05-23-2024 09:46 AM
I have a certificate installed and working on my WLC9800 for webauth. The same certificate does not seem to be working for Webadmin.
For Webadmin I went into administration > management > HTTP/HTTPS/Netconf/VTY and changed the trustpoint to the one I used for webauth with the working certificate. But still get a not secure when I go into the controller. Is there something else that needs to be done to have it work for Webadmin?
05-23-2024 09:56 AM
- Review this documentation : https://www.cisco.com/c/en/us/support/docs/wireless/catalyst-9800-series-wireless-controllers/221047-understand-certificate-and-trustpoint-ty.html
M.
05-23-2024 12:35 PM
05-24-2024 12:45 AM
- Make sure that the certificate is from a well known provider and or contains a valid CA ,
M.
05-28-2024 09:06 AM
05-28-2024 09:20 AM
You did not answer most of my questions which @Wes Schochet also expanded on ...
05-29-2024 06:21 AM
05-24-2024 05:34 AM
1. What is the REASON for the "not private" in the browser? (click on the warning to see more details and the actual certificate)
2. Is the browser seeing the certificate you think you enabled?
3. Did you restart the web server as per the instructions?
4. Does the certificate exactly match the DNS FQDN you are using to access the WLC? eg https://mywlc.mycompany.com
05-24-2024 06:18 AM
Rich is asking the right questions. I have been through this quite a bit.
First, you need to make sure the entire trust chain is included in the pfx. Then, make sure any name that you would use int the URL is either the CN of the certificate or a SAN. I usually use the following:
This way, all of your bases are covered.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide