Wired Intelligent Edge

last person joined: 17 hours ago 

Bring performance and reliability to your network with the HPE Aruba Networking Core, Aggregation, and Access layer switches. Discuss the latest features and functionality of your switching devices, and find ways to improve security across your network to bring together a mobile-first solution
Back to discussions
Expand all | Collapse all

Switching HTTPS / Wildcard Cert

This thread has been viewed 8 times

  • 1.  Switching HTTPS / Wildcard Cert

    Posted Apr 12, 2019 03:43 PM

    Do the Aruba 2900-series switches support having a wildcard cert in place for HTTPS? Code is 16.08

    I have a created the appropriate TA-Profile, uploaded the signing CA certificate (intermediate), and generated the CSR with common-name *.domain.tld.

    The wildcard cert does have *.domain.tld in the common-name.

     

    When I try to copy the cert over I get "No matching CSR found. . . ". The same when I try

    crypto pki install-signed-certificate


  • 2.  RE: Switching HTTPS / Wildcard Cert

    Posted Apr 12, 2019 04:39 PM
    I’m not sure about it but I think not.
    You need both a private and public key and I think from my head its not poissible to import a private key, but not sure.

    Is the csr generated on this switch?


  • 3.  RE: Switching HTTPS / Wildcard Cert

    Posted Apr 12, 2019 04:44 PM
    Yes. With common name *.domain.tld which corresponds to the wildcard cert.


  • 4.  RE: Switching HTTPS / Wildcard Cert

    Posted Apr 15, 2019 02:28 PM

    Assuming that wildcard certs are not accepted, is my only other route to get every CSR signed individually?



  • 5.  RE: Switching HTTPS / Wildcard Cert

    Posted Apr 15, 2019 02:54 PM
    Yes indeed. As far I know EST is not support at the switches.
    For more information see the documentation
    http://h22208.www2.hpe.com/eginfolib/Aruba/16.08/5200-5483/index.html#c_Certificate_Manager.html