Network Management

 View Only
last person joined: yesterday 

Keep an informative eye on your network with HPE Aruba Networking network management solutions
Back to discussions
Expand all | Collapse all

Where to update airwave https cert

This thread has been viewed 129 times

  • 1.  Where to update airwave https cert

    Posted Aug 30, 2018 05:57 AM

    Seem to have lost a few brain cells. Got a new .p12 cert to upload onto our airwave server .... damned if I can find wher to upload it . and tell airwave to use it for https access.

     

    Found device setup/certificates so uploaded it there ... not sure if its the right place ...

     

    A



  • 2.  RE: Where to update airwave https cert

    EMPLOYEE
    Posted Aug 30, 2018 09:19 AM

    Hi

     

    If server is on 8.2.4 and above follow this article

     

    http://community.arubanetworks.com/t5/Monitoring-Management-Location/How-to-install-a-SSL-certifcate-in-AirWave-8-2-4/ta-p/311148

     

     



  • 3.  RE: Where to update airwave https cert

    EMPLOYEE
    Posted Aug 30, 2018 10:18 AM

    If on 8.2.6.1 or 8.2.6, there's an easier upload path.  Instead of launching an SFTP server, there's now the ability to create a transfer user so applications like WinSCP can work.

     

    1) login to AMPCLI (with the configured 'ampadmin' acct)

    2) 8 advanced

    3) 7 add file transfer user

    4) input desired transfer username

    "When entering the username it must have 5 or more characters and contain only lowercase letters or numbers."

    5) input desired password

    "When entering the password you must follow these rules:
    Minimum 8 chars with upper, lower, numeric, and non-alphanumeric characters.  Spaces are not allowed."

    6) connect with desired SCP/SFTP client

    7) upload files into 'user' directory

     

    NOTE: This transfer user will exist until the next maintenance cycle.

     

    Then you can follow the menu item under security to apply the new SSL cert.



  • 4.  RE: Where to update airwave https cert

    Posted Sep 29, 2019 11:20 PM

    Hi Rob,

    When I try this in my 8.2.8.2 VM I can connect using WinSCP and view the remote files, but any attempt to copy in either direction throws a WinSCP error, any ideas what is wrong?

     

    Permission denied.
Error code: 3
Error message from server: Permission denied

    WinSCP reports that the connection is SFTP-3



  • 5.  RE: Where to update airwave https cert

    EMPLOYEE
    Posted Sep 30, 2019 07:22 AM

    Move file to /user directory. Default when you login with awsft user it will take you to / directory.



  • 6.  RE: Where to update airwave https cert

    Posted Sep 30, 2019 04:28 PM

    Thanks Pavan, I am in the correct directory. but you've given me an idea...I did create a custom sftp user, I will try again with the default sftp user.

     

     

    ...and I'm back a few minutes later to say that I still got the same error with the default awsftp user.



  • 7.  RE: Where to update airwave https cert

    EMPLOYEE
    Posted Sep 30, 2019 08:06 PM

    Could you try copying the file to "/tmp" directory? Also, with what user are we trying to connect to Airwave server using winscp?

    You can also specify the scp path where the file is in the amp menu to upload it.
    If you are using windows and doesnt have a scp server you can try the below KB,

    https://community.arubanetworks.com/t5/Monitoring-Management-Location/How-to-upload-a-file-on-Airwave-8-2-4-from-Windows-machine/ta-p/303145



  • 8.  RE: Where to update airwave https cert

    Posted Oct 22, 2020 10:00 AM

    Hi,

     I am running AirWave 8.2.11.2

     

    I generated a CSR and then I got an approvement in a p7b format with the certificates included.

     

    I convert it with:

    openssl pkcs7 -print_certs -in [certname].p7b -out certificate.crt

     

    After uploading to AirWave I got the message "Invalid certificate format" when I try to Install Signed Certificate.

     

    What am I doing wrong?

     

     

     



  • 9.  RE: Where to update airwave https cert

    Posted Feb 25, 2021 12:47 PM
    I'm also getting this exact same issue:

    No Trusted Certificate found in the DB.
    No Trusted Certificate found in the DB.

    Invalid certificate format.

    Did you ever figure out what the problem was?

    ------------------------------
    Cethern Reid
    ------------------------------

    Original Message


  • 10.  RE: Where to update airwave https cert

    Posted Feb 25, 2021 12:49 PM
    I'm also getting this exact same issue:

    No Trusted Certificate found in the DB.
    No Trusted Certificate found in the DB.

    Invalid certificate format.

    Did you ever figure out what the problem was?

    ------------------------------
    Cethern Reid
    ------------------------------

    Original Message


  • 11.  RE: Where to update airwave https cert

    MVP EXPERT
    Posted Feb 25, 2021 01:50 PM
    When i work with Airwave certificates i uses PFX/PKCS12 because it can contain your certifciate,privatekey,root-ca,intermediate-ca all in one.

    In Kertron's case his Airwave server mis the Trusted root-ca/intermediate in the Airwave server.

    Command i use for generate a PKCS12:

    openssl pkcs12 -export -out cert.pfx -inkey private.key -in cert.cer -certfile CA-Root.crt -certfile Intermediate.crt
     
    It could be the ca-root and intermediate are in the wrong order, not sure.

    ------------------------------
    Marcel Koedijk | MVP Guru 2021 | ACMP | ACCP | Ekahau ECSE | Not an HPE Employee | Opionions are my own
    ------------------------------

    Original Message


  • 12.  RE: Where to update airwave https cert

    MVP EXPERT
    Posted Feb 25, 2021 01:53 PM
    Version 8.2.8.2 is end-of-support April 2020, consider an upgrade to the latest version.
    Note: Read the Release Notes carefully for the right upgrade path.

    ------------------------------
    Marcel Koedijk | MVP Guru 2021 | ACMP | ACCP | Ekahau ECSE | Not an HPE Employee | Opionions are my own
    ------------------------------

    Original Message