10-03-2014 03:04 AM - edited 07-05-2021 01:38 AM
Dear community
I am having a problem refreshing the webauth cert on the WLC, running 7.6.110.0
I have tried everything, chaining, unchaining, openssl 0.9.8, openssl1.0 and I don't seem to manage this.
I assume openssl1.0 is supported on this software version right?
any help would be appreciated!
TFTP receive complete... Installing Certificate.
*TransferTask: Oct 03 11:42:41.619: Adding cert (5843 bytes) with certificate key password.
*TransferTask: Oct 03 11:42:41.640: sshpmCheckWebauthCert: Verification return code: 0
*TransferTask: Oct 03 11:42:41.640: Verification result text: unable to get local issuer certificate
*TransferTask: Oct 03 11:42:41.640: Error at 0 depth: unable to get local issuer certificate
*TransferTask: Oct 03 11:42:41.650: sshpmAddWebauthCert: Error decoding certificate, Deleting it.
*TransferTask: Oct 03 11:42:41.650: RESULT_STRING: Error installing certificate.
*TransferTask: Oct 03 11:42:41.650: RESULT_CODE:12
*TransferTask: Oct 03 11:42:41.650: Memory overcommit policy restored from 1 to 0
Error installing certificate.
*TransferTask: Oct 03 11:42:41.650: #UPDATE-3-CERT_INST_FAIL: updcode.c:2140 Failed to install certificate. rc = 2
*sshpmReceiveTask: Oct 03 11:42:37.360: #OSAPI-3-MUTEX_FREE_INFO: osapi_sem.c:1086 Sema 0x2b32c8f0 time=481 ulk=14143505 lk=14143024 Locker(sshpmReceiveTask sshpmrecv.c:1840 pc=0x10c93c40) unLocker(sshpmReceiveTask sshpmReceiveTaskEntry:1825 pc=0x10c93c40
-Traceback: 0x10c85090 0x108447f0 0x10c93c40 0x122e1fe0 0x123552ac
Solved! Go to Solution.
10-06-2014 06:14 AM
Hi ,
I dont know if you have followed the correct procedure as given here:
http://www.cisco.com/c/en/us/support/docs/wireless/4400-series-wireless-lan-controllers/109597-csr-chained-certificates-wlc-00.html
Additionally 7.6 allows chained certificate and that too complete trust chain should be present.
You can try installing it on before 7.6 , like 7.4 and verify if it installs there with out any issue. If yes then your certificate is not completely chained.
Regards
Dhiresh
10-06-2014 06:14 AM
Hi ,
I dont know if you have followed the correct procedure as given here:
http://www.cisco.com/c/en/us/support/docs/wireless/4400-series-wireless-lan-controllers/109597-csr-chained-certificates-wlc-00.html
Additionally 7.6 allows chained certificate and that too complete trust chain should be present.
You can try installing it on before 7.6 , like 7.4 and verify if it installs there with out any issue. If yes then your certificate is not completely chained.
Regards
Dhiresh
10-06-2014 06:30 AM
Hi Dhiresh,
I have already solved my issue.
Apparently I was using the wrong intermediate and root CA.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: