Web Auth Certificate Download - Failed to install certificate
I'm trying to install a wilcard pfx certificate on a 2504 WLC for the Web Authentication page. I followed the instructions from the following posts. I'm using openssl 0.9.8.zb couldn't find anything earlier, but also not the same error message these two posts were getting.
Thanks, this pointed me in the right direction. The problem was the pfx cert I exported wasn't the full chained certificate. When looking at the pem file I had created it was only
-----BEGIN RSA PRIVATE KEY-----
-----END RSA PRIVATE KEY-----
For other users who may encounter this issue:
I had exported this wildcard certificate from another server through IIS. Instead I had to view the certificate, copy to file, export the private key, include all certificates. Now I was able to use that same command and my new pem was the following format which worked. I was able to install this cert then publish a public DNS record to translate 22.214.171.124 to a url I placed in the virtual interface's DNS Host Name field.
I'm having the same problem, but in version 126.96.36.199 (latest stable).
After try to install the certificate, is returning this log output: *TransferTask: Jan 29 10:30:14.337: #UPDATE-3-CERT_INST_FAIL: [PA] updcode.c:2554 Failed to install certificate. rc = 2
The certificate is in .pem extension, and was generated on last week by GlobalSign. I have the password, that is correct. The certificate was generated to full address that is configured in the virtual interface.
Typically when a cert fails during the transfer, it's either a bad pem file or the password. Why not create a new CSR and have them replace the cert they gave you. I have had to do this a few times due to fat fingering the password:)
Transferring Crash file from standby: Login to the Active WLC in HA.
From CLI: (Cisco Controller) >transfer upload datatype crash (Cisco
Controller) >transfer upload filename (Cisco
Controller) >transfer upload mode tftp (Cisco Controller) >transfer
This is the start of a display filter cross reference between Wireshark
and OmniPeek. The 1st installment is a table of advanced filters. More
filters will be added as time allows. It is a living doc, so check back
for changes every so often Please feel f...