Symptom
APs cannot join the WLC.
When these debugs are enabled: "debug dtls all enable" "debug capwap events enable" "debug capwap errors enable"
these errors are seen:
%CAPWAP-3-DTLS_DB_ERR: [PA]capwap_ac_sm.c:8574 [MAC_Address] Failed to create DTLS connection for AP
*spamApTask0: Aug 29 17:19:19.327: [PA] [MAC_Address] Ignoring peer connection because max control dtls connections reached
*spamApTask0: Aug 29 17:19:19.327: [PA] [MAC_Address] Failed to create DTLS connection for [IP_Address]:[PORT]
Conditions
Issue seen on 8.0.X
Workaround
Reboot the WLC or perform a switchover in HA-SSO
Further Problem Description
Not releasing DTLS connections can cause high CPU utilization on the controller over time ending up with controller crash.
