Description: This document describes the alternative backup of the CA/RA of a WLC until LCOS 8.62 RU5 using SSH. Procedure: In some cases, for security or administrative reasons a remote WLC can only be accessed using SSH. In this case, an external system can backup the CA/RA and Certlist by using SCP. 1) In this case, and similar to the export via the Web interface, the backup files are generated as follows:
do /Setup/Certificates/SCEP-CA/CA-certificates/Create-PKCS12-Backup-Files <password>
2) Subsequently you can use SCP to extract the files via an external system:
scp root@<WLC-IP>:/minifs/scep_ca_backup .
scp root@<WLC-IP>:/minifs/scep_ra_backup .
scp root@<WLC-IP>:/minifs/scep_cert_list .
This alternative works up until the current LCOS 8.62 RU5. Routers with WLC Option are not supported. As of LCOS version 8.80, it is possible to perform a backup using the PSCP program provided by PuTTY. Instructions for this can be found in the LCOS addendum 8.80 in Chapter 3.2. |
|