Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2736
Views
0
Helpful
1
Replies

5508 Verify Cert: FAILED at 0 depth: cert expired

David Ritter
Level 4
Level 4

‎11-29-2021 12:23 PM

This has just occurred, and new users can't attach.  I examined all my 5508's , 2 of 3 systems OK, and can't find where the certs in question might go..  or how or how to fix the problem..  

 

8.3.150.0 code to support air-oeap602's.

CAPWAP State: DTLS Setup
[*11/29/2021 19:45:30.0000] dtls_connectionDB_add_connection: Number of DTLS connections exceeded two
[*11/29/2021 19:45:30.3499] display_verify_cert_status: Verify Cert: FAILED at 0 depth: certificate has expired
[*11/29/2021 19:45:30.3499] dtls_verify_con_cert: Controller certificate verification error
[*11/29/2021 19:45:30.3499] dtls_process_packet: Controller certificate verification failed
[*11/29/2021 19:45:30.3599] sendPacketToDtls: DTLS: Closing connection 0x1acf000.
[*11/29/2021 19:45:30.3599] Restarting CAPWAP State Machine.

 

Labels:
0 Helpful
1 Reply 1

jagan.chowdam
VIP
VIP

‎11-29-2021 12:44 PM

Enter this command and look for the Cisco SHA1 device cert entry:

WLC_CLI: show certificate all

 

Also, refer the following Mobility document -

https://community.cisco.com/t5/wireless-mobility-documents/lightweight-ap-fail-to-create-capwap-lwapp-connection-due-to/ta-p/3155111

 

Thanks,

CJ

 

//**Please rate all useful responses**//

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card