing out the event log to nvram...
  The AP is getting a close message from the new controller. What could the issue be?

  After the AP gets a close message from the new WLC, it gets re associated to the old WLC.

• AP 1042N with ios 15.2(4)JB5 is not joining to WLC with ios 7.4.121.0

  I am trying to add AP 1042N with ios15.2(4)JB5  in WLC 2504 with IOS version 7.4.121.0 , but AP is not joining and
  Below mentioned is the log I am getting in the AP , here 192.168.100.10 is WLC ip
  *May 20 19:31:22.745: %CAPWAP-3-ERRORLOG: Go join a capwap controller
  *May 20 19:51:24.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 192.168.100.10 peer_port: 5246
  *May 20 19:51:24.804: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 192.168.100.10 peer_port: 5246
  *May 20 19:51:24.805: %CAPWAP-5-SENDJOIN: sending Join Request to 192.168.100.10
  *May 20 19:51:29.804: %CAPWAP-5-SENDJOIN: sending Join Request to 192.168.100.10
  *May 20 19:52:23.222: %DTLS-5-ALERT: Received WARNING : Close notify alert from 192.168.100.10
  *May 20 19:52:23.222: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 192.168.100.10:5246
  *May 20 19:52:23.223: %CAPWAP-3-ERRORLOG: Go join a capwap controller
  *May 20 19:51:24.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 192.168.100.10 peer_port: 5246
  *May 20 19:51:24.818: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 192.168.100.10 peer_port: 5246
  *May 20 19:51:24.819: %CAPWAP-5-SENDJOIN: sending Join Request to 192.168.100.10
  *May 20 19:51:29.819: %CAPWAP-5-SENDJOIN: sending Join Request to 192.168.100.10
  Can anyone tell me, is there any issue between the AP & WLC IOS compatibility or what else could be reason for this.

  Hi Thanks for everyone's comments,
                      I found solution,  I  i was extracting only one file from the tar  image and supporting files were not extracted to flash
  Now I did " “archive tar /xtract  tftp://<TFTP server IP>/<ImageName>.tar flash: “ and extracted complete tar in to the flash and changed boot priority. Now it is joining to controller
   Thank you