scsd/scsd-configs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: scsd:c8ff41a53fcf6df15d3ec51dbfcb8a536eaa5d15
Branches Tags
scsd:main
...
compare: scsd:4c7d13834433f57effc7a3a19b5524bd59ef4b62
Branches Tags
scsd:main

11 Commits
c8ff41a53f ... 4c7d138344

Author SHA1 Message Date
John Poland
4c7d138344 ct/ct-noc-a8360-1-a.cfg Tue Apr 14 08:33:59 PM EDT 2026 2026-04-14 20:34:04 -04:00
John Poland
41d8e664fe ct/ct-noc-a8325-a.cfg Tue Apr 14 08:33:59 PM EDT 2026 2026-04-14 20:34:04 -04:00
John Poland
9513120496 ct/ct-noc-a8325-b.cfg Tue Apr 14 08:33:59 PM EDT 2026 2026-04-14 20:34:04 -04:00
John Poland
54c1b54119 sh/sh-noc-a8325-b.cfg Tue Apr 14 08:33:59 PM EDT 2026 2026-04-14 20:34:04 -04:00
John Poland
e6feb35976 sh/sh-noc-a8360-3-a.cfg Tue Apr 14 08:33:59 PM EDT 2026 2026-04-14 20:34:04 -04:00
John Poland
5eaa6c1be2 sh/sh-noc-a8360-3-b.cfg Tue Apr 14 08:33:59 PM EDT 2026 2026-04-14 20:34:04 -04:00
John Poland
5e9ac7bd4a sh/sh-noc-a8325-a.cfg Tue Apr 14 08:33:59 PM EDT 2026 2026-04-14 20:34:04 -04:00
John Poland
28e28b4f0d wlc/wlc-c.cfg Tue Apr 14 08:33:59 PM EDT 2026 2026-04-14 20:34:03 -04:00
John Poland
6a9ccdfc2b wlc/wlc-a.cfg Tue Apr 14 08:33:59 PM EDT 2026 2026-04-14 20:34:03 -04:00
John Poland
d0d94704cc wlc/wlc-b.cfg Tue Apr 14 08:33:59 PM EDT 2026 2026-04-14 20:34:03 -04:00
John Poland
8f9ba386ae wlc/wlc-mm-2.cfg Tue Apr 14 08:33:59 PM EDT 2026 2026-04-14 20:34:03 -04:00
11 changed files with 193 additions and 16 deletions
Show Stats Expand all files Collapse all files

17
configs/ct/ct-noc-a8325-a.cfg
View File

@ -79,6 +79,8 @@ vlan 30
name IoT name IoT
description IoT description IoT
ip igmp snooping enable ip igmp snooping enable
vlan 32
name SCSD_Guest
vlan 35 vlan 35
name Wireless_Controller_Admin name Wireless_Controller_Admin
description Wireless Controller Admin description Wireless Controller Admin
@ -554,7 +556,7 @@ spanning-tree
spanning-tree priority 2 spanning-tree priority 2
spanning-tree trap topology-change instance 0 spanning-tree trap topology-change instance 0
spanning-tree ignore-pvid-inconsistency spanning-tree ignore-pvid-inconsistency
spanning-tree vlan 3,5,6,10,12,18,20,21,30,35,40,45,48,50,70,72,99,101,107,140,150,151,164,168,172,175-179,200,203,230,252,254,302-310,313-316,320-325,327-330,333,334,336,337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433,434,436,437,440-442,444-449,451,453-457,460,466-468,486,500-509,511-519,525,699,811-813,995,999,1180,1202,1251,1254,1256,1261,1262,1811-1814,3000 spanning-tree vlan 3,5,6,10,12,18,20,21,30,32,35,40,45,48,50,70,72,99,101,107,140,150,151,164,168,172,175-179,200,203,230,252,254,302-310,313-316,320-325,327-330,333,334,336,337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433,434,436,437,440-442,444-449,451,453-457,460,466-468,486,500-509,511-519,525,699,811-813,995,999,1180,1202,1251,1254,1256,1261,1262,1811-1814,3000
spanning-tree vlan 3 priority 4 spanning-tree vlan 3 priority 4
spanning-tree vlan 5 priority 4 spanning-tree vlan 5 priority 4
spanning-tree vlan 6 priority 4 spanning-tree vlan 6 priority 4
@ -564,6 +566,7 @@ spanning-tree vlan 18 priority 4
spanning-tree vlan 20 priority 4 spanning-tree vlan 20 priority 4
spanning-tree vlan 21 priority 4 spanning-tree vlan 21 priority 4
spanning-tree vlan 30 priority 4 spanning-tree vlan 30 priority 4
spanning-tree vlan 32 priority 4
spanning-tree vlan 35 priority 4 spanning-tree vlan 35 priority 4
spanning-tree vlan 40 priority 4 spanning-tree vlan 40 priority 4
spanning-tree vlan 45 priority 4 spanning-tree vlan 45 priority 4
@ -1087,6 +1090,18 @@ interface vlan 30
ip ospf 1 area 0.0.0.0 ip ospf 1 area 0.0.0.0
ip igmp enable ip igmp enable
ip pim-sparse enable ip pim-sparse enable
interface vlan 32
description SCSD_Guest
ip address 10.1.32.2/23
active-gateway ip mac 02:00:00:00:00:01
active-gateway ip 10.1.32.1
ip helper-address 10.1.40.20
ip helper-address 10.1.40.189
ip helper-address 10.1.48.11
ip helper-address 10.21.48.20
ip ospf 1 area 0.0.0.0
ip igmp enable
ip pim-sparse enable
interface vlan 35 interface vlan 35
description Wireless Controller Admin description Wireless Controller Admin
ip address 10.1.35.2/24 ip address 10.1.35.2/24

17
configs/ct/ct-noc-a8325-b.cfg
View File

@ -78,6 +78,8 @@ vlan 30
name IoT name IoT
description IoT description IoT
ip igmp snooping enable ip igmp snooping enable
vlan 32
name SCSD_Guest
vlan 35 vlan 35
name Wireless_Controller_Admin name Wireless_Controller_Admin
description Wireless Controller Admin description Wireless Controller Admin
@ -555,7 +557,7 @@ spanning-tree
spanning-tree priority 2 spanning-tree priority 2
spanning-tree trap topology-change instance 0 spanning-tree trap topology-change instance 0
spanning-tree ignore-pvid-inconsistency spanning-tree ignore-pvid-inconsistency
spanning-tree vlan 3,5,6,10,12,18,20,21,30,35,40,45,48,50,70,72,99,101,107,140,150,151,164,168,172,175-179,200,203,230,252,254,302-310,313-316,320-325,327-330,333,334,336,337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433,434,436,437,440-442,444-449,451,453-457,460,466-468,486,500-509,511-519,525,699,811-814,995,999,1180,1202,1251,1254,1256,1261,1262,1811-1814,3000 spanning-tree vlan 3,5,6,10,12,18,20,21,30,32,35,40,45,48,50,70,72,99,101,107,140,150,151,164,168,172,175-179,200,203,230,252,254,302-310,313-316,320-325,327-330,333,334,336,337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433,434,436,437,440-442,444-449,451,453-457,460,466-468,486,500-509,511-519,525,699,811-814,995,999,1180,1202,1251,1254,1256,1261,1262,1811-1814,3000
spanning-tree vlan 3 priority 4 spanning-tree vlan 3 priority 4
spanning-tree vlan 5 priority 4 spanning-tree vlan 5 priority 4
spanning-tree vlan 6 priority 4 spanning-tree vlan 6 priority 4
@ -565,6 +567,7 @@ spanning-tree vlan 18 priority 4
spanning-tree vlan 20 priority 4 spanning-tree vlan 20 priority 4
spanning-tree vlan 21 priority 4 spanning-tree vlan 21 priority 4
spanning-tree vlan 30 priority 4 spanning-tree vlan 30 priority 4
spanning-tree vlan 32 priority 5
spanning-tree vlan 35 priority 4 spanning-tree vlan 35 priority 4
spanning-tree vlan 40 priority 4 spanning-tree vlan 40 priority 4
spanning-tree vlan 45 priority 4 spanning-tree vlan 45 priority 4
@ -1066,6 +1069,18 @@ interface vlan 30
ip ospf 1 area 0.0.0.0 ip ospf 1 area 0.0.0.0
ip igmp enable ip igmp enable
ip pim-sparse enable ip pim-sparse enable
interface vlan 32
description SCSD_Guest
ip address 10.1.32.3/23
active-gateway ip mac 02:00:00:00:00:01
active-gateway ip 10.1.32.1
ip helper-address 10.1.40.20
ip helper-address 10.1.40.189
ip helper-address 10.1.48.11
ip helper-address 10.21.48.20
ip ospf 1 area 0.0.0.0
ip igmp enable
ip pim-sparse enable
interface vlan 35 interface vlan 35
description Wireless Controller Admin description Wireless Controller Admin
ip address 10.1.35.3/24 ip address 10.1.35.3/24

7
configs/ct/ct-noc-a8360-1-a.cfg
View File

@ -104,6 +104,8 @@ vlan 24
vlan 30 vlan 30
name IoT name IoT
description IoT description IoT
vlan 32
name SCSD_Guest
vlan 34 vlan 34
name Wireless_-_SCSD_Administrator name Wireless_-_SCSD_Administrator
description Wireless - SCSD Administrator description Wireless - SCSD Administrator
@ -568,7 +570,7 @@ spanning-tree
spanning-tree priority 2 spanning-tree priority 2
spanning-tree trap topology-change instance 0 spanning-tree trap topology-change instance 0
spanning-tree ignore-pvid-inconsistency spanning-tree ignore-pvid-inconsistency
spanning-tree vlan 3,5-7,9-12,16,18,19,21,24,30,34,35,40,45,48,50,60,70,72,99-101,107,114,140,145,150,151,160,161,164,165,172-179,200,203,230,251,252,302-310,313-316,320-325,327-330,333,334,336,337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433,434,436,437,440-442,444-449,451,453-457,460,466-468,486,500-509,525,699,811,812,995,999,1180,1202,1251,1254,1256,1811-1813,2999,3000 spanning-tree vlan 3,5-7,9-12,16,18,19,21,24,30,32,34,35,40,45,48,50,60,70,72,99-101,107,114,140,145,150,151,160,161,164,165,172-179,200,203,230,251,252,302-310,313-316,320-325,327-330,333,334,336,337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433,434,436,437,440-442,444-449,451,453-457,460,466-468,486,500-509,525,699,811,812,995,999,1180,1202,1251,1254,1256,1811-1813,2999,3000
spanning-tree vlan 3 priority 12 spanning-tree vlan 3 priority 12
spanning-tree vlan 5 priority 12 spanning-tree vlan 5 priority 12
spanning-tree vlan 6 priority 12 spanning-tree vlan 6 priority 12
@ -583,6 +585,7 @@ spanning-tree vlan 19 priority 12
spanning-tree vlan 21 priority 12 spanning-tree vlan 21 priority 12
spanning-tree vlan 24 priority 12 spanning-tree vlan 24 priority 12
spanning-tree vlan 30 priority 12 spanning-tree vlan 30 priority 12
spanning-tree vlan 32 priority 12
spanning-tree vlan 34 priority 12 spanning-tree vlan 34 priority 12
spanning-tree vlan 35 priority 12 spanning-tree vlan 35 priority 12
spanning-tree vlan 40 priority 12 spanning-tree vlan 40 priority 12
@ -783,7 +786,7 @@ interface lag 28 multi-chassis
no shutdown no shutdown
no routing no routing
vlan trunk native 699 vlan trunk native 699
vlan trunk allowed 10,30,35,100,160,164,302-310,313-316,320-325,327-330,333-334,336-337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433-434,436-437,440-442,444-449,451,453-457,460,466-468,486 vlan trunk allowed 10,30,32,35,100,160,164,302-310,313-316,320-325,327-330,333-334,336-337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433-434,436-437,440-442,444-449,451,453-457,460,466-468,486
lacp mode active lacp mode active
interface lag 181 multi-chassis interface lag 181 multi-chassis
description FG-A inside description FG-A inside

17
configs/sh/sh-noc-a8325-a.cfg
View File

@ -83,6 +83,8 @@ vlan 30
name IoT name IoT
description IoT description IoT
ip igmp snooping enable ip igmp snooping enable
vlan 32
name SCSD_Guest
vlan 35 vlan 35
name Wireless_Controller_Admin name Wireless_Controller_Admin
description Wireless Controller Admin description Wireless Controller Admin
@ -553,7 +555,7 @@ spanning-tree
spanning-tree priority 2 spanning-tree priority 2
spanning-tree trap topology-change instance 0 spanning-tree trap topology-change instance 0
spanning-tree ignore-pvid-inconsistency spanning-tree ignore-pvid-inconsistency
spanning-tree vlan 3,5,6,10,12,18,20,21,30,35,40,45,48,50,70,72,99,107,114,140,150,151,164,168,172,175-179,200,203,230,252,254,302-310,313-316,320-325,327-330,333,334,336,337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433,434,436,437,440-442,444-449,451,453-457,460,466-468,486,500-509,521-529,531-539,699,811,812,995,999,1202,1251,1254,1256,1261,1262,1811,1812,2180,2999,3000 spanning-tree vlan 3,5,6,10,12,18,20,21,30,32,35,40,45,48,50,70,72,99,107,114,140,150,151,164,168,172,175-179,200,203,230,252,254,302-310,313-316,320-325,327-330,333,334,336,337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433,434,436,437,440-442,444-449,451,453-457,460,466-468,486,500-509,521-529,531-539,699,811,812,995,999,1202,1251,1254,1256,1261,1262,1811,1812,2180,2999,3000
spanning-tree vlan 3 priority 5 spanning-tree vlan 3 priority 5
spanning-tree vlan 5 priority 5 spanning-tree vlan 5 priority 5
spanning-tree vlan 6 priority 5 spanning-tree vlan 6 priority 5
@ -563,6 +565,7 @@ spanning-tree vlan 18 priority 5
spanning-tree vlan 20 priority 5 spanning-tree vlan 20 priority 5
spanning-tree vlan 21 priority 5 spanning-tree vlan 21 priority 5
spanning-tree vlan 30 priority 5 spanning-tree vlan 30 priority 5
spanning-tree vlan 32 priority 5
spanning-tree vlan 35 priority 5 spanning-tree vlan 35 priority 5
spanning-tree vlan 40 priority 5 spanning-tree vlan 40 priority 5
spanning-tree vlan 45 priority 5 spanning-tree vlan 45 priority 5
@ -1000,6 +1003,18 @@ interface vlan 30
ip ospf 1 area 0.0.0.0 ip ospf 1 area 0.0.0.0
ip igmp enable ip igmp enable
ip pim-sparse enable ip pim-sparse enable
interface vlan 32
description SCSD_Guest
ip address 10.1.32.4/23
active-gateway ip mac 02:00:00:00:00:01
active-gateway ip 10.1.32.1
ip helper-address 10.1.40.20
ip helper-address 10.1.40.189
ip helper-address 10.1.48.11
ip helper-address 10.21.48.20
ip ospf 1 area 0.0.0.0
ip igmp enable
ip pim-sparse enable
interface vlan 35 interface vlan 35
description Wireless_Controller_Admin description Wireless_Controller_Admin
ip address 10.1.35.4/24 ip address 10.1.35.4/24

17
configs/sh/sh-noc-a8325-b.cfg
View File

@ -81,6 +81,8 @@ vlan 30
name IoT name IoT
description IoT description IoT
ip igmp snooping enable ip igmp snooping enable
vlan 32
name SCSD_Guest
vlan 35 vlan 35
name Wireless_Controller_Admin name Wireless_Controller_Admin
description Wireless Controller Admin description Wireless Controller Admin
@ -551,7 +553,7 @@ spanning-tree
spanning-tree priority 2 spanning-tree priority 2
spanning-tree trap topology-change instance 0 spanning-tree trap topology-change instance 0
spanning-tree ignore-pvid-inconsistency spanning-tree ignore-pvid-inconsistency
spanning-tree vlan 3,5,6,10,12,18,20,21,30,35,40,45,48,50,70,72,99,107,114,140,150,151,164,168,172,175-179,200,203,230,252,254,302-310,313-316,320-325,327-330,333,334,336,337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433,434,436,437,440-442,444-449,451,453-457,460,466-468,486,500-509,521-529,531-539,699,811,812,995,999,1202,1251,1254,1256,1261,1262,1811,1812,2180,2999,3000 spanning-tree vlan 3,5,6,10,12,18,20,21,30,32,35,40,45,48,50,70,72,99,107,114,140,150,151,164,168,172,175-179,200,203,230,252,254,302-310,313-316,320-325,327-330,333,334,336,337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433,434,436,437,440-442,444-449,451,453-457,460,466-468,486,500-509,521-529,531-539,699,811,812,995,999,1202,1251,1254,1256,1261,1262,1811,1812,2180,2999,3000
spanning-tree vlan 3 priority 5 spanning-tree vlan 3 priority 5
spanning-tree vlan 5 priority 5 spanning-tree vlan 5 priority 5
spanning-tree vlan 6 priority 5 spanning-tree vlan 6 priority 5
@ -561,6 +563,7 @@ spanning-tree vlan 18 priority 5
spanning-tree vlan 20 priority 5 spanning-tree vlan 20 priority 5
spanning-tree vlan 21 priority 5 spanning-tree vlan 21 priority 5
spanning-tree vlan 30 priority 5 spanning-tree vlan 30 priority 5
spanning-tree vlan 32 priority 5
spanning-tree vlan 35 priority 5 spanning-tree vlan 35 priority 5
spanning-tree vlan 40 priority 5 spanning-tree vlan 40 priority 5
spanning-tree vlan 45 priority 5 spanning-tree vlan 45 priority 5
@ -993,6 +996,18 @@ interface vlan 30
ip ospf 1 area 0.0.0.0 ip ospf 1 area 0.0.0.0
ip igmp enable ip igmp enable
ip pim-sparse enable ip pim-sparse enable
interface vlan 32
description SCSD_Guest
ip address 10.1.32.5/23
active-gateway ip mac 02:00:00:00:00:01
active-gateway ip 10.1.32.1
ip helper-address 10.1.40.20
ip helper-address 10.1.40.189
ip helper-address 10.1.48.11
ip helper-address 10.21.48.20
ip ospf 1 area 0.0.0.0
ip igmp enable
ip pim-sparse enable
interface vlan 35 interface vlan 35
description Wireless Controller Admin description Wireless Controller Admin
ip address 10.1.35.5/24 ip address 10.1.35.5/24

9
configs/sh/sh-noc-a8360-3-a.cfg
View File

@ -90,6 +90,8 @@ vlan 24
vlan 30 vlan 30
name IoT name IoT
description IoT description IoT
vlan 32
name SCSD_Guest
vlan 34 vlan 34
name Wireless_-_SCSD_Administrator name Wireless_-_SCSD_Administrator
description Wireless - SCSD Administrator description Wireless - SCSD Administrator
@ -584,7 +586,7 @@ spanning-tree
spanning-tree priority 2 spanning-tree priority 2
spanning-tree trap topology-change instance 0 spanning-tree trap topology-change instance 0
spanning-tree ignore-pvid-inconsistency spanning-tree ignore-pvid-inconsistency
spanning-tree vlan 3,5-7,9-12,16,18-21,24,30,34,35,40,45,48,50,60,70,72,99-101,107,114,140,145,150,151,160,161,164,165,168,172-179,200,203,230,251,252,302-310,313-316,320-325,327-330,333,334,336,337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433,434,436,437,440-442,444-449,451,453-457,460,466-468,486,500-509,521-529,531-539,637,638,699,811,812,995,999,1202,1251,1254,1256,1811,1812,2180,2999,3000 spanning-tree vlan 3,5-7,9-12,16,18-21,24,30,32,34,35,40,45,48,50,60,70,72,99-101,107,114,140,145,150,151,160,161,164,165,168,172-179,200,203,230,251,252,302-310,313-316,320-325,327-330,333,334,336,337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433,434,436,437,440-442,444-449,451,453-457,460,466-468,486,500-509,521-529,531-539,637,638,699,811,812,995,999,1202,1251,1254,1256,1811,1812,2180,2999,3000
spanning-tree vlan 3 priority 12 spanning-tree vlan 3 priority 12
spanning-tree vlan 5 priority 12 spanning-tree vlan 5 priority 12
spanning-tree vlan 6 priority 12 spanning-tree vlan 6 priority 12
@ -600,6 +602,7 @@ spanning-tree vlan 20 priority 12
spanning-tree vlan 21 priority 12 spanning-tree vlan 21 priority 12
spanning-tree vlan 24 priority 12 spanning-tree vlan 24 priority 12
spanning-tree vlan 30 priority 12 spanning-tree vlan 30 priority 12
spanning-tree vlan 32 priority 12
spanning-tree vlan 34 priority 12 spanning-tree vlan 34 priority 12
spanning-tree vlan 35 priority 12 spanning-tree vlan 35 priority 12
spanning-tree vlan 40 priority 12 spanning-tree vlan 40 priority 12
@ -810,14 +813,14 @@ interface lag 20 multi-chassis
no shutdown no shutdown
no routing no routing
vlan trunk native 699 vlan trunk native 699
vlan trunk allowed 10,30,35,100,160,164,302-310,313-316,320-325,327-330,333-334,336-337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433-434,436-437,440-442,444-449,451,453-457,460,466-468,486 vlan trunk allowed 10,30,32,35,100,160,164,302-310,313-316,320-325,327-330,333-334,336-337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433-434,436-437,440-442,444-449,451,453-457,460,466-468,486
lacp mode active lacp mode active
interface lag 21 multi-chassis interface lag 21 multi-chassis
description aruba-wlc-b pc-0 description aruba-wlc-b pc-0
no shutdown no shutdown
no routing no routing
vlan trunk native 699 vlan trunk native 699
vlan trunk allowed 10,30,35,100,160,164,302-310,313-316,320-325,327-330,333-334,336-337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433-434,436-437,440-442,444-449,451,453-457,460,466-468,486 vlan trunk allowed 10,30,32,35,100,160,164,302-310,313-316,320-325,327-330,333-334,336-337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433-434,436-437,440-442,444-449,451,453-457,460,466-468,486
lacp mode active lacp mode active
interface lag 106 multi-chassis interface lag 106 multi-chassis
description to to FG-A Inside description to to FG-A Inside

9
configs/sh/sh-noc-a8360-3-b.cfg
View File

@ -90,6 +90,8 @@ vlan 24
vlan 30 vlan 30
name IoT name IoT
description IoT description IoT
vlan 32
name SCSD_Guest
vlan 34 vlan 34
name Wireless_-_SCSD_Administrator name Wireless_-_SCSD_Administrator
description Wireless - SCSD Administrator description Wireless - SCSD Administrator
@ -584,7 +586,7 @@ spanning-tree
spanning-tree priority 2 spanning-tree priority 2
spanning-tree trap topology-change instance 0 spanning-tree trap topology-change instance 0
spanning-tree ignore-pvid-inconsistency spanning-tree ignore-pvid-inconsistency
spanning-tree vlan 3,5-7,9-12,16,18-21,24,30,34,35,40,45,48,50,60,70,72,99-101,107,114,140,145,150,151,160,161,164,165,168,172-179,200,203,230,251,252,302-310,313-316,320-325,327-330,333,334,336,337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433,434,436,437,440-442,444-449,451,453-457,460,466-468,486,500-509,521-529,531-539,637,638,699,811,812,995,999,1202,1251,1254,1256,1811,1812,2180,2999,3000 spanning-tree vlan 3,5-7,9-12,16,18-21,24,30,32,34,35,40,45,48,50,60,70,72,99-101,107,114,140,145,150,151,160,161,164,165,168,172-179,200,203,230,251,252,302-310,313-316,320-325,327-330,333,334,336,337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433,434,436,437,440-442,444-449,451,453-457,460,466-468,486,500-509,521-529,531-539,637,638,699,811,812,995,999,1202,1251,1254,1256,1811,1812,2180,2999,3000
spanning-tree vlan 3 priority 12 spanning-tree vlan 3 priority 12
spanning-tree vlan 5 priority 12 spanning-tree vlan 5 priority 12
spanning-tree vlan 6 priority 12 spanning-tree vlan 6 priority 12
@ -600,6 +602,7 @@ spanning-tree vlan 20 priority 12
spanning-tree vlan 21 priority 12 spanning-tree vlan 21 priority 12
spanning-tree vlan 24 priority 12 spanning-tree vlan 24 priority 12
spanning-tree vlan 30 priority 12 spanning-tree vlan 30 priority 12
spanning-tree vlan 32 priority 12
spanning-tree vlan 34 priority 12 spanning-tree vlan 34 priority 12
spanning-tree vlan 35 priority 12 spanning-tree vlan 35 priority 12
spanning-tree vlan 40 priority 12 spanning-tree vlan 40 priority 12
@ -810,14 +813,14 @@ interface lag 20 multi-chassis
no shutdown no shutdown
no routing no routing
vlan trunk native 699 vlan trunk native 699
vlan trunk allowed 10,30,35,100,160,164,302-310,313-316,320-325,327-330,333-334,336-337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433-434,436-437,440-442,444-449,451,453-457,460,466-468,486 vlan trunk allowed 10,30,32,35,100,160,164,302-310,313-316,320-325,327-330,333-334,336-337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433-434,436-437,440-442,444-449,451,453-457,460,466-468,486
lacp mode active lacp mode active
interface lag 21 multi-chassis interface lag 21 multi-chassis
description aruba-wlc-b pc-0 description aruba-wlc-b pc-0
no shutdown no shutdown
no routing no routing
vlan trunk native 699 vlan trunk native 699
vlan trunk allowed 10,30,35,100,160,164,302-310,313-316,320-325,327-330,333-334,336-337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433-434,436-437,440-442,444-449,451,453-457,460,466-468,486 vlan trunk allowed 10,30,32,35,100,160,164,302-310,313-316,320-325,327-330,333-334,336-337,340-342,344-349,351,353-357,360,366-368,386,402-410,413-416,420-425,427-430,433-434,436-437,440-442,444-449,451,453-457,460,466-468,486
lacp mode active lacp mode active
interface lag 106 multi-chassis interface lag 106 multi-chassis
description to to FG-A Inside description to to FG-A Inside

38
configs/wlc/wlc-a.cfg
View File

@ -7,7 +7,7 @@ clock timezone America/New_York -04 0
! !
conductorip 10.1.35.33 ipsec ****** interface vlan 35 conductorip 10.1.35.33 ipsec ****** interface vlan 35
location "Building1.floor1" location "Building1.floor1"
controller config 729 controller config 741
crypto-local pki ServerCert scsd_full_wc3 StarCert-Ex03_26_fullchain.pfx crypto-local pki ServerCert scsd_full_wc3 StarCert-Ex03_26_fullchain.pfx
crypto-local pki ServerCert scsd_full_wc_2026 StarCert-Ex03_26_fullchain.pfx crypto-local pki ServerCert scsd_full_wc_2026 StarCert-Ex03_26_fullchain.pfx
crypto-local pki ServerCert scsd_wc3_2026 StarCert-Expire03202026.pfx crypto-local pki ServerCert scsd_wc3_2026 StarCert-Expire03202026.pfx
@ -292,6 +292,8 @@ ip access-list session SCSD_Deny-Internal
! !
ip access-list session apprf-logon-sacl ip access-list session apprf-logon-sacl
! !
ip access-list session apprf-scsd_guest-sacl
!
ip access-list session staff_scsd ip access-list session staff_scsd
any network 192.168.0.0 255.255.0.0 any deny any network 192.168.0.0 255.255.0.0 any deny
any network 10.0.0.0 255.0.0.0 tcp 22 23 deny any network 10.0.0.0 255.0.0.0 tcp 22 23 deny
@ -432,6 +434,13 @@ ip access-list session logon-control-bridge
ip access-list session dhcp-acl ip access-list session dhcp-acl
any any svc-dhcp permit any any svc-dhcp permit
! !
ip access-list session SCSD_Guest
any any svc-dhcp permit
any any svc-dns permit
any network 192.168.0.0 255.255.0.0 any deny
any network 10.0.0.0 255.0.0.0 any deny
any any any permit
!
ip access-list session facetime-acl ip access-list session facetime-acl
any any svc-facetime-tcp permit queue high any any svc-facetime-tcp permit queue high
any any udp 3478 3497 permit any any udp 3478 3497 permit
@ -696,6 +705,11 @@ user-role SCSD-IoT
access-list session SCSD_Deny-Internal access-list session SCSD_Deny-Internal
access-list session allowall access-list session allowall
! !
user-role SCSD_Guest
access-list session global-sacl
access-list session apprf-scsd_guest-sacl
access-list session SCSD_Guest
!
user-role authenticated user-role authenticated
access-list session global-sacl access-list session global-sacl
access-list session apprf-authenticated-sacl access-list session apprf-authenticated-sacl
@ -755,6 +769,8 @@ vlan 10
! !
vlan 30 vlan 30
! !
vlan 32
!
vlan 35 vlan 35
! !
vlan 100 vlan 100
@ -960,6 +976,8 @@ vlan-name Intune
vlan Intune 164 vlan Intune 164
vlan-name IoT vlan-name IoT
vlan IoT 30 vlan IoT 30
vlan-name SCSD_Guest
vlan SCSD_Guest 32
vlan-name Secure-02-ITC vlan-name Secure-02-ITC
vlan Secure-02-ITC 302 vlan Secure-02-ITC 302
vlan-name Secure-03-Fowler vlan-name Secure-03-Fowler
@ -1944,6 +1962,8 @@ aaa authentication dot1x "IoT_dot1_aut"
! !
aaa authentication dot1x "LemoyneTest_dot1_aut" aaa authentication dot1x "LemoyneTest_dot1_aut"
! !
aaa authentication dot1x "SCSC_Guest_dot1_aut"
!
aaa authentication dot1x "SCSD_IoT_dot1_aut" aaa authentication dot1x "SCSD_IoT_dot1_aut"
! !
aaa authentication dot1x "SCSD_Secure_dot1_aut" aaa authentication dot1x "SCSD_Secure_dot1_aut"
@ -2042,6 +2062,10 @@ aaa profile "LemoyneTest_aaa_prof"
! !
aaa profile "NoAuthAAAProfile" aaa profile "NoAuthAAAProfile"
! !
aaa profile "SCSC_Guest_aaa_prof"
initial-role "SCSD_Guest"
authentication-dot1x "SCSC_Guest_dot1_aut"
!
aaa profile "SCSD_IoT_aaa_prof" aaa profile "SCSD_IoT_aaa_prof"
initial-role "SCSD-IoT" initial-role "SCSD-IoT"
authentication-dot1x "SCSD_IoT_dot1_aut" authentication-dot1x "SCSD_IoT_dot1_aut"
@ -2663,6 +2687,11 @@ wlan ssid-profile "IoT_ssid_prof"
opmode mpsk-aes opmode mpsk-aes
hide-ssid hide-ssid
! !
wlan ssid-profile "SCSC_Guest_ssid_prof"
essid "SCSD_Guest"
wpa-passphrase *redacted*
opmode wpa2-psk-aes
!
wlan ssid-profile "SCSD_IoT_ssid_prof" wlan ssid-profile "SCSD_IoT_ssid_prof"
essid "SCSD_IoT" essid "SCSD_IoT"
wpa-passphrase *redacted* wpa-passphrase *redacted*
@ -3480,6 +3509,11 @@ wlan virtual-ap "IoT"
vlan 30 vlan 30
ssid-profile "IoT_ssid_prof" ssid-profile "IoT_ssid_prof"
! !
wlan virtual-ap "SCSC_Guest"
aaa-profile "SCSC_Guest_aaa_prof"
vlan 32
ssid-profile "SCSC_Guest_ssid_prof"
!
wlan virtual-ap "SCSD_IoT" wlan virtual-ap "SCSD_IoT"
aaa-profile "SCSD_IoT_aaa_prof" aaa-profile "SCSD_IoT_aaa_prof"
vlan 30 vlan 30
@ -3625,6 +3659,7 @@ ap-group "APG06Henninger"
virtual-ap "APG06-SCSD_Secure" virtual-ap "APG06-SCSD_Secure"
virtual-ap "APG06-SCSD_Vendor" virtual-ap "APG06-SCSD_Vendor"
virtual-ap "IoT" virtual-ap "IoT"
virtual-ap "SCSC_Guest"
! !
ap-group "APG06Henninger-Outdoors" ap-group "APG06Henninger-Outdoors"
dot11a-radio-profile "rp-377-a" dot11a-radio-profile "rp-377-a"
@ -3673,6 +3708,7 @@ ap-group "APG14Shea"
virtual-ap "APG14-SCSD_Vendor" virtual-ap "APG14-SCSD_Vendor"
virtual-ap "SCSD_IoT" virtual-ap "SCSD_IoT"
virtual-ap "IoT" virtual-ap "IoT"
virtual-ap "SCSC_Guest"
! !
ap-group "APG15HWSmith" ap-group "APG15HWSmith"
virtual-ap "Intune" virtual-ap "Intune"

38
configs/wlc/wlc-b.cfg
View File

@ -7,7 +7,7 @@ clock timezone America/New_York -04 0
! !
conductorip 10.1.35.33 ipsec ****** interface vlan 35 conductorip 10.1.35.33 ipsec ****** interface vlan 35
location "Building1.floor1" location "Building1.floor1"
controller config 729 controller config 741
crypto-local pki ServerCert scsd_full_wc3 StarCert-Ex03_26_fullchain.pfx crypto-local pki ServerCert scsd_full_wc3 StarCert-Ex03_26_fullchain.pfx
crypto-local pki ServerCert scsd_full_wc_2026 StarCert-Ex03_26_fullchain.pfx crypto-local pki ServerCert scsd_full_wc_2026 StarCert-Ex03_26_fullchain.pfx
crypto-local pki ServerCert scsd_wc3_2026 StarCert-Expire03202026.pfx crypto-local pki ServerCert scsd_wc3_2026 StarCert-Expire03202026.pfx
@ -292,6 +292,8 @@ ip access-list session SCSD_Deny-Internal
! !
ip access-list session apprf-logon-sacl ip access-list session apprf-logon-sacl
! !
ip access-list session apprf-scsd_guest-sacl
!
ip access-list session staff_scsd ip access-list session staff_scsd
any network 192.168.0.0 255.255.0.0 any deny any network 192.168.0.0 255.255.0.0 any deny
any network 10.0.0.0 255.0.0.0 tcp 22 23 deny any network 10.0.0.0 255.0.0.0 tcp 22 23 deny
@ -432,6 +434,13 @@ ip access-list session logon-control-bridge
ip access-list session dhcp-acl ip access-list session dhcp-acl
any any svc-dhcp permit any any svc-dhcp permit
! !
ip access-list session SCSD_Guest
any any svc-dhcp permit
any any svc-dns permit
any network 192.168.0.0 255.255.0.0 any deny
any network 10.0.0.0 255.0.0.0 any deny
any any any permit
!
ip access-list session facetime-acl ip access-list session facetime-acl
any any svc-facetime-tcp permit queue high any any svc-facetime-tcp permit queue high
any any udp 3478 3497 permit any any udp 3478 3497 permit
@ -696,6 +705,11 @@ user-role SCSD-IoT
access-list session SCSD_Deny-Internal access-list session SCSD_Deny-Internal
access-list session allowall access-list session allowall
! !
user-role SCSD_Guest
access-list session global-sacl
access-list session apprf-scsd_guest-sacl
access-list session SCSD_Guest
!
user-role authenticated user-role authenticated
access-list session global-sacl access-list session global-sacl
access-list session apprf-authenticated-sacl access-list session apprf-authenticated-sacl
@ -755,6 +769,8 @@ vlan 10
! !
vlan 30 vlan 30
! !
vlan 32
!
vlan 35 vlan 35
! !
vlan 100 vlan 100
@ -960,6 +976,8 @@ vlan-name Intune
vlan Intune 164 vlan Intune 164
vlan-name IoT vlan-name IoT
vlan IoT 30 vlan IoT 30
vlan-name SCSD_Guest
vlan SCSD_Guest 32
vlan-name Secure-02-ITC vlan-name Secure-02-ITC
vlan Secure-02-ITC 302 vlan Secure-02-ITC 302
vlan-name Secure-03-Fowler vlan-name Secure-03-Fowler
@ -1945,6 +1963,8 @@ aaa authentication dot1x "IoT_dot1_aut"
! !
aaa authentication dot1x "LemoyneTest_dot1_aut" aaa authentication dot1x "LemoyneTest_dot1_aut"
! !
aaa authentication dot1x "SCSC_Guest_dot1_aut"
!
aaa authentication dot1x "SCSD_IoT_dot1_aut" aaa authentication dot1x "SCSD_IoT_dot1_aut"
! !
aaa authentication dot1x "SCSD_Secure_dot1_aut" aaa authentication dot1x "SCSD_Secure_dot1_aut"
@ -2043,6 +2063,10 @@ aaa profile "LemoyneTest_aaa_prof"
! !
aaa profile "NoAuthAAAProfile" aaa profile "NoAuthAAAProfile"
! !
aaa profile "SCSC_Guest_aaa_prof"
initial-role "SCSD_Guest"
authentication-dot1x "SCSC_Guest_dot1_aut"
!
aaa profile "SCSD_IoT_aaa_prof" aaa profile "SCSD_IoT_aaa_prof"
initial-role "SCSD-IoT" initial-role "SCSD-IoT"
authentication-dot1x "SCSD_IoT_dot1_aut" authentication-dot1x "SCSD_IoT_dot1_aut"
@ -2625,6 +2649,11 @@ wlan ssid-profile "IoT_ssid_prof"
opmode mpsk-aes opmode mpsk-aes
hide-ssid hide-ssid
! !
wlan ssid-profile "SCSC_Guest_ssid_prof"
essid "SCSD_Guest"
wpa-passphrase *redacted*
opmode wpa2-psk-aes
!
wlan ssid-profile "SCSD_IoT_ssid_prof" wlan ssid-profile "SCSD_IoT_ssid_prof"
essid "SCSD_IoT" essid "SCSD_IoT"
wpa-passphrase *redacted* wpa-passphrase *redacted*
@ -3442,6 +3471,11 @@ wlan virtual-ap "IoT"
vlan 30 vlan 30
ssid-profile "IoT_ssid_prof" ssid-profile "IoT_ssid_prof"
! !
wlan virtual-ap "SCSC_Guest"
aaa-profile "SCSC_Guest_aaa_prof"
vlan 32
ssid-profile "SCSC_Guest_ssid_prof"
!
wlan virtual-ap "SCSD_IoT" wlan virtual-ap "SCSD_IoT"
aaa-profile "SCSD_IoT_aaa_prof" aaa-profile "SCSD_IoT_aaa_prof"
vlan 30 vlan 30
@ -3587,6 +3621,7 @@ ap-group "APG06Henninger"
virtual-ap "APG06-SCSD_Secure" virtual-ap "APG06-SCSD_Secure"
virtual-ap "APG06-SCSD_Vendor" virtual-ap "APG06-SCSD_Vendor"
virtual-ap "IoT" virtual-ap "IoT"
virtual-ap "SCSC_Guest"
! !
ap-group "APG06Henninger-Outdoors" ap-group "APG06Henninger-Outdoors"
dot11a-radio-profile "rp-377-a" dot11a-radio-profile "rp-377-a"
@ -3635,6 +3670,7 @@ ap-group "APG14Shea"
virtual-ap "APG14-SCSD_Vendor" virtual-ap "APG14-SCSD_Vendor"
virtual-ap "SCSD_IoT" virtual-ap "SCSD_IoT"
virtual-ap "IoT" virtual-ap "IoT"
virtual-ap "SCSC_Guest"
! !
ap-group "APG15HWSmith" ap-group "APG15HWSmith"
virtual-ap "Intune" virtual-ap "Intune"

38
configs/wlc/wlc-c.cfg
View File

@ -7,7 +7,7 @@ clock timezone America/New_York -04 0
! !
conductorip 10.1.35.33 ipsec ****** interface vlan 35 conductorip 10.1.35.33 ipsec ****** interface vlan 35
location "Building1.floor1" location "Building1.floor1"
controller config 729 controller config 741
crypto-local pki ServerCert scsd_full_wc3 StarCert-Ex03_26_fullchain.pfx crypto-local pki ServerCert scsd_full_wc3 StarCert-Ex03_26_fullchain.pfx
crypto-local pki ServerCert scsd_full_wc_2026 StarCert-Ex03_26_fullchain.pfx crypto-local pki ServerCert scsd_full_wc_2026 StarCert-Ex03_26_fullchain.pfx
crypto-local pki ServerCert scsd_wc3_2026 StarCert-Expire03202026.pfx crypto-local pki ServerCert scsd_wc3_2026 StarCert-Expire03202026.pfx
@ -292,6 +292,8 @@ ip access-list session SCSD_Deny-Internal
! !
ip access-list session apprf-logon-sacl ip access-list session apprf-logon-sacl
! !
ip access-list session apprf-scsd_guest-sacl
!
ip access-list session staff_scsd ip access-list session staff_scsd
any network 192.168.0.0 255.255.0.0 any deny any network 192.168.0.0 255.255.0.0 any deny
any network 10.0.0.0 255.0.0.0 tcp 22 23 deny any network 10.0.0.0 255.0.0.0 tcp 22 23 deny
@ -432,6 +434,13 @@ ip access-list session logon-control-bridge
ip access-list session dhcp-acl ip access-list session dhcp-acl
any any svc-dhcp permit any any svc-dhcp permit
! !
ip access-list session SCSD_Guest
any any svc-dhcp permit
any any svc-dns permit
any network 192.168.0.0 255.255.0.0 any deny
any network 10.0.0.0 255.0.0.0 any deny
any any any permit
!
ip access-list session facetime-acl ip access-list session facetime-acl
any any svc-facetime-tcp permit queue high any any svc-facetime-tcp permit queue high
any any udp 3478 3497 permit any any udp 3478 3497 permit
@ -696,6 +705,11 @@ user-role SCSD-IoT
access-list session SCSD_Deny-Internal access-list session SCSD_Deny-Internal
access-list session allowall access-list session allowall
! !
user-role SCSD_Guest
access-list session global-sacl
access-list session apprf-scsd_guest-sacl
access-list session SCSD_Guest
!
user-role authenticated user-role authenticated
access-list session global-sacl access-list session global-sacl
access-list session apprf-authenticated-sacl access-list session apprf-authenticated-sacl
@ -755,6 +769,8 @@ vlan 10
! !
vlan 30 vlan 30
! !
vlan 32
!
vlan 35 vlan 35
! !
vlan 100 vlan 100
@ -960,6 +976,8 @@ vlan-name Intune
vlan Intune 164 vlan Intune 164
vlan-name IoT vlan-name IoT
vlan IoT 30 vlan IoT 30
vlan-name SCSD_Guest
vlan SCSD_Guest 32
vlan-name Secure-02-ITC vlan-name Secure-02-ITC
vlan Secure-02-ITC 302 vlan Secure-02-ITC 302
vlan-name Secure-03-Fowler vlan-name Secure-03-Fowler
@ -1939,6 +1957,8 @@ aaa authentication dot1x "IoT_dot1_aut"
! !
aaa authentication dot1x "LemoyneTest_dot1_aut" aaa authentication dot1x "LemoyneTest_dot1_aut"
! !
aaa authentication dot1x "SCSC_Guest_dot1_aut"
!
aaa authentication dot1x "SCSD_IoT_dot1_aut" aaa authentication dot1x "SCSD_IoT_dot1_aut"
! !
aaa authentication dot1x "SCSD_Secure_dot1_aut" aaa authentication dot1x "SCSD_Secure_dot1_aut"
@ -2037,6 +2057,10 @@ aaa profile "LemoyneTest_aaa_prof"
! !
aaa profile "NoAuthAAAProfile" aaa profile "NoAuthAAAProfile"
! !
aaa profile "SCSC_Guest_aaa_prof"
initial-role "SCSD_Guest"
authentication-dot1x "SCSC_Guest_dot1_aut"
!
aaa profile "SCSD_IoT_aaa_prof" aaa profile "SCSD_IoT_aaa_prof"
initial-role "SCSD-IoT" initial-role "SCSD-IoT"
authentication-dot1x "SCSD_IoT_dot1_aut" authentication-dot1x "SCSD_IoT_dot1_aut"
@ -2617,6 +2641,11 @@ wlan ssid-profile "IoT_ssid_prof"
opmode mpsk-aes opmode mpsk-aes
hide-ssid hide-ssid
! !
wlan ssid-profile "SCSC_Guest_ssid_prof"
essid "SCSD_Guest"
wpa-passphrase *redacted*
opmode wpa2-psk-aes
!
wlan ssid-profile "SCSD_IoT_ssid_prof" wlan ssid-profile "SCSD_IoT_ssid_prof"
essid "SCSD_IoT" essid "SCSD_IoT"
wpa-passphrase *redacted* wpa-passphrase *redacted*
@ -3434,6 +3463,11 @@ wlan virtual-ap "IoT"
vlan 30 vlan 30
ssid-profile "IoT_ssid_prof" ssid-profile "IoT_ssid_prof"
! !
wlan virtual-ap "SCSC_Guest"
aaa-profile "SCSC_Guest_aaa_prof"
vlan 32
ssid-profile "SCSC_Guest_ssid_prof"
!
wlan virtual-ap "SCSD_IoT" wlan virtual-ap "SCSD_IoT"
aaa-profile "SCSD_IoT_aaa_prof" aaa-profile "SCSD_IoT_aaa_prof"
vlan 30 vlan 30
@ -3579,6 +3613,7 @@ ap-group "APG06Henninger"
virtual-ap "APG06-SCSD_Secure" virtual-ap "APG06-SCSD_Secure"
virtual-ap "APG06-SCSD_Vendor" virtual-ap "APG06-SCSD_Vendor"
virtual-ap "IoT" virtual-ap "IoT"
virtual-ap "SCSC_Guest"
! !
ap-group "APG06Henninger-Outdoors" ap-group "APG06Henninger-Outdoors"
dot11a-radio-profile "rp-377-a" dot11a-radio-profile "rp-377-a"
@ -3627,6 +3662,7 @@ ap-group "APG14Shea"
virtual-ap "APG14-SCSD_Vendor" virtual-ap "APG14-SCSD_Vendor"
virtual-ap "SCSD_IoT" virtual-ap "SCSD_IoT"
virtual-ap "IoT" virtual-ap "IoT"
virtual-ap "SCSC_Guest"
! !
ap-group "APG15HWSmith" ap-group "APG15HWSmith"
virtual-ap "Intune" virtual-ap "Intune"

2
configs/wlc/wlc-mm-2.cfg
View File

@ -6,7 +6,7 @@ hostname "NOC-ARUBA-MM-2"
clock timezone America/New_York -04 0 clock timezone America/New_York -04 0
! !
location "Building1.floor1" location "Building1.floor1"
controller config 729 controller config 741
crypto-local pki ServerCert scsd_wc2_full_2026 StarCert-Ex03_26_fullchain.pfx crypto-local pki ServerCert scsd_wc2_full_2026 StarCert-Ex03_26_fullchain.pfx
crypto-local pki ServerCert scsd_wildcard_2026 StarCert-Ex03_26_fullchain.pfx crypto-local pki ServerCert scsd_wildcard_2026 StarCert-Ex03_26_fullchain.pfx
crypto-local pki ServerCert scsd_wildcard_sept_2026 StarCert-Ex_09_26_fullchain.pfx crypto-local pki ServerCert scsd_wildcard_sept_2026 StarCert-Ex_09_26_fullchain.pfx