Security

Reply
New Contributor
Posts: 2
Registered: ‎06-03-2016

Issues regarding CPP Guest Access and IAP securelogin.arubanetworks.com revoked cert

 

Hi everyone!

 

I’m facing an issue regarding to the recent securelogin revoked certificate.

I had followed the Arubas’s recommendation and I have now a public wildcard certificate. I installed the certificate on the Virtual Controller for captive portal. On Clearpass, web login configuration, I replaced securelogin.arubanetworks.com with something.company.com –“*  Address: ” field. My cert is *.company.com.

 

Guest users associate to the SSID and then they are redirected to clearpass login form. They validate their credentials and then redirected to https://something.company.com/cgi-bin/login. Any kind of browser says:

something.company.com’s server DNS address could not be found.

DNS_PROBE_FINISHED_NXDOMAIN

 

And then no access to the network.

 

Before Aruba’s certificate revoked, doing a nslookup to securelogin.arubanetworks.com returns an address 172.31.98.1, that points do the virtual controller.

 

I’m confused… how to get guest users connected with clearpass and a public wildcard certificate? There is any cookbook? I spent several hours googling and nothing comes up.

 

Thanks and best regards,

JM

Guru Elite
Posts: 7,839
Registered: ‎09-08-2010

Re: Issues regarding CPP Guest Access and IAP securelogin.arubanetworks.com revoked cert

Did you look at the FAQ?

https://community.arubanetworks.com/t5/Controller-less-WLANs/ArubaOS-Default-Certificate-Revocation-FAQ-Instant/ta-p/275814

 


Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
Guru Elite
Posts: 19,972
Registered: ‎03-29-2007

Re: Issues regarding CPP Guest Access and IAP securelogin.arubanetworks.com revoked cert

[ Edited ]

Joao Martins wrote:

 

Hi everyone!

 

I’m facing an issue regarding to the recent securelogin revoked certificate.

I had followed the Arubas’s recommendation and I have now a public wildcard certificate. I installed the certificate on the Virtual Controller for captive portal. On Clearpass, web login configuration, I replaced securelogin.arubanetworks.com with something.company.com –“*  Address: ” field. My cert is *.company.com.

 

Guest users associate to the SSID and then they are redirected to clearpass login form. They validate their credentials and then redirected to https://something.company.com/cgi-bin/login. Any kind of browser says:

something.company.com’s server DNS address could not be found.

DNS_PROBE_FINISHED_NXDOMAIN

 

And then no access to the network.

 

Before Aruba’s certificate revoked, doing a nslookup to securelogin.arubanetworks.com returns an address 172.31.98.1, that points do the virtual controller.

 

I’m confused… how to get guest users connected with clearpass and a public wildcard certificate? There is any cookbook? I spent several hours googling and nothing comes up.

 

Thanks and best regards,

JM


tl;dr

 

Wildcard Certificates are supported starting in Instant 6.5.0.0-4.3.0.0 Early Deployment code.

Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Validated Reference Design Guides : http://community.arubanetworks.com/t5/Validated-Reference-Design/tkb-p/Aruba-VRDs
New Contributor
Posts: 2
Registered: ‎06-03-2016

Re: Issues regarding CPP Guest Access and IAP securelogin.arubanetworks.com revoked cert

Hi!

 

Thanks everubody, indeed version 6.5.0 solved the issue.

Everything working well as expected.

 

Thanks!

 

JM 

Search Airheads
Showing results for 
Search instead for 
Did you mean: