Our Aruba SE replicated the issue in his lab, so I know it is not an issue with this specific environment. I know it is not a firewalling issue because a capture of the switch port never sees the AP trying to communicate out.
The workaround right now is forgoing the pre-validation and forcing the migration without the checks.
The APs I have tested with so far have been successful, but unfortunately, without the pre-validation, we run the risk of an AP not being properly added to Greenlakes and having to track it down.
For anyone in the future, the command is: ap convert active specific-aps local-flash "image-name" no-pre-validation
I'm waiting to hear back if this is a bug in just 8.10.0.5 or if potentially other 8.10 releases are impacted.
Original Message:
Sent: Mar 29, 2024 07:50 AM
From: MH33
Subject: AOS8 to 10 Migration - Pre-Validate Failure (dns error)
The controller and APs are currently running 8.10.0.5 LSR
We are migrating AOS8 Campus APs to Central. When trying to do a pre-validate check from the controller all APs are failing with the following error message :
Pre Validate Failed dns error(Central) device-uswest4.central.arubanetworks.com
I was able to SSH into the AP and confirmed that it can resolve DNS, including the central FQDN, and also reach the internet
As an extra validation, I ran a capture on the APs switchport. During the pre-validation, I see the AP resolve the record, but then it never attempted to reach out to any of the returned IPs. It only reaches out to devices.arubanetworks.com
I opened a TAC case, and they responded that they don't support migrations from AOS8 to AOS10??? We would need to involve Aruba professional services, even though this is a specific question about the documented process.
Has anyone seen this error in the past and/or have recommendations on how to proceed? Is it possible its a bug in the AOS8 code they are on (8.10.0.5). I searched the defect database but could not find any documented bugs.
My only idea now is to upgrade to a later 8.10 version.
If the documented method of converting AOS8 controller-managed APs doesn't work, what other methods are there to migrate a few hundred APs?