Cisco Systems OL-7426-03 quick start Locally-Generated Certificate

Locally-Generated Certificate

Should you desire to have the Operating System generate a new Web Administration SSL certificate, complete the following:

•In the CLI, enter:

>config certificate generate webadmin

Wait a few seconds, and the Cisco Wireless LAN Controller returns:

Web Administration certificate has been generated

•Verify that the Web Administration certificate is properly loaded:

>show certificate summary

•Enable Secure Web mode:

>config network secureweb enable

•Save the SSL certificate, key and secure web password in active working memory to NVRAM (non-volatile RAM) so your changes are retained across reboots:

>save config

Are you sure you want to save? (y/n) y

Configuration Saved!

•Reboot the Cisco Wireless LAN Controller:

>reset system

Are you sure you would like to reset the system? (y/n) y

System will now restart!

The Cisco Wireless LAN Controller completes the bootup process as described in the Connecting and Using the CLI Console step in the appropriate Cisco Wireless LAN Controller

Quick Start Guide.

•Make sure that operators using the Web User Interface know that they may securely log into the Cisco Wireless LAN Controller using “https://<Cisco Wireless LAN Controller_IPaddress>.

Refer to the Transferring Files To and From a Cisco Wireless LAN Controller section for other file upload and download instructions.

Externally-Generated Certificate

Should you desire to use your own Web Administration SSL certificate, complete the following:

•Make sure you have a TFTP server available for the certificate download:

-If you are downloading through the Service port, the TFTP server MUST be on the same subnet as the Service port, because the Service port is not routable.

-If you are downloading through the DS (Distribution System) network port, the TFTP server can be on the same or a different subnet, because the DS port is routable.

Note: The TFTP server cannot run on the same computer as the Cisco Wireless Control System, because the Cisco WCS and the TFTP server use the same commu- nication port.