Security

I have ClearPass setup to accept guest logins and social logins from Facebook, Instagram and Twitter.

All works great from APs connected to my master controller. This is the controller whose name I put into the Address Field on my web login page in ClearPass Guest.

If an AP is connected to one of my other controllers, it will fail after authenticating with the social network. I believe that's because it tries to hit my master controller at https://<master-controller>/login and that is not where it was originally redirected from and something freaks out.

If I change the Address Field in ClearPass to my other controller, it works fine for APs connected to that controller.

I'm guessing I missed something in the setup?

I'm on Aruba OS 6.5.4.2 on my controllers and ClearPass 6.7.3.x

Any help would be appreciated. Thanks.

ClearPass web login should be configured with the controller's captive portal certificate common name. That certificate should be install on all controllers.

Thanks for the reply.

Should I generate a new cert, not using the controller(OpenSSL or something), or can I import the already existing certificate into the other controllers?

Thanks.

Old cert would not work, I created a new one and loaded on both controllers.

Thanks.