Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3049
Views
0
Helpful
3
Replies

Wildcard certificate for web auth on WLC

carl_townshend
Spotlight
Spotlight

‎04-12-2019 06:31 AM - edited ‎07-05-2021 10:14 AM

Hi All

I am trying to upload a wildcard certificate on my WLC running version 8.0.110.0

I have a pem file with the root, intermediate and end entity in one cert.

When I upload it, it just comes up with file transfer failed.

Any idea why this is?

Are wildcard certs supported on the WLC?

Cheers

 

Labels:
0 Helpful
3 Replies 3

Sathiyanarayanan Ravindran
Spotlight
Spotlight

‎04-12-2019 11:58 AM

Hi Carl,

 

Run the command debug transfer all enable to check the reason for failure. There is no limitation kind of on the web-auth certificate. Ref this link Web-Auth Certificate Installation and Troubleshoot

Regards,
Sathiyanarayanan Ravindran

Please rate the post and accept as solution, if my response satisfied your question:)
0 Helpful

carl_townshend
Spotlight
Spotlight
In response to Sathiyanarayanan Ravindran

‎04-15-2019 03:43 AM

Hi There

It still seems to be failing with the following message,

 

*TransferTask: Apr 15 10:40:57.325: RESULT_STRING: TFTP receive complete... Installing Certificate.

*TransferTask: Apr 15 10:40:57.325: RESULT_CODE:13


TFTP receive complete... Installing Certificate.
*TransferTask: Apr 15 10:41:01.340: Adding cert (7406 bytes) with certificate key password.

*TransferTask: Apr 15 10:41:01.377: sshpmCheckCert: Verification return code: 1

*TransferTask: Apr 15 10:41:01.377: Verification result text: ok

*TransferTask: Apr 15 10:41:01.387: sshpmAddWebauthCert: Extracting private key from webauth cert and using bundled pkcs12 password.

*TransferTask: Apr 15 10:41:01.394: sshpmDecodePrivateKey: private key decode failed...

*TransferTask: Apr 15 10:41:01.394: sshpmAddWebauthCert: key extraction failed.

*TransferTask: Apr 15 10:41:01.394: RESULT_STRING: Error installing certificate.


*TransferTask: Apr 15 10:41:01.394: RESULT_CODE:12


Error installing certificate.

 

Any ideas ?

0 Helpful

patoberli
VIP Alumni
VIP Alumni
In response to carl_townshend

‎04-15-2019 05:17 AM

Have you created the CSR with a private key? If not, do not include a private key inside the certificate.
Also have another read at this document: https://www.cisco.com/c/en/us/support/docs/wireless/4400-series-wireless-lan-controllers/109597-csr-chained-certificates-wlc-00.html

You should also upgrade to the latest 8.0 WLC release, you use a VERY old one, with various known security issues and many bugs.
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card