Sunday, October 17, 2010

Replace SSL Certificate for Cisco Wireless Controller

I followed the process below:

  • Received a .p12 pkcs#12 file from a 3rd party CA
  • Imported it to a server that had IIS installd (this was just so I could export it to a .pfx file) this can be done using OpenSSL convertor.
  • from IIS exported the certificate with all possible paths and the private key to a .pfx file
  • converted the .pfx to .pem using the following command
OpenSSL> pkcs12 -in wlcssl.pfx -out wlcssl.pem

OpenSSL can be downloaded from the following link
http://www.slproweb.com/products/Win32OpenSSL.html
Version 0.9.8o is the only one that works for most WLCs – just this info would have saved hours for me.
Win32 OpenSSL v0.9.8o

more details: http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a00806e367a.shtml