Description:

This document describes the alternative backup of the CA/RA of a WLC until LCOS 8.62 RU5 using SSH.


Procedure:

In some cases, for security or administrative reasons a remote WLC can only be accessed using SSH. In this case, an external system can backup the CA/RA and Certlist by using SCP.

1) In this case, and similar to the export via the Web interface, the backup files are generated as follows:
    do /Setup/Certificates/SCEP-CA/CA-certificates/Create-PKCS12-Backup-Files <password>


2) Subsequently you can use SCP to extract the files via an external system:
    scp root@<WLC-IP>:/minifs/scep_ca_backup .

    scp root@<WLC-IP>:/minifs/scep_ra_backup .

    scp root@<WLC-IP>:/minifs/scep_cert_list .


This alternative works up until the current LCOS 8.62 RU5. Routers with WLC Option are not supported.

As of LCOS version 8.80, it is possible to perform a backup using the PSCP program provided by PuTTY. Instructions for this can be found in the LCOS addendum 8.80 in Chapter 3.2.



All LANCOM products and software versions are subject to LANCOM Software Lifecycle Management.
You can find information on our website at https://www.lancom-systems.com/products/firmware/software-lifecycle-management

© 2019-2024 LANCOM Systems GmbH