Wireless Access

Frequent Contributor II

CPPM cluster and wildcard cert ??

Hi all, can someone assist ?

I have 2 x CPPM HW appliances in publisher subscriber.

Want to use captive portal pointing to th VIP address, all working and ok.

Next step is a publicly signed SSL wildcard cert.

What is the process, do i need a CSR request off both physical devices ?




Guru Elite

Re: CPPM cluster and wildcard cert ??

You would be applying the same certificate everywhere and only would have to request it once.  Most people who request a wildcard certificate use an offline utility like openssl.  ClearPass will not allow you to put a * in the hostname, anyway so you cannot create the CSR with clearpass.  Please see the Certificates 101 document here:  https://support.arubanetworks.com/Documentation/tabid/77/DMXModule/512/Command/Core_Download/Default.aspx?EntryId=19184 to understand wildcard certificates and how you would apply it.

*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.3 User Guide
InstantOS 8.3 User Guide
Airheads Knowledgebase
Airheads Learning Videos

Re: CPPM cluster and wildcard cert ??

You only need once cert for both boxes using a common name /dns entry for the cluster VIP and if you want to use that cert for other purposes (URLs/Common Names with DNS aliases) you can then assign SANs
Thank you

Victor Fabian
Lead Mobility Architect @WEI
Frequent Contributor II

Re: CPPM cluster and wildcard cert ??

Cheers for the info, and the document, so it seems using openssl is the answer, thanks.

Search Airheads
Showing results for 
Search instead for 
Did you mean: