AP Not Joining Controller – %DTLS-3-HANDSHAKE_FAILURE

When trying to get an older AP setup on a newer WLC.. you sometimes see that the AP just won’t connect!

DTLS-5-PEER_DISCONNECT: Peer x.x.x.x has closed connection, and other alerts FATAL: Certificate unknown etc.

The Resolution

Turns out this is an easy one, which worked out well for me. Nothing worse than explaining to your wife why the network at home is down! Basically what you are doing is telling the controller to ignore the certificate issues and register the access points anyways. In the case of my 4404 controller I ran the following commands via SSH:

  • config ap cert-expiry-ignore mic enable
  • config ap cert-expiry-ignore ssc enable

Within seconds, I noticed my access points registering one by one and the issue was resolved. This issue is an odd one you will probably not normally run into, but if you have some legacy access points you may.