Wireless Access

As a new member to the Airheads Community, I am trying to learn all that I can by reading posts that pertain to my specific questions.  For some reason, I haven't been able to find a clear answer to my subject mentioned question, and I was hoping to get some guidance.

I have 2 new controllers that have been setup.  I have a 7210 (Master) that sits at our HQ facility, and a 7030 (Local) that sits in a manufacturing plant.  All guest network configurations have been completed, and now I'd like to ensure that when a user attempts to login to our network that there are no issues related to certificates.

I've completed a CSR on both controllers and submitted both to GoDaddy.  I have since downloaded both certificates from GoDaddy, but now the question is how do I upload these certificates to each controller.  As you know, the downloaded file from GoDaddy contains two files.  I've read somewhere that you need to combine both of these files, but what is the idustry standard way of going about this?  I don't have Linux.  When at the upload screen, I am asked to complete the Certificate Type and the Certificate Format.  Which one do I choose?  After uploading the new certificates, how do I ensure that the upload was successful apart from no errors being generated?  

 

Thanks for your help.

How did you created the CSR via the controller or using OpenSSL ?

Do you by any chance have wildcard certificate available to use ?

How did you created the CSR via the controller or using OpenSSL ?

Do you by any chance have wildcard certificate available to use ?

Victor,

 

Thank you for your reply.  I created the CSR from each controller.  I have also ensured that each controller is listed in DNS.  We did not have a wildcard certificate to use.  We purchased 1 certificate per controller as we were told that this was the easiest option.

You can use those certs you already purchased for the Controller Management.

But for the Controller Captive Portal you will need to generate those using OpenSSL
For the Captive portal cert you only need one cert and that one can be shared across those controllers.

Here's the instructions on how to generate the CSR using OpenSSL:
https://community.arubanetworks.com/t5/Controller-Based-WLANs/How-to-replace-Captive-Portal-SSL-certificate-and-get-NO-invalid/ta-p/179946

I haven't tried myself you can try using OpenSSL on a Windows machine , I usually use a MacBook
https://www.tbs-certificates.co.uk/FAQ/en/openssl-windows.html

Please take a look here:
https://community.arubanetworks.com/t5/Controller-Based-WLANs/ArubaOS-Defaul
t-Certificate-Revocation-FAQ-Controllers/ta-p/275809



Everything is documented.

Please take a look here:
https://community.arubanetworks.com/t5/Controller-Based-WLANs/ArubaOS-Defaul
t-Certificate-Revocation-FAQ-Controllers/ta-p/275809



Everything is documented.

You can use those certs you already purchased for the Controller Management.

But for the Controller Captive Portal you will need to generate those using OpenSSL
For the Captive portal cert you only need one cert and that one can be shared across those controllers.

Here's the instructions on how to generate the CSR using OpenSSL:
https://community.arubanetworks.com/t5/Controller-Based-WLANs/How-to-replace-Captive-Portal-SSL-certificate-and-get-NO-invalid/ta-p/179946

I haven't tried myself you can try using OpenSSL on a Windows machine , I usually use a MacBook
https://www.tbs-certificates.co.uk/FAQ/en/openssl-windows.html