Wireless Access

Is it possible to create a Certificate Signing Request for ECDSA P-384 and SHA-384 with the Aruba Mobility Controller 72xx series?

 

It appears to be limited to SHA-256 as a maximum.

Do you mean this?

 

 

http://www.arubanetworks.com/techdocs/ArubaOS_65x_WebHelp/Web_Help_Index.htm#ArubaFrameStyles/Management_Utilities/Managing_Certificates.htm?Highlight=csr

Thank you for the reply but from my understanding, that may be SHA2 but not at 384. If you generate a CSR with that, I think you will find it is SHA-256. I could be wrong, it may be I'm running an older version of code or have a licensing issue. I'm new to Aruba.

Judging by the Open SSL documentation, it should list ecdsa-with-SHA384.I think Aruba uses Open SSL due to the similarity in the command line.

Here is a link that discusses the Open SSL capability.

http://stackoverflow.com/questions/16818014/generate-csr-with-secp384r1elliptic-curve-key-and-sha384-hash-signature

Being new to Aruba, I don't know of any way to get this rone.

In most cases, it's recommended to do the CSR on an external server so you can back up the private key and/or use the certificate on your other controllers.

Agreed,

 

Just generate your own CSR offline.

Thanks, got it.

 

On a different device:

Create keys as exportable

Create CSR

Apply for certificate using CSR

Import keys on controller

Import certificate on controller

 

Show some care when doing this, certificates are tied to DNS.