Alles over netwerken en security.
 Menu:


 
 Forum  Documentatie
 Forum  Diensten
 Forum  ADSL providers
 CCIE Blog  CCIE BLOG


WLC 5508 certificaat installeren

Hoe installeer ik een .pfx/.pem certificaat op een WLC 5508



- Cisco WLC's hebben een bug. OPENSSL 0.98 werkt; OPENSSL1.xxx werkt niet!

wget https://www.openssl.org/source/openssl-0.9.8zb.tar.gz
tar zxvf openssl-0.9.8zb.tar.gz
cd openssl-0.9.8zb/
./config
make

openssl pkcs12 -in your_certificate.pfx -out file.nokey.pem -nokeys
openssl pkcs12 -in your_certificate.pfx -out file.withkey.pem
openssl rsa -in file.withkey.pem -out file.key
openssl pkcs12 -export -in file.nokey.pem -inkey file.key -out CA.p12 -clcerts

--- nu verplicht openssl 0.98 gebruiken ---

/root/download/openssl-0.9.8zb/apps/openssl pkcs12 -in CA.p12 -out final.pem -passin pass:test123 -passout pass:test123

--- copy to tftp ---

cp final.pem /var/lib/tftpboot/

--- login on the wlc ---

(Cisco Controller) >transfer download filename final.pem
(Cisco Controller) >transfer download certpassword test123
(Cisco Controller) >transfer download start

Mode............................................. TFTP
Data Type........................................ Site Cert
TFTP Server IP................................... 10.x.x.x
TFTP Packet Timeout.............................. 6
TFTP Max Retries................................. 10
TFTP Path........................................ /
TFTP Filename.................................... final.pem

This may take some time.
Are you sure you want to start? (y/N) y

TFTP Webauth cert transfer starting.

TFTP receive complete... Installing Certificate.

Certificate installed.
Reboot the switch to use new certificate.


(Cisco Controller) >




2004 - Frizone webdesign