Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
588
Views
10
Helpful
8
Replies

Certificates on WLC

Go to solution
vijay kumar
Level 2
Level 2

‎07-24-2013 03:56 AM - edited ‎07-04-2021 12:30 AM

Hi all,

Can I able to use the single unchained certificate for both webadmin login and web auth portal in WLC?

Thanks,

Vijay.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to vijay kumar

‎07-24-2013 05:50 AM

That is correct.... they are two different certs.  Management certs usually you would acquire a cert from an internal CA.  That's how I have done mine in the past.  I only use a 3rd party cert for webauth.

Thanks,

Scott

Help out other by using the rating system and marking answered questions as "Answered"

-Scott
*** Please rate helpful posts ***

View solution in original post

0 Helpful
8 Replies 8

Go to solution
Scott Fella
Hall of Fame
Hall of Fame

‎07-24-2013 04:12 AM

Yes you can, but if your purchasing a new cert from a certificate vendor, they will all be chained certificates. The reason being is that last year or so, the cert vendors moved from a 1024bit root to a 2048bit root. Also Microsoft made the push on their end that caused this to happen.

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
vijay kumar
Level 2
Level 2
In response to Scott Fella

‎07-24-2013 04:34 AM

Thanks for the reply scott. But while submitting the CSR i have given the virtual interface name (EX:guest.company.com)

So, whether this certificate will work for managment interface as well ?

Thanks,

Vijay.

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to vijay kumar

‎07-24-2013 04:38 AM

It will work, but WebAuth and management is setup different. You will have two DNS entries. 2048 is what's typically used these days. 1024 should still work.

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***

Go to solution
vijay kumar
Level 2
Level 2
In response to Scott Fella

‎07-24-2013 05:26 AM

Hi Scott ,

I got only deicve certificate and intermediate certificate from my CA . But i didnt get root CA certificate .

Whther I can be able to do this without root CA file ?

Thanks ,

Vijay.

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to vijay kumar

‎07-24-2013 05:28 AM

You can open up the device cert in windows and extract the root and or the intermediate. Or go ask them to send you the root and they will.

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***

Go to solution
vijay kumar
Level 2
Level 2
In response to Scott Fella

‎07-24-2013 05:40 AM

Thanks scott for the quick reply . If i am using chained certificate, then i cant use this for manament access?

It is mentioned in the below link .

http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a0080a77592.shtml

Note:

Chained certificates are supported for web authentication only; they           are not supported for the management certificate.

Thanks ,

Vijay.

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to vijay kumar

‎07-24-2013 05:50 AM

That is correct.... they are two different certs.  Management certs usually you would acquire a cert from an internal CA.  That's how I have done mine in the past.  I only use a 3rd party cert for webauth.

Thanks,

Scott

Help out other by using the rating system and marking answered questions as "Answered"

-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
vijay kumar
Level 2
Level 2
In response to Scott Fella

‎07-24-2013 06:07 AM

Thanks a lot Mr.scott for the clarification...

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card