AP not registering to vWLC

AP not registering to vWLC

%CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: X.X.X103 peer_port: 5246

%DTLS-5-SEND_ALERT: Send FATAL : Unexpected message Alert to X.X.X103:5246

%DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to X.X.X103:5246

%CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: X.X.X103 peer_port: 5246

%CAPWAP-1-SSC_CERT_AUTH_FAILED: Failed to authorize controller, SSC certificate validation failed.Peer certificate verification failed FFFFFFFF



Steps

1. Login in to vWLC using SSH

2. Make sure the certificates and time is correct

(Cisco Controller) >show certificate ssc

SSC Hash validation.............................. Enabled.


SSC Device Certificate details:


  Subject Name :

   C=US, ST=California, L=San Jose, O=Cisco Virtual Wireless LAN Controller,

   CN=DEVICE-vWLC-AIR-CTVM-K9-000C29085BB8, MAILTO=support@vwlc.com


  Validity :

 Start : 2017 Nov  30th, 17:52:46 GMT

 End   : 2027 Nov  29th, , 17:52:46 GMT


 Hash key : bd7bb60436202e830802be1e8931d539b67b2537

3. Disable the DTLS validation

(Cisco Controller) >configure certificate ssc hash validation disable

4. Login to the Access Point

debug capwap console cli


erase /all nvram:


undebug all


reload


save config : no


5. Make sure time is synced between WLC and AP, if Not make sure you manually sync it 


6. Login back in to WLC using Gui 

Go to Management >Licensing> Set AP count to 5 and accept the agreement 

Alternately you can go to existing license and accept the EULA


    • Related Articles

    • How to make the Cisco Access Points work with Hosted EVE-NG on Cloudmylab platform

          Purpose The purpose of this document is to help cloudmylab Customers and partners to set up a base Cisco Wireless Lab   Pre-Requisites 1.       WLC version 8.5.X 2.       AP version 15.3.3 JF 1 or higher 3.       AP 3502i   Refer to the WLC ...
    • Before I buy CCIE Labs ?

      Q. Do you sell CCIE workbooks? A. No, we don't sell CCIE workbooks, we only offer a platform for the CCIE lab practice. Q. Do you offer solution for the CCIE lab? A. No, we are a platform provider. We don't provide answers to your CCIE task. Q. Is ...
    • Do you offer CCIE Security Labs?

      Yes, we do offer CCIE Security Labs. In fact, CloudmyLab offers Build-Your Own CCIE Labs V6 to help aspirants with their lab needs. CCIE Security V6 labs have been built and licensed per the Blueprint from cisco.com and we have worked hard to create ...
    • What is the Pricing for CCIE Security Labs?

      You will be able to subscribe or rent labs on a Weekly, Monthly & Quarterly basis. Weekly Plan-Price is $800 Monthly Plan- Price is $2400 Quarterly Plan- Price is $6480 Kindly follow the link for more information  ...
    • What is the Hardware and Software available for CCIE Security Labs?

      HARDWARE AND SOFTWARE PHYSICAL ​ Device Name Software Version SW1 3.7 SW2 16.2 ASA1-4 9.8 Access Point 8.3 DNA Center 1.3.3.8