wlc/wlc-c.cfg Fri Mar 13 07:06:28 AM EDT 2026

configs/fortigate/vdom_scsd/vpn.cfg

@@ -84,6 +84,9 @@ config vpn certificate local
     edit "StarCert-Expire03202026"
         set password ENC *HIDDEN*
     next
+    edit "StarCert-Expire_20260924"
+        set password ENC *HIDDEN*
+    next
 end
 config vpn ssl web host-check-software
     edit "FortiClient-AV"
@@ -758,7 +761,7 @@ config vpn ssl web user-bookmark
 end
 config vpn ssl settings
     set banned-cipher SHA1 SHA256 SHA384
-    set servercert "StarCert-Expire03202026"
+    set servercert "StarCert-Expire_20260924"
     set idle-timeout 3600
     set auth-timeout 36000
     set login-timeout 180

configs/wlc/wlc-a.cfg

@@ -7,11 +7,12 @@ clock timezone America/New_York -04 0
 !
 conductorip 10.1.35.33 ipsec ****** interface vlan 35 
 location "Building1.floor1" 
-controller config 724
+controller config 726
 crypto-local pki ServerCert scsd_full_wc3 StarCert-Ex03_26_fullchain.pfx 
 crypto-local pki ServerCert scsd_full_wc_2026 StarCert-Ex03_26_fullchain.pfx 
 crypto-local pki ServerCert scsd_wc3_2026 StarCert-Expire03202026.pfx 
 crypto-local pki ServerCert scsd_wc_2026 StarCert-Expire03202026.pfx 
+crypto-local pki ServerCert scsd_wc_sept_2026 StarCert-Ex_09_26_fullchain.pfx 
 crypto-local pki PublicCert master-ssh-pub-cert master-ssh-pub-cert 
 ip nat pool localip 0.0.0.0 0.0.0.0 
 ip nat pool dynamic-srcnat 0.0.0.0 0.0.0.0 

configs/wlc/wlc-b.cfg

@@ -7,11 +7,12 @@ clock timezone America/New_York -04 0
 !
 conductorip 10.1.35.33 ipsec ****** interface vlan 35 
 location "Building1.floor1" 
-controller config 724
+controller config 726
 crypto-local pki ServerCert scsd_full_wc3 StarCert-Ex03_26_fullchain.pfx 
 crypto-local pki ServerCert scsd_full_wc_2026 StarCert-Ex03_26_fullchain.pfx 
 crypto-local pki ServerCert scsd_wc3_2026 StarCert-Expire03202026.pfx 
 crypto-local pki ServerCert scsd_wc_2026 StarCert-Expire03202026.pfx 
+crypto-local pki ServerCert scsd_wc_sept_2026 StarCert-Ex_09_26_fullchain.pfx 
 crypto-local pki PublicCert master-ssh-pub-cert master-ssh-pub-cert 
 ip nat pool localip 0.0.0.0 0.0.0.0 
 ip nat pool dynamic-srcnat 0.0.0.0 0.0.0.0 

configs/wlc/wlc-c.cfg

@@ -7,11 +7,12 @@ clock timezone America/New_York -04 0
 !
 conductorip 10.1.35.33 ipsec ****** interface vlan 35 
 location "Building1.floor1" 
-controller config 724
+controller config 726
 crypto-local pki ServerCert scsd_full_wc3 StarCert-Ex03_26_fullchain.pfx 
 crypto-local pki ServerCert scsd_full_wc_2026 StarCert-Ex03_26_fullchain.pfx 
 crypto-local pki ServerCert scsd_wc3_2026 StarCert-Expire03202026.pfx 
 crypto-local pki ServerCert scsd_wc_2026 StarCert-Expire03202026.pfx 
+crypto-local pki ServerCert scsd_wc_sept_2026 StarCert-Ex_09_26_fullchain.pfx 
 crypto-local pki PublicCert master-ssh-pub-cert master-ssh-pub-cert 
 ip nat pool localip 0.0.0.0 0.0.0.0 
 ip nat pool dynamic-srcnat 0.0.0.0 0.0.0.0 

configs/wlc/wlc-mm-2.cfg

@@ -6,9 +6,10 @@ hostname "NOC-ARUBA-MM-2"
 clock timezone America/New_York -04 0 
 !
 location "Building1.floor1" 
-controller config 724
+controller config 726
 crypto-local pki ServerCert scsd_wc2_full_2026 StarCert-Ex03_26_fullchain.pfx 
 crypto-local pki ServerCert scsd_wildcard_2026 StarCert-Ex03_26_fullchain.pfx 
+crypto-local pki ServerCert scsd_wildcard_sept_2026 StarCert-Ex_09_26_fullchain.pfx 
 crypto-local pki PublicCert master-ssh-pub-cert master-ssh-pub-cert 
 ip nat pool dynamic-srcnat 0.0.0.0 0.0.0.0 
 ip nat pool localip 0.0.0.0 0.0.0.0 
@@ -911,7 +912,7 @@ aaa authentication via web-auth "default"
 !
 web-server profile 
     cipher-suite ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-AES128-SHA ECDHE-RSA-AES256-SHA ECDHE-RSA-AES128-SHA 
-    switch-cert "scsd_wc2_full_2026" 
+    switch-cert "scsd_wildcard_sept_2026" 
 !
 guest-access-email 
 !