Cloud Managed Networks

  2930F is not connecting to Aruba Central. In the logs it states:
W 05/12/23 10:22:54 05232 central: SSL negotiation failed with status = -7629.
I 05/12/23 10:22:54 05235 central: Websocket connection failed. Config channel
            is not established. Retry after 60 seconds.

 I have added the foundation license, and aruba-central enable, and activate provision force. I have checked all firewall settings, however I could have missed something. Any help would be greatly appreciated as I'm quite new to Aruba Central.
Some more information:

  Server URL              : https://device-uswest4.central.arubanetworks.com/ws
  Connected               : No
  Mode                    : NA
  Last Disconnect Time    : NA
  Server DNS Lookup       : Success
  Proxy Server DNS Lookup : NA
  Error Reason            : TLS generic error (code: -7629)

this looks like a cert trust issue with Activate or something that is inline messing with 
was this switch ever connected to Central?

  2930F is not connecting to Aruba Central. In the logs it states:
W 05/12/23 10:22:54 05232 central: SSL negotiation failed with status = -7629.
I 05/12/23 10:22:54 05235 central: Websocket connection failed. Config channel
            is not established. Retry after 60 seconds.

 I have added the foundation license, and aruba-central enable, and activate provision force. I have checked all firewall settings, however I could have missed something. Any help would be greatly appreciated as I'm quite new to Aruba Central.
Some more information:

  Server URL              : https://device-uswest4.central.arubanetworks.com/ws
  Connected               : No
  Mode                    : NA
  Last Disconnect Time    : NA
  Server DNS Lookup       : Success
  Proxy Server DNS Lookup : NA
  Error Reason            : TLS generic error (code: -7629)

this looks like a cert trust issue with Activate or something that is inline messing with 
was this switch ever connected to Central?

  2930F is not connecting to Aruba Central. In the logs it states:
W 05/12/23 10:22:54 05232 central: SSL negotiation failed with status = -7629.
I 05/12/23 10:22:54 05235 central: Websocket connection failed. Config channel
            is not established. Retry after 60 seconds.

 I have added the foundation license, and aruba-central enable, and activate provision force. I have checked all firewall settings, however I could have missed something. Any help would be greatly appreciated as I'm quite new to Aruba Central.
Some more information:

  Server URL              : https://device-uswest4.central.arubanetworks.com/ws
  Connected               : No
  Mode                    : NA
  Last Disconnect Time    : NA
  Server DNS Lookup       : Success
  Proxy Server DNS Lookup : NA
  Error Reason            : TLS generic error (code: -7629)

There are 2 other 6300 that were connected to central, but are no longer working properly. However those I'll figure out later as my priority is the 2930F

this looks like a cert trust issue with Activate or something that is inline messing with 
was this switch ever connected to Central?

  2930F is not connecting to Aruba Central. In the logs it states:
W 05/12/23 10:22:54 05232 central: SSL negotiation failed with status = -7629.
I 05/12/23 10:22:54 05235 central: Websocket connection failed. Config channel
            is not established. Retry after 60 seconds.

 I have added the foundation license, and aruba-central enable, and activate provision force. I have checked all firewall settings, however I could have missed something. Any help would be greatly appreciated as I'm quite new to Aruba Central.
Some more information:

  Server URL              : https://device-uswest4.central.arubanetworks.com/ws
  Connected               : No
  Mode                    : NA
  Last Disconnect Time    : NA
  Server DNS Lookup       : Success
  Proxy Server DNS Lookup : NA
  Error Reason            : TLS generic error (code: -7629)

what is the current firmware version on the 2930F?

There are 2 other 6300 that were connected to central, but are no longer working properly. However those I'll figure out later as my priority is the 2930F

this looks like a cert trust issue with Activate or something that is inline messing with 
was this switch ever connected to Central?

  2930F is not connecting to Aruba Central. In the logs it states:
W 05/12/23 10:22:54 05232 central: SSL negotiation failed with status = -7629.
I 05/12/23 10:22:54 05235 central: Websocket connection failed. Config channel
            is not established. Retry after 60 seconds.

 I have added the foundation license, and aruba-central enable, and activate provision force. I have checked all firewall settings, however I could have missed something. Any help would be greatly appreciated as I'm quite new to Aruba Central.
Some more information:

  Server URL              : https://device-uswest4.central.arubanetworks.com/ws
  Connected               : No
  Mode                    : NA
  Last Disconnect Time    : NA
  Server DNS Lookup       : Success
  Proxy Server DNS Lookup : NA
  Error Reason            : TLS generic error (code: -7629)

I updated it to one of the latest, I'm not in office at the moment but it was 16_11_0011 or something similar.

what is the current firmware version on the 2930F?

There are 2 other 6300 that were connected to central, but are no longer working properly. However those I'll figure out later as my priority is the 2930F

this looks like a cert trust issue with Activate or something that is inline messing with 
was this switch ever connected to Central?

  2930F is not connecting to Aruba Central. In the logs it states:
W 05/12/23 10:22:54 05232 central: SSL negotiation failed with status = -7629.
I 05/12/23 10:22:54 05235 central: Websocket connection failed. Config channel
            is not established. Retry after 60 seconds.

 I have added the foundation license, and aruba-central enable, and activate provision force. I have checked all firewall settings, however I could have missed something. Any help would be greatly appreciated as I'm quite new to Aruba Central.
Some more information:

  Server URL              : https://device-uswest4.central.arubanetworks.com/ws
  Connected               : No
  Mode                    : NA
  Last Disconnect Time    : NA
  Server DNS Lookup       : Success
  Proxy Server DNS Lookup : NA
  Error Reason            : TLS generic error (code: -7629)

ok , check the debug output aruba-central

I updated it to one of the latest, I'm not in office at the moment but it was 16_11_0011 or something similar.

what is the current firmware version on the 2930F?

There are 2 other 6300 that were connected to central, but are no longer working properly. However those I'll figure out later as my priority is the 2930F

this looks like a cert trust issue with Activate or something that is inline messing with 
was this switch ever connected to Central?

  2930F is not connecting to Aruba Central. In the logs it states:
W 05/12/23 10:22:54 05232 central: SSL negotiation failed with status = -7629.
I 05/12/23 10:22:54 05235 central: Websocket connection failed. Config channel
            is not established. Retry after 60 seconds.

 I have added the foundation license, and aruba-central enable, and activate provision force. I have checked all firewall settings, however I could have missed something. Any help would be greatly appreciated as I'm quite new to Aruba Central.
Some more information:

  Server URL              : https://device-uswest4.central.arubanetworks.com/ws
  Connected               : No
  Mode                    : NA
  Last Disconnect Time    : NA
  Server DNS Lookup       : Success
  Proxy Server DNS Lookup : NA
  Error Reason            : TLS generic error (code: -7629)

this looks like a cert trust issue with Activate or something that is inline messing with 
was this switch ever connected to Central?

  2930F is not connecting to Aruba Central. In the logs it states:
W 05/12/23 10:22:54 05232 central: SSL negotiation failed with status = -7629.
I 05/12/23 10:22:54 05235 central: Websocket connection failed. Config channel
            is not established. Retry after 60 seconds.

 I have added the foundation license, and aruba-central enable, and activate provision force. I have checked all firewall settings, however I could have missed something. Any help would be greatly appreciated as I'm quite new to Aruba Central.
Some more information:

  Server URL              : https://device-uswest4.central.arubanetworks.com/ws
  Connected               : No
  Mode                    : NA
  Last Disconnect Time    : NA
  Server DNS Lookup       : Success
  Proxy Server DNS Lookup : NA
  Error Reason            : TLS generic error (code: -7629)

  2930F is not connecting to Aruba Central. In the logs it states:
W 05/12/23 10:22:54 05232 central: SSL negotiation failed with status = -7629.
I 05/12/23 10:22:54 05235 central: Websocket connection failed. Config channel
            is not established. Retry after 60 seconds.

 I have added the foundation license, and aruba-central enable, and activate provision force. I have checked all firewall settings, however I could have missed something. Any help would be greatly appreciated as I'm quite new to Aruba Central.
Some more information:

  Server URL              : https://device-uswest4.central.arubanetworks.com/ws
  Connected               : No
  Mode                    : NA
  Last Disconnect Time    : NA
  Server DNS Lookup       : Success
  Proxy Server DNS Lookup : NA
  Error Reason            : TLS generic error (code: -7629)

The error message "SSL negotiation failed with status = -7629" indicates that the device is having trouble establishing a secure connection with the Aruba Central server. This could be caused by a number of issues, including incorrect firewall settings or an issue with the device's SSL certificate.

You have already checked the firewall settings, so the next step would be to verify the SSL certificate. Make sure that the device's SSL certificate is valid and matches the certificate configured on the Aruba Central server. If there are any mismatches or errors, you may need to update the SSL certificate on the device or on the server.   MyGeorgiaSouthern

If the SSL certificate is not the issue, you could try restarting the device and checking the configuration settings to ensure that they are correct. If the problem persists, you may need to contact Aruba support for further assistance. Please check this if it can help..  

Original Message:
Sent: May 12, 2023 11:34 AM
From: MoJoPBS
Subject: 2930F Web socket Connection Failed Aruba Central

  2930F is not connecting to Aruba Central. In the logs it states:
W 05/12/23 10:22:54 05232 central: SSL negotiation failed with status = -7629.
I 05/12/23 10:22:54 05235 central: Websocket connection failed. Config channel
            is not established. Retry after 60 seconds.

 I have added the foundation license, and aruba-central enable, and activate provision force. I have checked all firewall settings, however I could have missed something. Any help would be greatly appreciated as I'm quite new to Aruba Central.
Some more information:

  Server URL              : https://device-uswest4.central.arubanetworks.com/ws
  Connected               : No
  Mode                    : NA
  Last Disconnect Time    : NA
  Server DNS Lookup       : Success
  Proxy Server DNS Lookup : NA
  Error Reason            : TLS generic error (code: -7629)

Paige, the switch did randomly start connecting to aruba-central for about 9 hours, then it completely disconnected and went back to the same original issue. I have been doing some research on SSL certificate but can't find any information pertaining to the switch and certificates with aruba-central. Do you have any further information about the SSL?

The error message "SSL negotiation failed with status = -7629" indicates that the device is having trouble establishing a secure connection with the Aruba Central server. This could be caused by a number of issues, including incorrect firewall settings or an issue with the device's SSL certificate.

You have already checked the firewall settings, so the next step would be to verify the SSL certificate. Make sure that the device's SSL certificate is valid and matches the certificate configured on the Aruba Central server. If there are any mismatches or errors, you may need to update the SSL certificate on the device or on the server.   MyGeorgiaSouthern

If the SSL certificate is not the issue, you could try restarting the device and checking the configuration settings to ensure that they are correct. If the problem persists, you may need to contact Aruba support for further assistance. Please check this if it can help..  

Original Message:
Sent: May 12, 2023 11:34 AM
From: MoJoPBS
Subject: 2930F Web socket Connection Failed Aruba Central

  2930F is not connecting to Aruba Central. In the logs it states:
W 05/12/23 10:22:54 05232 central: SSL negotiation failed with status = -7629.
I 05/12/23 10:22:54 05235 central: Websocket connection failed. Config channel
            is not established. Retry after 60 seconds.

 I have added the foundation license, and aruba-central enable, and activate provision force. I have checked all firewall settings, however I could have missed something. Any help would be greatly appreciated as I'm quite new to Aruba Central.
Some more information:

  Server URL              : https://device-uswest4.central.arubanetworks.com/ws
  Connected               : No
  Mode                    : NA
  Last Disconnect Time    : NA
  Server DNS Lookup       : Success
  Proxy Server DNS Lookup : NA
  Error Reason            : TLS generic error (code: -7629)

You may run a packet capture and if you are lucky can see the used certificates and possibly the certifcates in use. But if you have not done that before, it may be better to work with your Aruba partner or Aruba support.

Some firewalls do SSL inspection, which basically breaks SSL and requires changes to each of your clients. If your firewall (possibly) performs SSL inspection/decryption, turn it of for traffic from your switch or traffic going to Aruba Central.

Paige, the switch did randomly start connecting to aruba-central for about 9 hours, then it completely disconnected and went back to the same original issue. I have been doing some research on SSL certificate but can't find any information pertaining to the switch and certificates with aruba-central. Do you have any further information about the SSL?

The error message "SSL negotiation failed with status = -7629" indicates that the device is having trouble establishing a secure connection with the Aruba Central server. This could be caused by a number of issues, including incorrect firewall settings or an issue with the device's SSL certificate.

You have already checked the firewall settings, so the next step would be to verify the SSL certificate. Make sure that the device's SSL certificate is valid and matches the certificate configured on the Aruba Central server. If there are any mismatches or errors, you may need to update the SSL certificate on the device or on the server.   MyGeorgiaSouthern

If the SSL certificate is not the issue, you could try restarting the device and checking the configuration settings to ensure that they are correct. If the problem persists, you may need to contact Aruba support for further assistance. Please check this if it can help..  

Original Message:
Sent: May 12, 2023 11:34 AM
From: MoJoPBS
Subject: 2930F Web socket Connection Failed Aruba Central

  2930F is not connecting to Aruba Central. In the logs it states:
W 05/12/23 10:22:54 05232 central: SSL negotiation failed with status = -7629.
I 05/12/23 10:22:54 05235 central: Websocket connection failed. Config channel
            is not established. Retry after 60 seconds.

 I have added the foundation license, and aruba-central enable, and activate provision force. I have checked all firewall settings, however I could have missed something. Any help would be greatly appreciated as I'm quite new to Aruba Central.
Some more information:

  Server URL              : https://device-uswest4.central.arubanetworks.com/ws
  Connected               : No
  Mode                    : NA
  Last Disconnect Time    : NA
  Server DNS Lookup       : Success
  Proxy Server DNS Lookup : NA
  Error Reason            : TLS generic error (code: -7629)

I'll give that a shot using wire shark. We have checked the firewall, no luck. Do you know if  curl utility on the switch can be configured to skip the SSL cert validity check, or if Aruba has some way of refreshing the built-in "cacert" file for the on-board curl utility?

You may run a packet capture and if you are lucky can see the used certificates and possibly the certifcates in use. But if you have not done that before, it may be better to work with your Aruba partner or Aruba support.

Some firewalls do SSL inspection, which basically breaks SSL and requires changes to each of your clients. If your firewall (possibly) performs SSL inspection/decryption, turn it of for traffic from your switch or traffic going to Aruba Central.

Paige, the switch did randomly start connecting to aruba-central for about 9 hours, then it completely disconnected and went back to the same original issue. I have been doing some research on SSL certificate but can't find any information pertaining to the switch and certificates with aruba-central. Do you have any further information about the SSL?

The error message "SSL negotiation failed with status = -7629" indicates that the device is having trouble establishing a secure connection with the Aruba Central server. This could be caused by a number of issues, including incorrect firewall settings or an issue with the device's SSL certificate.

You have already checked the firewall settings, so the next step would be to verify the SSL certificate. Make sure that the device's SSL certificate is valid and matches the certificate configured on the Aruba Central server. If there are any mismatches or errors, you may need to update the SSL certificate on the device or on the server.   MyGeorgiaSouthern

If the SSL certificate is not the issue, you could try restarting the device and checking the configuration settings to ensure that they are correct. If the problem persists, you may need to contact Aruba support for further assistance. Please check this if it can help..  

Original Message:
Sent: May 12, 2023 11:34 AM
From: MoJoPBS
Subject: 2930F Web socket Connection Failed Aruba Central

  2930F is not connecting to Aruba Central. In the logs it states:
W 05/12/23 10:22:54 05232 central: SSL negotiation failed with status = -7629.
I 05/12/23 10:22:54 05235 central: Websocket connection failed. Config channel
            is not established. Retry after 60 seconds.

 I have added the foundation license, and aruba-central enable, and activate provision force. I have checked all firewall settings, however I could have missed something. Any help would be greatly appreciated as I'm quite new to Aruba Central.
Some more information:

  Server URL              : https://device-uswest4.central.arubanetworks.com/ws
  Connected               : No
  Mode                    : NA
  Last Disconnect Time    : NA
  Server DNS Lookup       : Success
  Proxy Server DNS Lookup : NA
  Error Reason            : TLS generic error (code: -7629)

  2930F is not connecting to Aruba Central. In the logs it states:
W 05/12/23 10:22:54 05232 central: SSL negotiation failed with status = -7629.
I 05/12/23 10:22:54 05235 central: Websocket connection failed. Config channel
            is not established. Retry after 60 seconds.

 I have added the foundation license, and aruba-central enable, and activate provision force. I have checked all firewall settings, however I could have missed something. Any help would be greatly appreciated as I'm quite new to Aruba Central.
Some more information:

  Server URL              : https://device-uswest4.central.arubanetworks.com/ws
  Connected               : No
  Mode                    : NA
  Last Disconnect Time    : NA
  Server DNS Lookup       : Success
  Proxy Server DNS Lookup : NA
  Error Reason            : TLS generic error (code: -7629)

Hi MoJoPBS, were you able to resolve this issue?  I am running into the same problem, and have followed the exact same steps that you had taken.

  2930F is not connecting to Aruba Central. In the logs it states:
W 05/12/23 10:22:54 05232 central: SSL negotiation failed with status = -7629.
I 05/12/23 10:22:54 05235 central: Websocket connection failed. Config channel
            is not established. Retry after 60 seconds.

 I have added the foundation license, and aruba-central enable, and activate provision force. I have checked all firewall settings, however I could have missed something. Any help would be greatly appreciated as I'm quite new to Aruba Central.
Some more information:

  Server URL              : https://device-uswest4.central.arubanetworks.com/ws
  Connected               : No
  Mode                    : NA
  Last Disconnect Time    : NA
  Server DNS Lookup       : Success
  Proxy Server DNS Lookup : NA
  Error Reason            : TLS generic error (code: -7629)

Gman! 

 Just got back from lunch, yes I did resolve the issue!

I found the firewall was blocking connection to central. Also make sure your switch had the DNS, gateway, time server, and of course added vlan 1 ip in firewall. I hope this helps!

You have to add the URL, I was resolving it and adding the ip address of each in the below link lol:

Opening Firewall Ports for Device Communication

Hi MoJoPBS, were you able to resolve this issue?  I am running into the same problem, and have followed the exact same steps that you had taken.

  2930F is not connecting to Aruba Central. In the logs it states:
W 05/12/23 10:22:54 05232 central: SSL negotiation failed with status = -7629.
I 05/12/23 10:22:54 05235 central: Websocket connection failed. Config channel
            is not established. Retry after 60 seconds.

 I have added the foundation license, and aruba-central enable, and activate provision force. I have checked all firewall settings, however I could have missed something. Any help would be greatly appreciated as I'm quite new to Aruba Central.
Some more information:

  Server URL              : https://device-uswest4.central.arubanetworks.com/ws
  Connected               : No
  Mode                    : NA
  Last Disconnect Time    : NA
  Server DNS Lookup       : Success
  Proxy Server DNS Lookup : NA
  Error Reason            : TLS generic error (code: -7629)

Thanks for the response.  Looks like it ended up being a F/W issue on my end as well..  I had the FQDN's whitelisted, which are mentioned in the article, but the one which I was missing was 'devices-v2.arubanetworks.com', which allows connectivity between devices and Aruba Activate!  

Gman! 

 Just got back from lunch, yes I did resolve the issue!

I found the firewall was blocking connection to central. Also make sure your switch had the DNS, gateway, time server, and of course added vlan 1 ip in firewall. I hope this helps!

You have to add the URL, I was resolving it and adding the ip address of each in the below link lol:

Opening Firewall Ports for Device Communication

Hi MoJoPBS, were you able to resolve this issue?  I am running into the same problem, and have followed the exact same steps that you had taken.

  2930F is not connecting to Aruba Central. In the logs it states:
W 05/12/23 10:22:54 05232 central: SSL negotiation failed with status = -7629.
I 05/12/23 10:22:54 05235 central: Websocket connection failed. Config channel
            is not established. Retry after 60 seconds.

 I have added the foundation license, and aruba-central enable, and activate provision force. I have checked all firewall settings, however I could have missed something. Any help would be greatly appreciated as I'm quite new to Aruba Central.
Some more information:

  Server URL              : https://device-uswest4.central.arubanetworks.com/ws
  Connected               : No
  Mode                    : NA
  Last Disconnect Time    : NA
  Server DNS Lookup       : Success
  Proxy Server DNS Lookup : NA
  Error Reason            : TLS generic error (code: -7629)