Aruba certificates upload by Ulises Cázares

 Hi, in this post i'll write about uploanding certificates in order to use them as the captive portal cert of management cert in different aruba solutions.

 

Clearpass

1.- Clearpass accepts diferent formats to upload the certificates into it

  • PEM(offline).- You will need the certificate in 1 file and the private key in another file.
    • Note.- If the private key is not encrypted just write anything in the password field since it's required. If the private Key is encrypted you will need that password to import it

 

  • PEM(online).-You will need the certificate in 1 file and set the upload method as: Upload Certificate Use Saved Private Key

 

  • PFX.- You will need the PFX file and the export password use to create the PFX

 Note.- For either option you will need to enable or upload the Root CA Certificate in Clearpass Trust List selecting Usage as "Others" before trying to upload the cert.


 

2.- You can export the certificates already stored in Clearpass as PFX and you'll need to provide a password of your chosing to do it. 

 

Mobility Controller and Mobility Conductor (v8)

1.- The mobility controller wil accept most certificate's types but it is recomenden to use the PEM option and using the server cert as type.

  • PEM(offline).- You will need to create the PEM file in the correct order to upload it (Cert, PrivateKey, Intermediate CA, Root CA) and type the private key password if you have set any if not leave it blank the passphrase field.

 

  • PEM(online).-You will need the certificatefile and type the private key password if you have set any if not leave it blank the passphrase field.


 

Offline means that you have created the CSR outside the solution/box and you have the Private Key file

Online means that you have created the CSR inside the solution/box and you don't have the Private Key file since it's not exported

 

 

Hope this helps

 

    Comments

    Post a Comment

    Popular posts from this blog

    Aruba Clearpass - How to configure the Cisco WLC for Guest and MAC Caching by Ulises Cázares

    Using API in ArubaOS Switches with Postman by Ulises Cázares

    WiFi - How to know supported channels by a wireless client by Ulises Cázares