07-25-2023 08:20 AM
Hello, in a recent pen test the following was discovered for the Ruckus Unleashed master AP
SSL Certificate Chain Contains RSA Keys Less Than 2048 bits
"At least one of the X.509 certificates sent by the remote host has a
key that is shorter than 2048 bits. According to industry standards
set by the Certification Authority/Browser (CA/B) Forum, certificates
issued after January 1, 2014 must be at least 2048 bits.
I can see in the unleashed console that under the Administration > Certificate options I can change this option:
Re-generate private key of a specific key length to 2048.
The ruckus is using a self signed cert. If I click the option for 2048 and regenerate, will this update the self signed cert and cause no other impact but restarted the APs?
thanks
Solved! Go to Solution.
08-02-2023 07:29 PM
Hi @MWSS
The option to regenerate private key under Administration > Certificate >> Advanced >> Re-Generate Private Key of a Specific Key Length: 2048
Should solve your issue. It will re-generate a new cert of the master AP which has RSA key length to 2048.
07-27-2023 01:45 AM
Just checking you can confirm this Sanjay
07-27-2023 07:20 PM
Hi @MWSS
I'm checking on this.
08-02-2023 07:29 PM
Hi @MWSS
The option to regenerate private key under Administration > Certificate >> Advanced >> Re-Generate Private Key of a Specific Key Length: 2048
Should solve your issue. It will re-generate a new cert of the master AP which has RSA key length to 2048.
08-14-2023 12:50 AM
thank you, this causes no impact apart from a reboot I presume?
08-14-2023 01:08 AM
Hi @MWSS
Yes that is correct.