Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
8524
Views
10
Helpful
26
Replies

WLC2504 - GoDaddy.com certificate

Go to solution
smunzani
Level 1
Level 1

‎09-10-2012 02:54 PM - edited ‎07-03-2021 10:38 PM

Team,

Did anybody try to use godaddy.com SSL certificate with Cisco WLC to get rid of untrusted certificate warning when the guest do captive portal authentication? Godaddy is not root authority and its intermediate authority that's why asking. Can you please guide me to any instructions?           

1 person had this problem
Labels:
0 Helpful
26 Replies 26

Go to solution
George Stefanick
VIP Alumni
VIP Alumni
In response to Scott Fella

‎09-10-2012 07:43 PM

I just recently purchased guestnetwork.org where I am hosting the customers a record and did their cert, because of this very confusion.

Since I own the domain, very fitting name as well, I may just provide this as a service.

But I don't know ..

Sent from Cisco Technical Support iPhone App

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________
0 Helpful

Go to solution
edondurguti
Level 4
Level 4

‎09-10-2012 07:48 PM

Just my two cents. Godaddy works. I am using it.

Sent from Cisco Technical Support iPhone App

0 Helpful

Go to solution
n.lavender
Level 1
Level 1
In response to edondurguti

‎12-31-2012 03:33 AM

Hi Chaps,

having downloaded the certs from godaddy, you get 2 files.

The device cert and a bundle cert. Would i be right in thinking the bundle cert contains both the root and intermediatery certs or do i need to download an additional from the repository?

Cheers,

Nick

0 Helpful

Go to solution
dkorell
Level 1
Level 1
In response to n.lavender

‎01-07-2013 09:50 AM

I just switched from RapidSSL to GoDaddy and found this post and it was very useful. For future users finding this and wondering if the bundle cert from GoDaddy includes the root and intermeditary, yes it does.

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame

‎12-31-2012 03:37 AM

It might not. It might just be the intermediate cert if I remember. You can always view the cert on you PC and export both the intermediate and the root from the device cert. I have had an issue with a vendor bundling up the wrong root ca.

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
n.lavender
Level 1
Level 1
In response to Scott Fella

‎12-31-2012 04:01 AM

From certmgr?

i.e. export the root ca from Trusted Root Certification Authorities > Certificates > GoDaddy > Export > DER?

Same for Intermediate Certification Authorities > Certificates > GoDaddy > Export > DER?

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to n.lavender

‎12-31-2012 08:28 AM

Take a look on my post from Sep 10, 2012 9:12 PM.  That shows you haow to view and export the intermediate and the root.

Thanks,

Scott

Help out other by using the rating system and marking answered questions as "Answered"

-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to Scott Fella

‎12-31-2012 08:39 AM

Let me try to show you...

Double click on the device certificate and click on the Certification Path and click on the Intermediate and then View Certificate button

Click on the Details Tab and hit the Copy to File button

The Wizard should open up and click Next

Choose Base-64 and click on the Next button

Save the Intermediate cert somewhere.  You can then rename that cert to have a .txt extension so you can combine the device, intermediate and root in the same text file.

No you can do the same for the root certificate.

Thanks,

Scott

Help out other by using the rating system and marking answered questions as "Answered"

-Scott
*** Please rate helpful posts ***

Go to solution
n.lavender
Level 1
Level 1
In response to Scott Fella

‎01-18-2013 05:39 AM

Thanks Scott, I think i am 99% there now. last thing i have a question about is the final stage:

pkcs12 -export -in All-certs.pem -inkey mykey.pem -out All-certs.p12 -clcerts -passin pass:TESTTEST -passout pass:TESTTEST

pkcs12 -in All-certs.p12 -out final-cert.pem -passin pass:TESTTEST -passout pass:TESTTEST

When i created the CSR and filled in the applicable details I didn't enter a password in order for it to actually do it. Can I enter any pass here or does it have some relevance? (I know one is specified on the ca upolad page)

TIA,

Nick

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame

‎01-18-2013 05:43 AM

The password when you generate the CSR is not needed. This password is different. This is the one you specify that you need to also enter when you upload the cert to the WLC.

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***

Go to solution
n.lavender
Level 1
Level 1
In response to Scott Fella

‎01-18-2013 05:46 AM

Cheers, you've been super helful on this one!

I'll be documenting the whole process to avoid a repeat.

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to n.lavender

‎01-18-2013 05:50 AM

Just make sure you keep a backup of the cert and the password in case you have to RMA the WLC or even factory default the WLC. Heck you can even use it on the other WLC's if you have a need:)

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card