Wireless Access

Reply
Frequent Contributor II
Posts: 127
Registered: ‎12-19-2012

CPPM cluster and wildcard cert ??

Hi all, can someone assist ?

I have 2 x CPPM HW appliances in publisher subscriber.

Want to use captive portal pointing to th VIP address, all working and ok.

Next step is a publicly signed SSL wildcard cert.

What is the process, do i need a CSR request off both physical devices ?

 

Thanks

 

ACMA/ACMP
Guru Elite
Posts: 21,281
Registered: ‎03-29-2007

Re: CPPM cluster and wildcard cert ??

You would be applying the same certificate everywhere and only would have to request it once.  Most people who request a wildcard certificate use an offline utility like openssl.  ClearPass will not allow you to put a * in the hostname, anyway so you cannot create the CSR with clearpass.  Please see the Certificates 101 document here:  https://support.arubanetworks.com/Documentation/tabid/77/DMXModule/512/Command/Core_Download/Default.aspx?EntryId=19184 to understand wildcard certificates and how you would apply it.



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

MVP
Posts: 4,301
Registered: ‎07-20-2011

Re: CPPM cluster and wildcard cert ??

You only need once cert for both boxes using a common name /dns entry for the cluster VIP and if you want to use that cert for other purposes (URLs/Common Names with DNS aliases) you can then assign SANs
Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
Frequent Contributor II
Posts: 127
Registered: ‎12-19-2012

Re: CPPM cluster and wildcard cert ??

Cheers for the info, and the document, so it seems using openssl is the answer, thanks.

ACMA/ACMP
Search Airheads
Showing results for 
Search instead for 
Did you mean: