Controllerless Networks

Reply
Highlighted
New Contributor

Aruba SSL Wildcard Certificatewhat For Redudancy Controller

I use EAP-MSCHAP authentication on an aruba wireless controller, and I also use certificates that are already installed on the controller.
but the problem arises when I use the redundancy controller feature, my certificate cannot be used by the local.

can ssl wildcard solve this problem?


Accepted Solutions
Highlighted
Guru Elite

Re: Aruba SSL Wildcard Certificatewhat For Redudancy Controller

If you have a Windows domain, you should install your own Certificate Authority.  For 802.1x you should also install an NPS server and issue a certificate for that server from your Windows certificate authority.  That is because your clients would already trust any certificates your certificate authority issues.  You would only need to request a public server certificate for Captive Portal on your wireless infrastructure, NOT for 802.1x

 


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.5 User Guide
InstantOS 8.5 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Remote Access Point Solution Guide
ArubaOS Consolidated Release Notes
ArubaOS 8 ViA VPN Solution Guide

View solution in original post


All Replies
Highlighted
Guru Elite

Re: Aruba SSL Wildcard Certificatewhat For Redudancy Controller

You would need to create the certificate request for the server certficate offline so that you can import the same certificate into both controllers.  If you create the certificate request on a controller, you can only import the server certificate into that controller.


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.5 User Guide
InstantOS 8.5 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Remote Access Point Solution Guide
ArubaOS Consolidated Release Notes
ArubaOS 8 ViA VPN Solution Guide
Highlighted
New Contributor

Re: Aruba SSL Wildcard Certificatewhat For Redudancy Controller

Have you experienced this before?
said the certificate provider, asking for a certificate Request (CSR) is enough from the side of using the master?

Highlighted
Guru Elite

Re: Aruba SSL Wildcard Certificatewhat For Redudancy Controller

All the service provider needs is that you want a server certificate for a web server.


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.5 User Guide
InstantOS 8.5 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Remote Access Point Solution Guide
ArubaOS Consolidated Release Notes
ArubaOS 8 ViA VPN Solution Guide
Highlighted
New Contributor

Re: Aruba SSL Wildcard Certificatewhat For Redudancy Controller

Is that really the best solution for me right now?
Highlighted
Guru Elite

Re: Aruba SSL Wildcard Certificatewhat For Redudancy Controller

Based on what you told me, yes.


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.5 User Guide
InstantOS 8.5 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Remote Access Point Solution Guide
ArubaOS Consolidated Release Notes
ArubaOS 8 ViA VPN Solution Guide
Highlighted
New Contributor

Re: Aruba SSL Wildcard Certificatewhat For Redudancy Controller

based on your experience, what should I do so that I can implement 802.1x
wireless authentication with a redundancy controller?
Highlighted
Guru Elite

Re: Aruba SSL Wildcard Certificatewhat For Redudancy Controller

If you have a Windows domain, you should install your own Certificate Authority.  For 802.1x you should also install an NPS server and issue a certificate for that server from your Windows certificate authority.  That is because your clients would already trust any certificates your certificate authority issues.  You would only need to request a public server certificate for Captive Portal on your wireless infrastructure, NOT for 802.1x

 


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.5 User Guide
InstantOS 8.5 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Remote Access Point Solution Guide
ArubaOS Consolidated Release Notes
ArubaOS 8 ViA VPN Solution Guide

View solution in original post

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: