I want to use PEAP with ME with Local Authentication. It works but it shows to the users the internal certificate issued by Cisco Manufacturing CA. I have got in the controller a public certificate that I am using with the captive portal. How can I use my certificate with Local EAP?
Follow this guide to install the device certificate either signed by company CA or you can also signed it it with public certificate authority (ex: global sign)
Dont forget to arte helpful posts
I finally installed the eap public certificate (third party certificate) with "transfer download datatype eapdevcert " command and rebooted the controller.
After the reboot, the command "show certificate eap" shows the new installed certificate but when I connect to the Wlan with PEAP with local users the AP shows me the Cisco preconfigured certificate.
How can I use my third party certificate?
Do I have to select the certificate in the WLC configuration?
If you already installed that you can use the vendor certificate instead of cisco, check this :
Configure certificate parameters per profile by entering these commands:
This command applies only to EAP-FAST because device certificates are not used with LEAP and are mandatory for EAP-TLS and PEAP.
This command applies only to EAP-FAST because client certificates are not used with LEAP or PEAP and are mandatory for EAP-TLS.
Dont forget to rate helpful posts
Thank you very much, very helpful information. But still not working.
With a Windows client, it doesn't show me a server certificate to accept and it doesn't connect
With an android client, it only connects if I choose not validate server certificate.
It seems there is a problem with the certificate or the ca certificate.
Which eap CA certificate do I have to upload to the controller? root CA or Intermediate CA?