Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1435
Views
0
Helpful
6
Replies

Problem installing certificate .pem to WLC4404

Jesus Cano Villar
Level 1
Level 1

‎01-22-2015 08:42 AM - edited ‎07-05-2021 02:19 AM

Hi, im having several problems trying to upload my auth certificate to WLC. I tried upload to WLC but im having a error "ERROR INSTALLING CERTIFICATE" 

 

I have seen this link. Which it seems interesting to me but i cant access.. can someone tell me how to access here?????

http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCsy88149

 

thanks

Labels:
0 Helpful
6 Replies 6

Jesus Cano Villar
Level 1
Level 1

‎01-22-2015 09:06 AM

This is the error

 

TFTP Webauth cert transfer starting.

 

TFTP receive complete... Installing Certificate.

*TransferTask: Jan 22 16:50:28.849: sshpmAddWebauthCert: Extracting private key from webauth cert and using bundled pkcs12 password.

 

*TransferTask: Jan 22 16:50:30.800: sshpmDecodePrivateKey: calling ssh_skb_decode()...

 

*TransferTask: Jan 22 16:50:32.716: sshpmDecodePrivateKey: SshPrivateKeyPtr after skb_decode: 0x31afbb70

 

*TransferTask: Jan 22 16:50:32.717: sshpmAddWebauthCert: got private key; extracting certificate...

 

*TransferTask: Jan 22 16:50:32.723: sshpmAddWebauthCert: extracted binary cert; doing x509 decode

 

*TransferTask: Jan 22 16:50:32.724: sshpmAddWebauthCert: doing x509 decode for 1319 byte certificate...

 

 

Error installing certificate.

 

0 Helpful

eyracastillorodriguez
Level 1
Level 1
In response to Jesus Cano Villar

‎02-25-2015 10:16 AM

Jesus:

Do you follow this steps:

http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a00806e367a.shtml

if you still with the problem contact me =)

0 Helpful

Abhishek Abhishek
Cisco Employee
Cisco Employee

‎02-15-2015 10:23 PM

You can try using DER = The DER extension is used for binary DER encoded certificates. These files may also bear the CER or the CRT extension.  

0 Helpful

Saurav Lodh
Level 7
Level 7

‎02-18-2015 03:04 PM

similar issues :

https://supportforums.cisco.com/discussion/10811806/upload-pem-file-wlc

0 Helpful

sobhardw
Cisco Employee
Cisco Employee

‎05-21-2015 03:14 PM

Please refer to the below Community :

https://supportforums.cisco.com/discussion/10811806/upload-pem-file-wlc

0 Helpful

mohanak
Cisco Employee
Cisco Employee

‎05-22-2015 03:00 AM

Chained certificate can not have Wildcard * character in hostname
CSCsy88149
 
Description

Symptom:
Web-Auth client (user laptop) while trying to do web redirection receives the error " There is a problem with the website's security certificate", although redirection is successful and user is allowed access.


Conditions:
Wireless client doing Web Authentication using IE6, IE7 or Firefox web browser and the WLC using uploaded third party certificate having wildcard * in the Hostname.


Workaround:
Use of a Hostname in the certificate without the wildcard param *. eg. wifi.longueuil.ca instead of *.longueuil.ca

Further Problem Description:
Web Authentication for Internal Guest access on a Wireless LAN Controller running code 5.2.178.0. 3rd party certificate including a wildcard * in the Hostname uploaded it to the WLC. The WLC accepts the certificate without error. When a client running IE6, IE7 or Firefox connects to the Guest WLAN, it receives the error "There is a problem with the website's security certificate". If they choose to continue the web authentication works and the user is allowed access.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card