![background image](http://html.mh-extra.com/html/cisco/air-wlc2006-k9-wireless-lan-controller-2006/air-wlc2006-k9-wireless-lan-controller-2006_configuration-manual_64446052.webp)
2-4
Cisco Wireless LAN Controller Configuration Guide
OL-8335-02
Chapter 2 Using the Web-Browser and CLI Interfaces
Enabling Web and Secure Web Modes
Follow these steps to load an externally generated HTTPS certificate:
Step 1
Use a password to encrypt the HTTPS certificate in a .PEM-encoded file. The PEM-encoded file is called
a Web Administration Certificate file (
webadmincert_name
.pem).
Step 2
Move the
webadmincert_name
.pem file to the default directory on your TFTP server.
Step 3
In the CLI, enter
transfer download start
and answer
n
to the prompt to view the current download
settings:
>
transfer download start
Mode........................................... TFTP
Data Type...................................... Admin Cert
TFTP Server IP................................. xxx.xxx.xxx.xxx
TFTP Path...................................... <directory path>
TFTP Filename..................................
Are you sure you want to start? (y/n)
n
Transfer Canceled
Step 4
Use these commands to change the download settings:
>
transfer download mode tftp
>
transfer download datatype webauthcert
>
transfer download serverip
TFTP server IP address
>
transfer download path
absolute TFTP server path to the update file
>
transfer download filename
webadmincert_name.pem
Step 5
Enter the password for the .PEM file so the operating system can decrypt the Web Administration SSL
key and certificate:
>
transfer download certpassword
private_key_password
>Setting password to
private_key_password
Step 6
Enter
transfer download start
to view the updated settings, and answer
y
to the prompt to confirm the
current download settings and start the certificate and key download:
>
transfer download start
Mode........................................... TFTP
Data Type...................................... Site Cert
TFTP Server IP................................. xxx.xxx.xxx.xxx
TFTP Path...................................... directory path
TFTP Filename.................................. webadmincert_name
Are you sure you want to start? (y/n)
y
TFTP Webadmin cert transfer starting.
Certificate installed.
Please restart the switch (reset system) to use the new certificate.
Step 7
Enter this command to enable HTTPS:
>
config network secureweb enable
Step 8
Save the SSL certificate, key, and secure web password to NVRAM (non-volatile RAM) so your changes
are retained across reboots:
>
save config
Are you sure you want to save? (y/n)
y
Configuration Saved!