In order to permanently remove an access point from a centrally managed WLAN infrastructure, the certificates in the SCEP client have to be either deleted or revoked.
- If you have access to the access point, the certificates are quickly deleted by resetting the device.
- If the device has been stolen and consequently needs to be removed from the WLAN infrastructure, then the certificates in the WLAN controller's CA have to be revoked. This is done in WEBconfig by navigating to and accessing the Certificate status table. Here you delete the certificate for the MAC address of the access point which is to be removed from the WLAN infrastructure. The certificates are not actually deleted, but they are marked as expired.
Note: In case of a backup solution featuring redundant WLAN controllers, the certificates have
to be revoked in all of the WLAN controllers!