Solved: Viewing Trustpoint on Converted 1131 Crashes AP

Scott Pickles · ‎09-08-2011

I converted an 1131 to LWAPP a while back and I'm using it in my lab today. The controller doesn't accept it since I don't have the SSC hash. I thought perhaps the command 'show crypto pki <certificate>' would show me the hash of the certificate. The trouble is that when I run that command, the AP hangs immediately, is unresponsive for 30 - 60 seconds, dumps a crash log, and then reboots. Any thoughts?

Regards,
Scott

wackerk24 · ‎09-08-2011

Hey Scott, you need to issue debug pm pki enable to get the hash.

View solution in original post

wackerk24 · ‎09-08-2011

Hey Scott, you need to issue debug pm pki enable to get the hash.

Scott Pickles · ‎09-08-2011

Thanks Kyle!

Scott Pickles · ‎09-08-2011

Upgraded to the latest CAPWAP release and all is well...

Scott Pickles · ‎09-08-2011

I'm curious as to why the hash shown in the debug output differs from that of the output of the command I ran locally on the AP? It shows 'Fingerprint SHA1' and that's what needs to be entered into the AP policy.

Viewing Trustpoint on Converted 1131 Crashes AP

Certificate Backup and Installation - Trustpoints

WLC9800 has “Not Available” management trustpoint on WLC9800

Convert Catalyst AP to Meraki without WLC

COS AP memory leak causing crash - CSCwm31864

Converting Mesh AP to Local mode and vice-versa using AP CLI