Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
Community Member

generating CSR for guest wlan

Hi, I'm confused about the CSR generation in order to get a real certificate so my guest wireless users can trust the network. If I submit my CSR with an internal IP address, how is this certified by organization such as Thawte. I am stuck on generating my CSR at this point. My internal ip address for my virtual interface is 192.168.4.x, I go ahead and use this non-routable address within my CSR? Thanks for any pointers on this subject. I understand the process on how to generate a CSR and upload it, i don't understand what the consequences of using an internal address and dns name will have with my outside entity, Thawte.

Everyone's tags (2)

generating CSR for guest wlan

When you create a CSR, there is no "IP Address" involved.  The CA doesn't need, nor care, about an IP address.  The "common name" is of utomost importance.

When you generate your CSR, the "common name" will be the "name" that needs to resolve (via DNS) to the virtual IP of your WLC.

For instance, you request a common name of ""

Your Virtual Address "may" be configured like so (as an example)...

When a client gets "redirected" to, your cert with the matching Common Name, will now be applicable to this URL.

CreatePlease to create content