Have installed a Verisign class 3 certificate on ACS 3.3 in order to provide Peap authentication on Wireless client. If we view the certificate when the Wireless client authenticate to ACS, it show the Verisign Intermediate certificate has expired (07/01/2004) (see attached file). Problem is that Peap is not sending all the certificates which was installed on the server.
Accessing the ACS server with SSL (HTTPS), all the certificate information are good. Intermediate certificate installed on ACS is send as well with the issued certificate.
Yes it is because it is expired, what strange is the following :
That intermediate certificate was installed on the ACS server as well with the site certificate and if we establish a SSL session with the ACS, we can view it Ok (the intermediate one on the ACS).
In peap the ACS is not sending the intermediate certificate as it do in SSL, so we got the error that the certificate is expired because in Windows Verign Class 3 Intermediate certificate is expired in 2004.
I was thinking that Peap will permit us to only install on cerftificate on the server without doing any change on the client side !?
Transferring Crash file from standby: Login to the Active WLC in HA.
From CLI: (Cisco Controller) >transfer upload datatype crash (Cisco
Controller) >transfer upload filename (Cisco
Controller) >transfer upload mode tftp (Cisco Controller) >transfer
This is the start of a display filter cross reference between Wireshark
and OmniPeek. The 1st installment is a table of advanced filters. More
filters will be added as time allows. It is a living doc, so check back
for changes every so often Please feel f...
I have created a Powershell script to automatically add a Wireless Guest
User on Cisco WLCs. (tested on 2500 Series) The script should be
completely self explanatory. Prerequisites: Powershell SNMP Module
(Install-Module -Name SNMP) SNMP Write Access to y...