10-03-2014 03:04 AM - edited 07-05-2021 01:38 AM
Dear community
I am having a problem refreshing the webauth cert on the WLC, running 7.6.110.0
I have tried everything, chaining, unchaining, openssl 0.9.8, openssl1.0 and I don't seem to manage this.
I assume openssl1.0 is supported on this software version right?
any help would be appreciated!
TFTP receive complete... Installing Certificate.
*TransferTask: Oct 03 11:42:41.619: Adding cert (5843 bytes) with certificate key password.
*TransferTask: Oct 03 11:42:41.640: sshpmCheckWebauthCert: Verification return code: 0
*TransferTask: Oct 03 11:42:41.640: Verification result text: unable to get local issuer certificate
*TransferTask: Oct 03 11:42:41.640: Error at 0 depth: unable to get local issuer certificate
*TransferTask: Oct 03 11:42:41.650: sshpmAddWebauthCert: Error decoding certificate, Deleting it.
*TransferTask: Oct 03 11:42:41.650: RESULT_STRING: Error installing certificate.
*TransferTask: Oct 03 11:42:41.650: RESULT_CODE:12
*TransferTask: Oct 03 11:42:41.650: Memory overcommit policy restored from 1 to 0
Error installing certificate.
*TransferTask: Oct 03 11:42:41.650: #UPDATE-3-CERT_INST_FAIL: updcode.c:2140 Failed to install certificate. rc = 2
*sshpmReceiveTask: Oct 03 11:42:37.360: #OSAPI-3-MUTEX_FREE_INFO: osapi_sem.c:1086 Sema 0x2b32c8f0 time=481 ulk=14143505 lk=14143024 Locker(sshpmReceiveTask sshpmrecv.c:1840 pc=0x10c93c40) unLocker(sshpmReceiveTask sshpmReceiveTaskEntry:1825 pc=0x10c93c40
-Traceback: 0x10c85090 0x108447f0 0x10c93c40 0x122e1fe0 0x123552ac
Solved! Go to Solution.
10-06-2014 06:14 AM
Hi ,
I dont know if you have followed the correct procedure as given here:
http://www.cisco.com/c/en/us/support/docs/wireless/4400-series-wireless-lan-controllers/109597-csr-chained-certificates-wlc-00.html
Additionally 7.6 allows chained certificate and that too complete trust chain should be present.
You can try installing it on before 7.6 , like 7.4 and verify if it installs there with out any issue. If yes then your certificate is not completely chained.
Regards
Dhiresh
10-06-2014 06:14 AM
Hi ,
I dont know if you have followed the correct procedure as given here:
http://www.cisco.com/c/en/us/support/docs/wireless/4400-series-wireless-lan-controllers/109597-csr-chained-certificates-wlc-00.html
Additionally 7.6 allows chained certificate and that too complete trust chain should be present.
You can try installing it on before 7.6 , like 7.4 and verify if it installs there with out any issue. If yes then your certificate is not completely chained.
Regards
Dhiresh
10-06-2014 06:30 AM
Hi Dhiresh,
I have already solved my issue.
Apparently I was using the wrong intermediate and root CA.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide