Hello,

My company has a CISCO WLC 2504 that is complaining about webauth certificate.
I've found that the certificate has expired and the regenerated one doesn't let people connect.
I tried to upload a new certificate, but it gives me some errors.
Well, I've already tried to create the certificate as chained and encoded, tried with password and without it,

Just to add, I've already followed these "how-to":
https://www.cisco.com/c/en/us/support/docs/wireless/4400-series-wireless-lan-controllers/109597-csr-chained-certificates-wlc-00.html#anc8
https://community.cisco.com/t5/wireless-security-and-network/wlc-2504-web-auth-certificate-expires/m-p/3673028#M54878

So, do I really need to use openssl0.9.8?

Could someone help me?

Below, the debug pm pki + debug transfer

==================================================================

[...]
*TransferTask: May 26 19:09:45.481: TFP End: 7722 bytes transferred (0 retransmitted packets)

*TransferTask: May 26 19:09:45.481: tftp rc=0, pHost=x.x.x.x pFilename=/something.pem
pLocalFilename=cert.p12

*TransferTask: May 26 19:09:45.481: RESULT_STRING: TFTP receive complete... Installing Certificate.

*TransferTask: May 26 19:09:45.481: RESULT_CODE:13

TFTP receive complete... Installing Certificate.
*TransferTask: May 26 19:09:49.485: Adding cert (7662 bytes) with certificate key password.

*TransferTask: May 26 19:09:49.520: sshpmCheckWebauthCert: Verification return code: 1

*TransferTask: May 26 19:09:49.521: Verification result text: ok

*TransferTask: May 26 19:09:49.531: sshpmAddWebauthCert: Extracting private key from webauth cert and using bundled pkcs12 password.

*TransferTask: May 26 19:09:49.538: sshpmDecodePrivateKey: private key decode failed...

*TransferTask: May 26 19:09:49.539: sshpmAddWebauthCert: key extraction failed.

*TransferTask: May 26 19:09:49.539: RESULT_STRING: Error installing certificate.

*TransferTask: May 26 19:09:49.540: RESULT_CODE:12

==================================================================