Aruba Instant & Cloud Wi-Fi

Reply
Contributor I
Posts: 21
Registered: ‎06-14-2016

IAP default auth server certificate replacement error

[ Edited ]


Dear Community. I am trying to replace the default auth server certificate on an IAP 225 with a trusted go daddy certificate.

When i upload the certificate the IAP throws an error:

"cert_upload_cannot_find_private_ke_txt"

How shoud the private key be presented to the AP as part of this process, the AP does not does not ask for the private key during upload, should it be in a text file and named appropriately?

There are no similar issues reported on the community and no aruba documentataion which refers to the private key during upload.

I attach a screenshot of my attempt to upload the certificate.

Any help appreciated.

Guru Elite
Posts: 7,849
Registered: ‎09-08-2010

Re: IAP default auth server certificate replacement error

Export your certificate and private key in PFX format and them upload to the VC.

Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
Contributor I
Posts: 21
Registered: ‎06-14-2016

Re: IAP default auth server certificate replacement error

Hi there, thanks for th reply, I dont have the facility to export as you say.I merelly download the .cer file from the issuing CA. I have the private key saved in text format. How do I go about this please? Thanks

Guru Elite
Posts: 7,849
Registered: ‎09-08-2010

Re: IAP default auth server certificate replacement error

You would need to merge them into a PFX/P12 using openssl.

Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
Contributor I
Posts: 21
Registered: ‎06-14-2016

Re: IAP default auth server certificate replacement error

Hi Tim, Having tried to merge the certificate and key using open SSL I now get the message "the file .....pfx" was not uploaded because it is not a properly formatted certificate file.

Contributor I
Posts: 21
Registered: ‎06-14-2016

Re: IAP default auth server certificate replacement error

Hi Tim, having merged the crt and privete key using open ssl I have now generated a pxf file as suggested.

I am able to import this certificate into my windows 10 personal certificate store no problem, and it shows it has the corresponding private key.

 

However, when I attempt to upload to the IAP to replace the auth server certificate I am presented with the follwing messgage "the file authserver.pfx was not uploaded because it is not a properly formatted certificate file". Any help appreciated.

Search Airheads
Showing results for 
Search instead for 
Did you mean: