Hi Gary,
I do a small test in my HomeLAB environment, see attachment the video. In follow the procedure that was my first post on this thread
1. I make two new AP group, just for testing purpose.
2. Check CPSEC is on with auto prov. certificates
3. I clear two AP-105 to factory defaults and turn them off.
4. Add the whitelist to the /MD folder
5. Boot the AP up
6. Each AP came up in the corresponding AP-Group
7. AP reboot couple off times for certifcate provisioning and firmware upgrades, you see a part of this proces on the end of the video.
Works perfect in my test.
I will recommend add one of you new AP to the withlist, connect that AP and see if its working for you. Not just add the whitelist and look for "unaproved". I believe the AP should be approved when you connect it because CPSEC auto prov. is enabled.
Hope this helps