Problem: %CAPWAP-1-SSC_CERT_AUTH_FAILED: Failed to authorize controller, SSC certificate validation failed

Recently I have encountered an error while trying to connect Cisco LAP 3700 (AIR-CAP3702I-I-K9) to virtual WLC (vWLC), this is the error message:

%CAPWAP-1-SSC_CERT_AUTH_FAILED: Failed to authorize controller, SSC certificate validation failed

I have configured the DHCP server to respond with option 82 for telling the AP’s the controller IP address, the AP is booting, request and receive IP address along with the controller IP but didn’t succeed to register with the controller.

In order to solve this issue I have connected directly to the AP using serial cable and submit the following command:

APc1ae.f98c.e7c8#clear capwap private-config

After that I reloaded the AP and he managed to register with the controller:

*Jan 12 17:10:24.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 172.20.23.15 peer_port: 5246 *Jan 12 17:10:24.239: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 172.20.23.15 peer_port: 5246 *Jan 12 17:10:24.239: %CAPWAP-5-SENDJOIN: sending Join Request to 172.20.23.15