I've stucked by strange cert behavior of capsman connection
Have a router with capsman, two identical cAPs (model = cAPGi-5HaxD2HaxD), one is connected, the other bitching: ssl no trusted CA certificate found ( resp. "disconnected, connectiong interrupted" at the router/capsman logs )
config at this part is identical at both AP's:
/interface wifi cap
Code: Select all
set caps-man-addresses=192.168.69.1 certificate=request discovery-interfaces=bridge enabled=yes lock-to-caps-man=yes
/interface wifi capsman
set ca-certificate=auto enabled=yes interfaces=vlan69-pvt,*4 package-path="" require-peer-certificate=no upgrade-policy=suggest-same-version
/interface wifi provisioning
add action=create-dynamic-enabled disabled=no master-configuration=cfg69-pvt radio-mac=00:00:00:00:00:00 slave-configurations=cfg16-pub,cfg21-iot
Code: Select all
[admin@Patio] > /certificate/print
Flags: K - PRIVATE-KEY; T - TRUSTED
Columns: NAME, COMMON-NAME, SKID
# NAME COMMON-NAME SKID
0 T _0 WiFi-CAPsMAN-CA-4C5E0CD37561 82054501ef8dcd55d8980f5883cdfc9892c8a53d
1 K CAP-789A189246C3 CAP-789A189246C3 f2dc369ccc799187ffa30f41401e91379880d6c6
Code: Select all
[admin@CAP-Indoor] > /certificate/print
Flags: K - PRIVATE-KEY; T - TRUSTED
Columns: NAME, COMMON-NAME, SKID
# NAME COMMON-NAME SKID
0 T _0 WiFi-CAPsMAN-CA-4C5E0CD37561 82054501ef8dcd55d8980f5883cdfc9892c8a53d
1 K CAP-789A189242F5 CAP-789A189242F5
I've tried to remove certs and try to re-join the failing one, but ended up at the same corner.
FrOm GUI point of view - I'm able to join to the Capsman first time, got a cert but if I enable the "Lock To Capsman", it starts complaining and I totaly out. Not just lock, but even join is not working.
Any advice/ suggestion available ?
note the capsman/wifiwave is completely new to me and there could be some glitch somewhere else, but both configs seems very identical to me.