Cisco Cisco IOS XE 3.5E 技术手册
#show log
*Jan 1 00:05:51.338: %PKI−3−CERTIFICATE_INVALID_NOT_YET_VALID: Certificate chain
validation has failed. The certificate (SN: 17978AAD00000036823E) is not yet valid
Validity period starts on 04:25:46 GMT0:0 Jun 8 2013
*Jan 1 00:05:51.344: *%DTLS−4−BAD_CERT: 1 wcm: Certificate verification failed.
Peer IP: 10.201.234.21
*Jan 1 00:05:51.344: *%DTLS−3−HANDSHAKE_FAILURE: 1 wcm: Failed to complete DTLS handshake
with peer 10.201.234.21 Reason: no certificate returned
Problem 9: The AP authorization list is enabled on the WLC; the AP is
not in the authorization list.
not in the authorization list.
#show ap auth−list
Authorize MIC APs against AAA : Enabled
Authorize LSC APs against Auth−List : Disabled
APs Allowed to Join:
AP with Manufacturing Installed Certificate : Enabled
AP with Self−Signed Certificate : Disabled
AP with Locally Significant Certificate : Disabled
#show log
*%LWAPP−3−RADIUS_ERR: 1 wcm: Could not send join reply, AP authorization failed;
AP:0c:68:03:eb:9b:20
*%CAPWAP−3−DATA_TUNNEL_DELETE_ERR2: 1 wcm: Failed to delete CAPWAP data tunnel
with interface id: 0x0 from internal database. Reason: AVL database entry not found
Problem 10: The MIC AP Policy is disabled.
#show ap auth−list
Authorize MIC APs against AAA : Disabled
Authorize LSC APs against Auth−List : Disabled
APs Allowed to Join:
AP with Manufacturing Installed Certificate : Disabled
AP with Self−Signed Certificate : Disabled
AP with Locally Significant Certificate : Disabled
#show log
*%LOG−3−Q_IND: 1 wcm: Validation of SPAM Vendor Specific Payload failed − AP
f8:4f:57:3b:8c:d0