AP not registering to vWLC

AP not registering to vWLC

%CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: X.X.X103 peer_port: 5246

%DTLS-5-SEND_ALERT: Send FATAL : Unexpected message Alert to X.X.X103:5246

%DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to X.X.X103:5246

%CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: X.X.X103 peer_port: 5246

%CAPWAP-1-SSC_CERT_AUTH_FAILED: Failed to authorize controller, SSC certificate validation failed.Peer certificate verification failed FFFFFFFF



Steps

1. Login in to vWLC using SSH

2. Make sure the certificates and time is correct

(Cisco Controller) >show certificate ssc

SSC Hash validation.............................. Enabled.


SSC Device Certificate details:


  Subject Name :

   C=US, ST=California, L=San Jose, O=Cisco Virtual Wireless LAN Controller,

   CN=DEVICE-vWLC-AIR-CTVM-K9-000C29085BB8, MAILTO=support@vwlc.com


  Validity :

 Start : 2017 Nov  30th, 17:52:46 GMT

 End   : 2027 Nov  29th, , 17:52:46 GMT


 Hash key : bd7bb60436202e830802be1e8931d539b67b2537

3. Disable the DTLS validation

(Cisco Controller) >configure certificate ssc hash validation disable

4. Login to the Access Point

debug capwap console cli


erase /all nvram:


undebug all


reload


save config : no


5. Make sure time is synced between WLC and AP, if Not make sure you manually sync it 


6. Login back in to WLC using Gui 

Go to Management >Licensing> Set AP count to 5 and accept the agreement 

Alternately you can go to existing license and accept the EULA


    • Related Articles

    • How to make the Cisco Access Points work with Hosted EVE-NG on Cloudmylab platform

          Purpose The purpose of this document is to help cloudmylab Customers and partners to set up a base Cisco Wireless Lab   Pre-Requisites 1.       WLC version 8.5.X 2.       AP version 15.3.3 JF 1 or higher 3.       AP 3502i   Refer to the WLC ...

    • Do you offer CCIE Security Labs?

      Yes, we do offer CCIE Security Labs. In fact, CloudmyLab offers Build-Your Own CCIE Labs V6 to help aspirants with their lab needs. CCIE Security V6 labs have been built and licensed per the Blueprint from cisco.com and we have worked hard to create ...

    • What is the Pricing for CCIE Security Labs?

      You will be able to subscribe or rent labs on a Weekly, Monthly & Quarterly basis. Weekly Plan-Price is $800 Monthly Plan- Price is $2400 Quarterly Plan- Price is $6480 Kindly follow the link for more information  ...

    • What if I don't like your CCIE labs?

      We try everything possible to make our customers happy with our services. If you still don't like our labs and we are not able to provide you working lab environment, we will give you a 100% refund if you cancel within the first 7 days of the start/ ...

    • What is the Hardware and Software available for Cisco Hyper Flex ? Part-C CCIE-DC

      Hardware and Software used in the Lab Cisco HX Version 4.X 3  X  HX C220/240 Nodes 2 X FI-6248 Fabric Interconnects 1 X  Catalyst Uplink Switch 1 X Cisco  UCS Server for Services 1 X Jumpbox Virtual Machines 1 X VMWARE Vcenter 1 X DNS /AD Server/NTP ...