You can use cnMaestro to push a template to all the devices in your network.
Just in case you are not familiar with creating a template, here is a good article from knowledgebase .
Following template will upload HTTPS certificates to the device. You just need to update the “certificate”, “encryptedPassword” and “encryptedPrivateKey” sections
Please note that since “rebootIfRequired” field is “true”, the radio will reboot immediately after the configuration is applied.
You can save the template as a “.cfg” file and use SNMP to import the file.
The OID to import configuration file is “importConfigFile” (.1.3.6.1.4.1.161.19.3.3.3.7.0).
What format and version is the certificate in within the template?
How is the encryptionPassword generated?
Our other approach was to import our file into a radio, then use the text from that configuration file. However, we’re having trouble getting the radio to accept our wildcard certificate. When we’re importing a PKCS12 file in a radio, we’re getting an error, “Error opening file.”, even when we have created the PKCS12 file without a password.
I’m sorry for the delay in my response.
The certificate in the above example was in PKCS12 format.
The approach you’ve suggested is the way to go.
Could you please open a support ticket to help with importing the certificate.
However, now that the AP has a valid HTTPS cert, it seems browsing to the SM via the AP’s proxy mechanism no longer works, while accessing the AP utilizing the valid HTTPS cert. This seems to be the behavior on 22.0.2.
When we browse to the IP of the AP, proxy to the SM is fine. I did try installing the new certificate on the SM as well but it didn’t make a difference.