09-14-2011 01:03 PM - edited 07-03-2021 08:46 PM
Hey Folks,
We have a client that was using Eap TLS i think and their PKI Cert have expired. I took some notes so I appologize if this question is incomplete. ACS 4.2 is also being used. ?
Can someone point me to the right document on how to renew these certs?
09-14-2011 01:50 PM
If they are using ACS, there wouldn't be a need for the WLC to have a device certificate on it.
The ACS would need a valid certificate from their CA, or itself if it is the CA. And the client would need their machine or user cert to authenticate.
So, what is happening with the clients? If you go to the ACS System Config > Certificate is the cert still valid?
09-14-2011 01:52 PM
I was told they switched to WPA PSK in the meantime. Let me get more info and come back with details..
09-16-2011 09:20 AM
They are currently using ACS 4.2, after their certs expired they switched to WPS PSK. We need to renew these certs.
09-16-2011 09:23 AM
On the ACS, you can generate a new CSR and submit that to the CA. Once you have it, import it into the ACS. The following goes ove the steps needed.
HTH,
Steve
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: