AAA, NAC, Guest Access & BYOD

Default Aruba Certificate for securelogin.arubanetworks.com is Expired

by on ‎06-25-2014 03:54 PM

On June 29, 2011 the default SSL/TLS certificate “securelogin.arubanetworks.com” that is installed on all Aruba controllers will expire. While this default certificate was never intended for production use, Aruba is aware that a number of customers are using this certificate in production networks. These customers will need to replace the certificate. 

Affected customers have two options: 

1. Replace the default certificate with a certificate issued by an internal certificate authority or a public certificate authority. This option is recommended and provides the greatest security. 

2. Upgrade the ArubaOS image to a version number equal to or greater than 3.3.3.10, 3.4.4.2, 5.0.3.2, 6.0.1.1, or 6.1.0.0. These software images contain a new default certificate that will replace the expiring certificate. This option does not provide good security, since all Aruba customers have access to the same certificate and impersonation attacks are possible.

Search Airheads
Showing results for 
Search instead for 
Did you mean: 
Is this a frequent problem?

Request an official Aruba knowledge base article to be written by our experts.