getting DTLS issues for AP AIR-AP3802I-Z-K9

Noovi · ‎01-03-2022

Hi Guys,

i am getting lot of issues for Cisco APs of model AIR-AP3802I-Z-K9 for DTLS connection issues.

*osapiBsnTimer: XX 0X 09:22:38.271: %DTLS-3-HANDSHAKE_FAILURE: openssl_dtls.c:3191 Failed to complete DTLS handshake with peer X.X.X.X

Anything known issues for this mentioned AP?

i have already disabled

config ap cert-expiry-ignore mic disable

config ap cert-expiry-ignore ssc disable

WLC Details : Cisco 5508 with image 8.3.143.0

marce1000 · ‎01-03-2022

- Could you use :

config ap cert-expiry-ignore mic enable

config ap cert-expiry-ignore ssc enable

instead ,

M.

-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '

jagan.chowdam · ‎01-04-2022

(WLC)>config ap cert-expiry-ignore {mic|ssc} enable

Arshad Safrulla · ‎01-05-2022

Make sure that the Dynamic AP management is enabled under the interface in WLC. If you have a pre-defined AP manager interface make sure that the dhcp option 43 is configured to advertise that. If not try priming the AP manualy.

Also make sure that the NTP us updated in the WLC and port required for capwap communication is allowed between the AP and WLC.

___________________________________________
TAC recommended codes for AireOS WLC's
Best Practices for AireOS WLC's
TAC recommended codes for 9800 WLC's
Best Practices for 9800 WLC's
Cisco Wireless compatibility matrix
___________________________________________
Arshad Safrulla