Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Public guest access certficate error

Wondering if anyone has run into this and how it was corrected.

9 REPLIES

Re: Public guest access certficate error

The browser is indicating that it does not trust the certificate. The explanation makes me think you are using the self-signed certificate that came with the controller for web auth. If so, then you need to either configure all of your machines to trust that certificate, or install a 3rd Party certificate on the controller that your machines already trust.

Here's some good 3rd Party certificate info:

http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a00806e367a.shtml

Hall of Fame Super Silver

Re: Public guest access certficate error

Since you will need to purchase a certificate, make sure you get a root CA cert if you are running any code lower than 5.1.151 or else you can go with a chained cert. In my opinion, RapidSSL is cheap and they give you a root ca certificate which of course can be used in and version of code.

-Scott
*** Please rate helpful posts ***
Community Member

Re: Public guest access certficate error

Also, you probably want to have a dns name instead of 1.1.1.1 for your cert. To do this, we created another zone so we could resolve 1.1.1.1 to "wireless-auth.uoregon.edu". It's a bit hokey, but the dns name is more meaningful to users than the ip address.

How did you get a chained cert to work? I've tried and never been successful. We're running 5.2 and 6.0 code. Right now we're using a root-signed Thawte cert for wireless auth.

Hall of Fame Super Silver

Re: Public guest access certficate error

I have never tried to use a chained cert, since using a root ca cert seems easier. There have been a couple post on chained cert, but I have not seen any instructions on how to combine the certs to be able to upload.

-Scott
*** Please rate helpful posts ***

Re: Public guest access certficate error

http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a0080a77592.shtml

I think I have it working with 4.2.176.0 code for webauth. I'll know more soon.

Community Member

Re: Public guest access certficate error

Wow, it appears to work. Thank you for pointing out that doc.

Community Member

Re: Public guest access certficate error

Thanks for all the input !

Community Member

Re: Public guest access certficate error

Hi everybody,

Does anyone know if this soltion also apply to Cisco 5508 Series Wireless Controller?.

See attached pictures

I got the same issue.

Peter Dahl

Systemconsultant

http://www.systemtech.dk/images/dot.gif

Microsoft MCSA/MCSE : 2000 + Security
Microsoft MCSA/MCSE : 2003 + Security
Microsoft MCITP: Server Administrator 2008
Microsoft MCTS: ISA, SCCM, SCOM, etc.
VMWare Certified Professional Vi3, Vi4
CompTIA A+, Network+, Server+,
Xian Io Certified Engineer
And more

Hall of Fame Super Silver

Re: Public guest access certficate error

Guest configuration is the same for all WLC's even the 5500's.  What code are you running on the 5508?  I know there is an issue with 3rd party certs on the 6.0.182.0 and upgrading to 6.0.188.0 fixes the problem.  It seems that with the 6.0.182, the certificate doesn't load properly.

-Scott
*** Please rate helpful posts ***
513
Views
5
Helpful
9
Replies
CreatePlease to create content