07-24-2013 03:56 AM - edited 07-04-2021 12:30 AM
Hi all,
Can I able to use the single unchained certificate for both webadmin login and web auth portal in WLC?
Thanks,
Vijay.
Solved! Go to Solution.
07-24-2013 05:50 AM
That is correct.... they are two different certs. Management certs usually you would acquire a cert from an internal CA. That's how I have done mine in the past. I only use a 3rd party cert for webauth.
Thanks,
Scott
Help out other by using the rating system and marking answered questions as "Answered"
07-24-2013 04:12 AM
Yes you can, but if your purchasing a new cert from a certificate vendor, they will all be chained certificates. The reason being is that last year or so, the cert vendors moved from a 1024bit root to a 2048bit root. Also Microsoft made the push on their end that caused this to happen.
Sent from Cisco Technical Support iPhone App
07-24-2013 04:34 AM
Thanks for the reply scott. But while submitting the CSR i have given the virtual interface name (EX:guest.company.com)
So, whether this certificate will work for managment interface as well ?
Thanks,
Vijay.
07-24-2013 04:38 AM
It will work, but WebAuth and management is setup different. You will have two DNS entries. 2048 is what's typically used these days. 1024 should still work.
Sent from Cisco Technical Support iPhone App
07-24-2013 05:26 AM
Hi Scott ,
I got only deicve certificate and intermediate certificate from my CA . But i didnt get root CA certificate .
Whther I can be able to do this without root CA file ?
Thanks ,
Vijay.
07-24-2013 05:28 AM
You can open up the device cert in windows and extract the root and or the intermediate. Or go ask them to send you the root and they will.
Sent from Cisco Technical Support iPhone App
07-24-2013 05:40 AM
Thanks scott for the quick reply . If i am using chained certificate, then i cant use this for manament access?
It is mentioned in the below link .
http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a0080a77592.shtml
Note:
Chained certificates are supported for web authentication only; they are not supported for the management certificate.
Thanks ,
Vijay.
07-24-2013 05:50 AM
That is correct.... they are two different certs. Management certs usually you would acquire a cert from an internal CA. That's how I have done mine in the past. I only use a 3rd party cert for webauth.
Thanks,
Scott
Help out other by using the rating system and marking answered questions as "Answered"
07-24-2013 06:07 AM
Thanks a lot Mr.scott for the clarification...
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide