WLC 5508 running 7.4.110.0 unable to tftp upload config from controller

Similar Messages

• Unable to refresh config from controller

  After migrating the data from CPI 2.1 to 2.2, I am unable to refresh the config from controllers that are on version 7.0.220.0.  I am able to refresh on the contrlollers that run on version 7.4 and 7.6 successfully.  I checked the compatibiliy metrix and 7.0.220.0 is listed as a supported verison on CPI 2.2.
  I open up a TAC but they have been struggling with this for the past 3 weeks now.
  Please advice what could be the issue.  Thank you.
  Phil.

  Hi. I had this same issue with 9.2. I found that there was a user which was no longer in the AD that was still in planning.
  First thing to check is can you see the users in SS - I suspect not but worth a look. If you can, deprovision them. If you cant (most likely) you will need to use an LDAP browser to clean them out, which is a very messy process.
  Best of luck.
  Sean

• WLC 5508 and 7.4.110.0 and AP Blackhole?

  So large customer had WLCs running 7.4.110.0 and it appears there was either a 3500/3600 AP memory leak or a CCKM roaming issue. The APs would occasionally blackhole traffic. You could see 2+ APs at -67dbm in 5GHz.  Phones are locked to 5GHz, data rates matched. .  Phone showed good strong signal, but   7925 users would report every couple days the phone dropping/DHCP timeout, re-registering, etc.  We had a large CSE/TAC group onsite audit the 7925 Deployment Guide and setup, and we did a lot of cleanup but never hit the silver bullet.
  After upgrading the 5508 to  7.4.121.4  (TAC special not on Cisco.com) they reported the 7925 problems have improved.  Only been 1 day so far.
  There is also a WPA2 with Preshared Key  CCKM bug with the 7925s that roaming takes 2s.  Use either strong WEP or buy 7926s, or use EAP/certificates, etc. https://tools.cisco.com/bugsearch/bug/CSCtt38270
  7.4.121.0 Release Notes
  http://www.cisco.com/c/en/us/td/docs/wireless/controller/release/notes/crn74mr02.html#wp1142453
  We are running daily Traffic Stream Metrics (TSM) reports from Prime/WLC, and exporting the CallManager Diagnositc LQK records (export via CAR) to show if things are improving/etc.

  Thanks Stephen, In my deployments of 7.4.110.0 version I have not seen this issue so may be controller reboot will fix it (we do have HA to minimize the impact). I will keep the thread updated with findings and may request TAC for the special release 7.4.121.0 if the still not happy with 7.4.110.0
  Rick.

• Migrating AP's from WLC 4400 v.4.0.179.11 to WLC 5508 v.7.2.110.0

  Hi,
  I am replacing an old 4400 series WLC running version 4.0.179.11 to a new 5508 WLC running version 7.2.110.0.
  We currently have 70 x 1131 Access points on the 4400 WLC.
  With this upgrade, do i need to upgrade the old 4400 to version 6.0 so the AP's get an up to date IOS or can i directly migrate all AP's over to the new 5508 without any version incompatabilities on the AP's?
  I am abit worried that the AP's are running a very old IOS on the 4400 v.4.0.179.11 to go straight to the new 5508 v.7.2.110.0.
  Thanks

  Hi,
  Check out this release note
  http://www.cisco.com/en/US/docs/wireless/controller/release/notes/crn7_2_110_0.html#wp976667
  You'll need to get up to a supported version of 6.0 first as per the release notes.
  You'll need to check out the 6.0 release notes too to make sure there are no other intermediate upgrade steps required too.
  Nigel
  Sent from Cisco Technical Support iPad App

• ISE 1.3 not receiving Radius requests from WLC 5508 ver 8.0.110.0

  Hello all. I just implemented ISE 1.3 at a customer site. added a WLC running 8.0.110.0 using its mgmt address with a RADIUS preshared key. On the WLC, I created to SSIDs, corp and guest.
  For corp I configured WPA2 and AES and forwarded Radius requests to my 2 ISE node PSN interfaces
  For the guest I configured MAC filter with advanced features AAA overide and Radius NAC - per Cisco's documents
  The corp forwards Radius requests to ISE, the guest does not. I get nothing from the guest.
  I configured the WLC step by step from the Cisco document. I have completed over 10 ISE implementations in the last year using ISE 1.2 and WLC 7.x and have never run into this issue before.
  Any help will be much appreciated.

  This issue has been resolved. The issue was that for the guest SSID MAC filtering was enabled as required, but they had the test PCs on a mac filter bypass list for that SSID in the WLC. This was automatically authenticating the PC, and therefore not forwarding the RADIUS to ISE.
  Once we removed the PC from the MAC filter list in the WLC, the authentications were forwarded to ISE as desired.

• Configuring a AP 1552EU-A-K9 in layer 2 mode thru a WLC 5508 running 7.6.130.0

  We have an outdoor AP that we want to bridge to another one that is also outside and connect to our WLC 5508. I see a lot of data for connecting via a layer 3 network, but nothing yet on a layer 2 network (which we run). Can anyone point me to some doc that would explain this?

  We have an outdoor AP that we want to bridge to another one that is also outside and connect to our WLC 5508. I see a lot of data for connecting via a layer 3 network, but nothing yet on a layer 2 network (which we run). Can anyone point me to some doc that would explain this?

• Unable to add SNMP server in WLC 5508 with 7.4.110

  hi
  I am trying to add 0.0.0.0/0 as SNMP address and netmask and i am getting an error saying the netmask is invalid.
  is there a different way to set this?           

  Hi Roy,
  This is strange.
  I do not have a test WLC with this code to test, but command syntax is correct. I have verified it on my test controller in 7.0.116.0 & it is happy to accept it. Even 7.4 config guides does not show any other command syntax for this.
  http://www.cisco.com/en/US/docs/wireless/controller/7.4/configuration/guides/consolidated/b_cg74_CONSOLIDATED_chapter_0111.html
  One good thing is, this is the default setting once you create a snmp-community. It should have 0.0.0.0/0 as subnet/net mask & you do not require any changes for the default config.
  "show snmpcommunity" output should show the config values for your SNMP community.
  If you are trying to change it from configured subnet to default value, then as a work around you can re-create the snmp commnuity from fresh (delete & recreate)
  If you have Cisco TAC assistance then log a case with them to see why this command is not accepting in your code of WLC
  HTH
  Rasika
  **** Pls rate all useful responses ****

• WLC 5508 / firmware 7.2.110.0 is restarting automatically ( COLD START )

                     Hi Experts ,
  I am having weird issue with 5508 controller which is having firmware 7.2.110.0 . This controller is restarting automatically
  Since this issue was occuring since long time with earlier version , I have upgraded to 7.2.110.0 , however still no luck ....
  I do not have any logs related to controller crash info.

  Hey Scott,
  I'm about to upgrade a 5508 controller from 7.0.220.0 to 7.4.110.0 , and was just prepping myself on upgrading the FUS as it will be the first time. Latest for 5508 is 1.7 and I noticed for 2504 its 1.8.
  I was just curious where you saw that its mandatory to upgrade the FUS ? I can't seem to locate any actual documentation specifying anything about upgrading the FUS when going from one version to another etc. I know one of my clients has a 5508 on 7.4 with the old FUS (see below).
  Bootloader Version............................... 1.0.1Field Recovery Image Version..................... 6.0.182.0
  Firmware Version................................. FPGA 1.3, Env 1.6, USB console 1.27
  Build Type....................................... DATA + WPS
  Looking forward to your reply
  Thanks !

• Trying to get home shaing working on apple tv using Cisco Access points and a Cisco WLC 5508 with 7.2.110 code.  I can get devices working individually but they never see each other.  I can ping the apple tv from my laptop and ipad.

  Trying to get home sharing working on a corporate wireless network.  Cisco wireless.
  WLC5508 controller
  Cisco 3502 access points
  All apple devices on same WLAN - security WPA2-PSK
  ITunes account up to date
  All devices laterst software.
  Can ping apll tv from laptop
  can ping apple tv from ipad
  Can ping ipad from laptop
  can ping laptop from ipad.
  Apple tv never sees any other device.
  Any ideas?

  Fascinating just reading about your setup. I have a WRT350N and have noticed that it will drop its speed, sometimes down to 1Mbps. It seems to do so at about the same time every day, but usually comes back to speed in about 5 minutes. In my experience, the Apple TV will disconnect if the speed falls this low. Try monitoring the Linksys with Netstumbler, Vistumbler, or just in the Windows Network utility.
  Check the "lease obtained" and "lease expired" times for your router to see if that is when the network fails. I've just finished reading an angry thread over at the Linksys forum about the WRT330N where someone mentioned that the router wasn't renewing its lease.
  "I cannot set it run off automatic DHCP from the WRT330N, the router will not assign it an IP every time the lease expires, causing me to have to manually set an IP on the Print server. That's annoying. Having the router drop IP's to individual machines after 12-48 hours...very annoying."
  http://forums.linksys.com/linksys/board/message?board.id=Wireless_Routers&thread .id=67412
  If that is the problem, then I would consider setting up a Static IP address for your Apple TV. You can do that through the user interface -> Settings -> Network -> Configure ... (Quite intuitive as you only have change IP address and the subsequent details remain the same.)
  My router assigns IP Addresses in the ranges of 192.168.1.100 ->149. The idea here is to choose an address outside of that range but is not greater than 192.168.1.253 (and should not end in the number 1). You shouldn't have to change the linksys router as long as 50 clients are assigned in that range. You'll have to figure that out by accessing your router webpage at browser address 192.168.1.1 -> the default password is "admin" (without the quotes).
  Good luck.

• I have a new iPod Touch and PC running Windows 7. I want to upload pictures from my PC to my iPod. The best I can do right now is to create a new subdirectory on my PC and put all the pictures I want in that subdirectory. I want many subdirectories! ??

  I have a new iPod Touch. I also run Windows 7 on my desktop PC. I have tried to post pictures from my PC to the iPod. But the only way you can do this that I know of, is to create a subdirectory on the PC and put all of your pictures that you want on the iPod in that subdirectory. Then you must use iTunes to synchronize the PC subdirectory with photos on the iPod. But I want many subdirectories to organize my pictures on the iPod. Can you do this??, it doesn't look to me like you can!??
  Thanks Tom

  Yes.
  tomfromlong beech wrote:
  "Remember one one level of subfolders is allowed."  Does this mean that you can have as many subfolders as you want, but they can only be one level deep under the main folder?

• Unable to copy current-config from IPS 4240 to FTP server

  I am in the process of upgrading our Signature File at a client site where there is a 4240 installed.
  The readme file for Signature S353 indicates that a copy of the running configuration should be saved away.
  I have FTP running on my desktop.
  I am entering the following command on the IPS at CLI:
  bhiips# copy current-config ftp://192.168.5.189
  where I am then prompted for my username, then filename, then password.
  I watch as the IPS indicates "Generating current config".
  The log output of the FTP (Filezilla) shows my FTP connection successful, but then it bombs. Here is an excerpt:
  00151) 08/27/2008 15:45:47 PM - (not logged in) (192.168.10.53)> Connected, sending welcome message...
  (000151) 08/27/2008 15:45:47 PM - (not logged in) (192.168.10.53)> 220-FileZilla Server version 0.9.24 beta
  (000151) 08/27/2008 15:45:47 PM - (not logged in) (192.168.10.53)> 220-written by Tim Kosse ([email protected])
  (000151) 08/27/2008 15:45:47 PM - (not logged in) (192.168.10.53)> 220 Please visit http://sourceforge.net/projects/filezilla/
  (000151) 08/27/2008 15:45:47 PM - (not logged in) (192.168.10.53)> USER Kevin
  (000151) 08/27/2008 15:45:47 PM - (not logged in) (192.168.10.53)> 331 Password required for kevin
  (000151) 08/27/2008 15:45:47 PM - (not logged in) (192.168.10.53)> PASS ***
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> 230 Logged on
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> PWD
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> 257 "/" is current directory.
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> EPSV
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> 229 Entering Extended Passive Mode (|||2125|)
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> TYPE I
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> 200 Type set to I
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> STOR current
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> 550 Permission denied
  (000151) 08/27/2008 15:45:47 PM - kevin (192.168.10.53)> disconnected.
  What could be the problem here? I checked the Windows Firewall on my workstation at 192.168.5.189,but it is turned off. I am not sure why I cant save the config away.
  It is holding me up from moving forward with the upgrade to Sig 353.
  thx

  Have you checked permissions on your FTP server to see if a client is able to PUT a file onto your FTP server.
  Try connecting from a separate windows PC to your FTP server and login with the userid and password you are using in your copy command. And then try to push a file with a similar name on to your FTP server.
  It could be that the FTP server is not configured to allow that userid to put a file on the server.
  When you try the above test try and use an FTP client that supports Passive mode. There might be a problem with passive mode on your FTP server.
  You might also try running another test from the sensor, but this time instead of copying the configuration try copying the license file from the sensor to your ftp server.

• WLC 5508 - Error When Uploading Webauth Bundle

  Currently have a WLC 5508 running 7.4.110.0.  I'm trying to upload (download) a webauth bundle to the controller from the web interface and am getting an error.  I've tried using FTP, SFTP and TFTP and get a different error with each.  When I started out with this, I was using a modified login.tar.  Thinking this was the problem, I switched to using the login.tar file included with the Web Authentication Bundle version 1.0.2 downloaded from the Cisco site.  This file fails with the errors below.  Does anyone have suggestions as to what I'm doing wrong?  Is this is a known bug in this version of the software?  Thanks!
  For FTP:
  The web interface shows: 
  % Error: Webauth Bundle file transfer failed - Unknown error - refer to log.   
  Log on the controller shows: 
  *TransferTask: May 28 13:51:12.942: #UPDATE-3-FTP_TRANSFER_FAIL: updcode.c:5631
  Error FTP file Transfer [ftp_get], <30>, Read-only file system.
  For SFTP:
  The web interface shows:
  % Error: Webauth Bundle file transfer failed - Unknown error - refer to log.
  Log on the controller shows: 
  *TransferTask: May 28 14:52:58.779: #UPDATE-3-SFTP_TRANSFER_FAIL: updcode.c:5869
   Error SFTP file Transfer [sftp_get], <11>, Resource temporarily unavailable.
  For TFTP:
  The web interface shows:
  % Error: Webauth Bundle file transfer failed - Unknown error - refer to log.
  Log on the controller shows: 
  *TransferTask: May 28 15:02:39.232: #UPDATE-3-FILE_OPEN_FAIL: updcode.c:4593 Fai
  led to open file webauth.tar.
  *sshpmReceiveTask: May 28 15:02:39.153: #OSAPI-3-MUTEX_FREE_INFO: osapi_sem.c:10
  87 Sema 0x2b32def8 time=11504 ulk=18587678 lk=18576174 Locker(sshpmReceiveTask s
  shpmrecv.c:1662 pc=0x10b07938) unLocker(sshpmReceiveTask sshpmReceiveTaskEntry:1
  647 pc=0x10b079

  Hi,
  1. Did you used  PIcozip to compress your webauth bundle?
  2. Did you try only with one laptop , if yes then try to use other one.
  3. Just try to upload default webauth bundl from cisco to wlc and show the result to us.
  7.4.121.0 is very stable version.
  Regards

• WLC 5508 with AD, NPS but without GPO, how?

  Hi,
  I didn't found anything related to what I'm trying to do so I though I would create a new discussion...
  I would like to setup a new WLAN and to be able to connect, a user will have to enter his username/password that will be confirmed using NPS and Active Directory. The problem is, I don't want to use a GPO, I would like to only verify if the user is a member of a AD group, let's say "wlan_access".
  I don't want to install anything ( certificate, GPO, creating a WLAN configuration ) on the user's PC/laptop, only AD validation using NPS as a Radius server.
  If a user is part of that AD group, after he enter his credential he will have access to that WLAN.
  Is it possible to setup that? How should I configured the WLAN in my WLC 5508 ( running 7.2.110.0 )? How should I configure NPS ( Windows 2008 R2 Enterprise )?
  Thanks a lot for your help and answers.
  Guillaume

  Hi guys,
  With the info Stephen Rodriguez gave, it looks like I won't be able to do what we want without doing config on the user's devices ( laptop, ipad, etc.. ).
  @Joseph Vasanth Louis Yes the message is from the event viewer of the NPS server. In the connection request policies, there's not much config, I let the option "Authentication Methods" in the tab Settings uncheck, so it won't override the settings in the Network Policies.
  I though it was possible to have authentication using NPS and Active Directoy without installing anything on the user's devices and still having a secured wireless network ( not like a hotspot ).
  The solution I think is the most workable is with the PEAP or PSK, with a certificate but even that...the user will have to create the WLAN profil on his laptop, so I'm not sure we want to go that way. I'll check for the PSK option, to see if the "Web Authentication" could be done using NPS.
  Thanks guys for all your time and help. I'll continue my tests and keep you posted.

• 3602i CAP unable to join WLC 5508

  Hi All,
  Hope to you a very happy new year,
  I have an (AIR-CAP3602i-E-K9) and I tried to join it to WLC 5508 but I'm facing an error,
  I get this error from the LAP 1310 console as below:
  Reading cookie from SEEPROM
  Base Ethernet MAC address: 60:73:5c:ad:cb:9c
  Boot CMD: 'boot  flash:/ap3g2-rcvk9w8-mx/ap3g2-rcvk9w8-xx;flash:/ap3g2-rcvk9w8-mx/ap3g2-rcvk9w8-mx'
  Loading "flash:/ap3g2-rcvk9w8-mx/ap3g2-rcvk9w8-xx"...#####################
  File "flash:/ap3g2-rcvk9w8-mx/ap3g2-rcvk9w8-xx" uncompressed and installed, entry point: 0x2003000
  executing...
                Restricted Rights Legend
  Use, duplication, or disclosure by the Government is
  subject to restrictions as set forth in subparagraph
  (c) of the Commercial Computer Software - Restricted
  Rights clause at FAR sec. 52.227-19 and subparagraph
  (c) (1) (ii) of the Rights in Technical Data and Computer
  Software clause at DFARS sec. 252.227-7013.
             cisco Systems, Inc.
             170 West Tasman Drive
             San Jose, California 95134-1706
  Cisco IOS Software, C3600 Software (AP3G2-RCVK9W8-M), Version 15.2(2)JA, RELEASE SOFTWARE (fc1)
  Technical Support: http://www.cisco.com/techsupport
  Copyright (c) 1986-2012 by Cisco Systems, Inc.
  Compiled Thu 23-Aug-12 02:43 by prod_rel_team
  Initializing flashfs...
  flashfs[2]: 6 files, 3 directories
  flashfs[2]: 0 orphaned files, 0 orphaned directories
  flashfs[2]: Total bytes: 31997952
  flashfs[2]: Bytes used: 7015936
  flashfs[2]: Bytes available: 24982016
  flashfs[2]: flashfs fsck took 9 seconds.
  flashfs[2]: Initialization complete.
  flashfs[3]: 0 files, 1 directories
  flashfs[3]: 0 orphaned files, 0 orphaned directories
  flashfs[3]: Total bytes: 12257280
  flashfs[3]: Bytes used: 1024
  flashfs[3]: Bytes available: 12256256
  flashfs[3]: flashfs fsck took 0 seconds.
  flashfs[3]: Initialization complete....done Initializing flashfs.
  This product contains cryptographic features and is subject to United
  States and local country laws governing import, export, transfer and
  use. Delivery of Cisco cryptographic products does not imply
  third-party authority to import, export, distribute or use encryption.
  Importers, exporters, distributors and users are responsible for
  compliance with U.S. and local country laws. By using this product you
  agree to comply with applicable laws and regulations. If you are unable
  to comply with U.S. and local laws, return this product immediately.
  A summary of U.S. laws governing Cisco cryptographic products may be found at:
  http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
  If you require further assistance please contact us by sending email to
  [email protected].
  Warning:  the compile-time code checksum does not appear to be present.
  cisco AIR-CAP3602I-E-K9    (PowerPC) processor (revision A0) with 180214K/81920K bytes of memory.
  Processor board ID FCZ1642J01K
  PowerPC CPU at 800Mhz, revision number 0x2151
  Last reset from power-on
  LWAPP image version 7.3.1.73
  1 Gigabit Ethernet interface
  32K bytes of flash-simulated non-volatile configuration memory.
  Base ethernet MAC Address: 60:73:5C:AD:CB:9C
  Part Number                          : 73-14521-02
  PCA Assembly Number                  : 800-37501-02
  PCA Revision Number                  : A0
  PCB Serial Number                    : FOC16352BJ0
  Top Assembly Part Number             : 800-35852-02
  Top Assembly Serial Number           : FCZ1642J01K
  Top Revision Number                  : C0
  Product/Model Number                 : AIR-CAP3602I-E-K9
  % Please define a domain-name first.
  logging facility kern
          ^
  % Invalid input detected at '^' marker.
  logging trap emergencies
          ^
  % Invalid input detected at '^' marker.
  logging facility kern
          ^
  % Invalid input detected at '^' marker.
  logging trap emergencies
          ^
  % Invalid input detected at '^' marker.
  Press RETURN to get started!
  *Mar  1 00:00:10.355: %LWAPP-3-CLIENTERRORLOG: Config load from flash failed. Initialising Cfg
  *Mar  1 00:00:11.971: %LINK-6-UPDOWN: Interface GigabitEthernet0, changed state to up
  *Mar  1 00:00:12.575: %SYS-5-RESTART: System restarted --
  Cisco IOS Software, C3600 Software (AP3G2-RCVK9W8-M), Version 15.2(2)JA, RELEASE SOFTWARE (fc1)
  Technical Support: http://www.cisco.com/techsupport
  Copyright (c) 1986-2012 by Cisco Systems, Inc.
  Compiled Thu 23-Aug-12 02:43 by prod_rel_teamlwapp_crypto_init: MIC Present and Parsed Successfully
  *Mar  1 00:00:13.603: %LINEPROTO-5-UPDOWN: Line protocol on Interface BVI1, changed state to up
  *Mar  1 00:00:15.387: DPAA Initialization Complete
  *Mar  1 00:00:15.387: %SYS-3-HARIKARI: Process DPAA INIT top-level routine exited
  *Mar  1 00:00:15.979: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0, changed state to up
  no bridge-group 1 source-learning
                     ^
  % Invalid input detected at '^' marker.
  %Default route without gateway, if not a point-to-point interface, may impact performance
  *Mar  1 00:00:32.327: %CDP_PD-2-POWER_LOW: All radios disabled - NEGOTIATED WS-C2960S-48FPD-L (10bd.18a5.6082)
  *Mar  1 00:00:48.579: %DHCP-6-ADDRESS_ASSIGN: Interface BVI1 assigned DHCP address 10.114.42.204, mask 255.255.255.128, hostname AP6073.5cad.cb9c
  Translating "CISCO-CAPWAP-CONTROLLER"...domain server (10.114.44.129) (8.8.8.8)
  *Mar  1 00:00:59.459: %CAPWAP-5-DHCP_OPTION_43: Controller address 10.114.44.131 obtained through DHCP
  *Mar  1 00:00:59.459: %CAPWAP-3-ERRORLOG: Did not get log server settings from DHCP.
  *Mar  1 00:01:00.015: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROLLER
  *Mar  1 00:01:00.015: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'CIR906.WLC.5508'running version 7.0.235.3 is rejected.
  *Mar  1 00:01:00.015: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
  *Mar  1 00:01:00.015: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
  *Mar  1 00:01:00.015: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
  *Mar  1 00:01:00.015: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 10.114.44.131
  *Mar  1 00:01:10.015: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'CIR906.WLC.5508'running version 7.0.235.3 is rejected.
  *Mar  1 00:01:10.015: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
  *Mar  1 00:01:10.015: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
  *Mar  1 00:01:10.015: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
  *Mar  1 00:01:10.015: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 10.114.44.131
  *Mar  1 00:01:20.015: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'CIR906.WLC.5508'running version 7.0.235.3 is rejected.
  *Mar  1 00:01:20.015: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
  *Mar  1 00:01:20.015: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
  *Mar  1 00:01:20.015: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
  *Mar  1 00:01:20.015: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 10.114.44.131
  *Mar  1 00:01:30.015: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'CIR906.WLC.5508'running version 7.0.235.3 is rejected.
  *Mar  1 00:01:30.015: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
  *Mar  1 00:01:30.015: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
  *Mar  1 00:01:30.015: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
  *Mar  1 00:01:30.015: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 10.114.44.131
  *Mar  1 00:01:32.343: %CDP_PD-2-POWER_LOW: All radios disabled - NEGOTIATED WS-C2960S-48FPD-L (10bd.18a5.6082)
  *Mar  1 00:01:40.015: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'CIR906.WLC.5508'running version 7.0.235.3 is rejected.
  *Mar  1 00:01:40.015: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
  *Mar  1 00:01:40.015: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
  *Mar  1 00:01:40.015: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
  *Mar  1 00:01:40.015: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 10.114.44.131
  Not in Bound state.
  *Mar  1 00:01:55.515: %CAPWAP-3-DHCP_RENEW: Could not discover WLC using DHCP IP. Renewing DHCP IP.
  *Mar  1 00:02:02.519: %CAPWAP-3-ERRORLOG: Invalid event 38 & state 2 combination.
  *Mar  1 00:02:02.555: %DHCP-6-ADDRESS_ASSIGN: Interface BVI1 assigned DHCP address 10.114.42.205, mask 255.255.255.128, hostname AP6073.5cad.cb9c
  Translating "CISCO-CAPWAP-CONTROLLER"...domain server (10.114.44.129) (8.8.8.8)
  *Mar  1 00:02:06.515: %CAPWAP-5-DHCP_OPTION_43: Controller address 10.114.44.131 obtained through DHCP
  *Mar  1 00:02:06.515: %CAPWAP-3-ERRORLOG: Did not get log server settings from DHCP.
  *Mar  1 00:02:06.631: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROLLER
  *Mar  1 00:02:06.631: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'CIR906.WLC.5508'running version 7.0.235.3 is rejected.
  *Mar  1 00:02:06.631: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
  *Mar  1 00:02:06.631: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
  *Mar  1 00:02:06.631: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
  *Mar  1 00:02:06.631: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 10.114.44.131
  *Mar  1 00:02:16.631: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'CIR906.WLC.5508'running version 7.0.235.3 is rejected.
  *Mar  1 00:02:16.631: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
  *Mar  1 00:02:16.631: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
  *Mar  1 00:02:16.631: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
  *Mar  1 00:02:16.631: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 10.114.44.131
  *Mar  1 00:02:26.631: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'CIR906.WLC.5508'running version 7.0.235.3 is rejected.
  *Mar  1 00:02:26.631: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
  *Mar  1 00:02:26.631: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
  *Mar  1 00:02:26.631: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
  *Mar  1 00:02:26.631: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 10.114.44.131
  Please Advise,
  Thanks in Advanced,
  Ahmed,

  Your WLC is running a 7.0.235.3.  This firmware is suitable for your 1300 but you need at least 7.2.X to run 3600.
  As I've mentioned in your other thread, you can get a refurbished 4402/4404 cheap from Cisco Refurbished.  You can use the 4400 to run your 1310 and the 5508 to run the newer APs.

• Format WLC-5508 Flash and IOS recovery guide

  Dear Support Cummunity,
  i have a WLC-5508 where by i am unable to join any kind of AIR-LAP1x00 Access-Points.
  They can't join in the local management ip of the controller within same L2 or via routed network thereby using the APs CLi by
  "lwapp ap controller ip addr xx.xx.xx.xx".
  I upgraded from: 6.0.188.0 to
  AIR-CT5500-K9-6-0-199-0.aes
  AIR-CT5500-K9-7-0-98-0.aes
  thereby catching the same logs every time.
  The main error message from the WLCs log i catched first  is:
  "maximum number of downloads (0) exceeded"
  *sntpReceiveTask: Jul 16 07:40:58.827: %LOG-3-Q_IND: capwap_ac_sm.c:1683 Ignoring discovery request from AP 00:26:99:86:c9:b9 - maximum number of downloads (0) exceeded
  *spamApTask1: Jul 16 07:40:58.343: %CAPWAP-3-DISC_MAX_DOWNLOAD: capwap_ac_sm.c:1683 Ignoring discovery request from AP 00:26:99:86:c9:b9 - maximum number of downloads (0) exceeded
  *sntpReceiveTask: Jul 16 07:40:48.822: %LOG-3-Q_IND: capwap_ac_sm.c:1683 Ignoring discovery request from AP 00:26:99:86:c9:b9 - maximum number of downloads (0) exceeded
  *spamApTask1: Jul 16 07:40:48.342: %CAPWAP-3-DISC_MAX_DOWNLOAD: capwap_ac_sm.c:1683 Ignoring discovery request from AP 00:26:99:86:c9:b9 - maximum number of downloads (0) exceeded
  Later on i found some more logging infos:
  *Aug 16 04:12:07.188: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read configuration file 'cliWebInitParms.cfg'
  *Aug 16 04:12:07.188: %CNFGR-3-INV_COMP_ID: cnfgr.c:2080 Invalid Component Id : Unrecognized (81) in cfgConfiguratorInit.
  *Aug 16 04:12:07.139: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read configuration file 'rfidInitParms.cfg'
  *Aug 16 04:12:07.126: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read configuration file 'dhcpParms.cfg'
  *Aug 16 04:12:07.113: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read configuration file 'bcastInitParms.cfg'
  *Aug 16 04:12:07.047: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read configuration file 'rrmInitParms.cfg'
  *Aug 16 04:12:06.906: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read configuration file 'apfInitParms.cfg'
  *Aug 16 04:12:06.801: %MM-3-MEMBER_ADD_FAILED: mm_dir.c:860 Could not add Mobility Member. Reason: IP already assigned, Member-Count:1,MAC: 00:00:00:00:00:00, IP: 0.0.0.0
  *Aug 16 04:12:06.599: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read configuration file 'mmInitParms.cfg'
  *Aug 16 04:12:06.589: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read configuration file 'aaaapiInitParms.cfg'
  *Aug 16 04:12:06.587: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read configuration file 'pemInitParms.cfg'
  *Aug 16 04:12:06.474: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read configuration file 'dot1xInitParms.cfg'
  *Aug 16 04:12:06.446: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read configuration file 'capwapInitParms.cfg'
  *Aug 16 04:12:06.301: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read configuration file 'spamInitParms.cfg'
  *Aug 16 04:12:06.298: %LICENSE-1-REQUEST_FAILED: license_syslog_notify:564 License request for feature base-ap-count 1.0 failed in this device, UDI=AIR-CT5508-K9:FCW1341L530
  *Aug 16 04:12:05.221: %SSHPM-3-FREAD_FAILED: sshpmlscscep.c:1268 Error reading file /mnt/application/lscca_pem.crt
  *Aug 16 04:11:46.121: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read configuration file 'sshpmInitParms.cfg'
  as for me it looks like my filesystem is kind of corrupted since several files can not be read.
  now at power up one can choose 5 in order to format flash/disk. unfortuanitly i have not found some documentation about formatting flash procedures.
  please guide me to the appropriate documentation.
  ============================================================
  Boot Loader Menu
  ============================================================
  1. Run primary image (7.0.98.0) - Active
  2. Run backup image (6.0.199.0)
  3. Change active boot image
  4. Clear configuration
  5. Format FLASH Drive
  6. Manually update images
  Enter selection: 5
  Launching...
  WARNING!  Choose this option may render the device warranty invalid
  and/or make the device unusable.
  what are my next steps going to be from here in order to format/restore?
  thank you
  colin

  (Cisco Controller) >show sys
  Incorrect usage.  Use the '?' or key to list commands.
  (Cisco Controller) >show sysinfo
  Manufacturer's Name.............................. Cisco Systems Inc.
  Product Name..................................... Cisco Controller
  Product Version.................................. 7.0.98.0
  Bootloader Version............................... 1.0.1
  Field Recovery Image Version..................... N/A
  Firmware Version................................. FPGA 1.3, Env 1.6, USB console 1.27
  Build Type....................................... DATA + WPS
  System Name...................................... WLC
  System Location..................................
  System Contact...................................
  System ObjectID.................................. 1.3.6.1.4.1.9.1.1069
  IP Address....................................... 192.168.11.16
  Last Reset....................................... Software reset
  System Up Time................................... 0 days 0 hrs 4 mins 41 secs
  System Timezone Location......................... (GMT +1:00) Amsterdam, Berlin, Rome, Vienna
  Current Boot License Level....................... base
  Current Boot License Type........................ Permanent
  Next Boot License Level.......................... base
  Next Boot License Type........................... Permanent
  Configured Country............................... CH  - Switzerland
  --More-- or (q)uit
  Operating Environment............................ Commercial (0 to 40 C)
  Internal Temp Alarm Limits....................... 0 to 65 C
  Internal Temperature............................. +39 C
  External Temperature............................. +25 C
  Fan Status....................................... OK
  State of 802.11b Network......................... Enabled
  State of 802.11a Network......................... Enabled
  Number of WLANs.................................. 1
  Number of Active Clients......................... 0
  Burned-in MAC Address............................ 00:24:97:CE:E0:40
  Power Supply 1................................... Present, OK
  Power Supply 2................................... Absent
  Maximum number of APs supported.................. 0  ç ???
  why is it that it tells me i've got 0 APs supported on a permanent base license witch ships per default?
  i tried to install a evaluation License but without success..