Wireless Access

Reply
Occasional Contributor I
Posts: 7
Registered: ‎12-10-2014

Guide to replace the Revoked Aruba Certificate via CLI

The instructions for replacing the revoked certificate include using the web config, which is locked by the revoked certificate.

 

I have access to the CLI through SSH. show web-server indicates its using the 'default' certificate. Can I disable this so http access will work? how do I upload a self signed cert via the ssh console?

Guru Elite
Posts: 21,274
Registered: ‎03-29-2007

Re: Guide to replace the Revoked Aruba Certificate via CLI

To be clear, is this a controller-based system, and instant system or a MAS (mobility access switch) system?

 

Here are the instructions for the controller: - https://community.arubanetworks.com/t5/Controller-Based-WLANs/ArubaOS-Default-Certificate-Revocation-FAQ-Controllers/ta-p/275809



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

MVP
Posts: 516
Registered: ‎11-04-2011

Re: Guide to replace the Revoked Aruba Certificate via CLI

The instructions that Colin sent include how to upload the new certificate via the CLI, so you don't require to use the web interface.

 

If you prefer to use the web interface, and you are a Google Chrome users, there is a trick to bypass the security warning in this case. To do so, on the screen that shows the certificate warning (and no option to bypass) you type: 'badidea' (including the '-quote signs) and you will bypass the warning page. As far as I know, this only works with Chrome; but it prevents you from reverting back the WebUI to HTTP (which I even don't know if it is possible; it is a bad idea though).

--
If you have urgent issues, please contact your Aruba partner or Aruba TAC (click for contact details).
MVP
Posts: 777
Registered: ‎03-25-2009

Re: Guide to replace the Revoked Aruba Certificate via CLI

Correction Herman:

To do so, on the screen that shows the certificate warning (and no option to bypass) you type: 'badidea' (including  excluding the '-quote signs) and you will bypass the warning page.

 

Don't type it into the address field by the way. Just 'invisibly' type it while the page is open.


Herman Robers wrote:

The instructions that Colin sent include how to upload the new certificate via the CLI, so you don't require to use the web interface.

 

If you prefer to use the web interface, and you are a Google Chrome users, there is a trick to bypass the security warning in this case. To do so, on the screen that shows the certificate warning (and no option to bypass) you type: 'badidea' (including the '-quote signs) and you will bypass the warning page. As far as I know, this only works with Chrome; but it prevents you from reverting back the WebUI to HTTP (which I even don't know if it is possible; it is a bad idea though).


 

Koen (ACMX #351 | ACDX #547 | ACCP)

-- Found something helpful, important, or cool? Click the Kudos Star in a post.
-- Problem Solved? Click "Accept as Solution" in a post.
Aruba Employee
Posts: 207
Registered: ‎03-26-2013

Re: Guide to replace the Revoked Aruba Certificate via CLI

We can use Firefox as it allows to bypass the warning easily without making any changes to browser settings.

Search Airheads
Showing results for 
Search instead for 
Did you mean: