The https captive portal screen.
Are the user name and passwords encrypted so that they are not still clear text?
I know typical captive portal usage has Open wireless networks.
So why https page for authentication?
Are username/passwords able to be sniffed?
Also, if this was Captive Portal is tied to RADIUS or LDAP account, does that mean that domain user accounts are now open over the open wireless network?
I have configured many wireless accounts, most with a default guest username/password.
Now I have a customer who would like to authenticate users this way also for limited access with home laptops, etc. But I am trying to understand possible securtity concerns.
Any aruba documentation references would be greatly appreciated.
thanks