Security

last person joined: 16 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Login loop

This thread has been viewed 0 times

  • 1.  Login loop

    Posted Jan 25, 2012 07:11 PM

    Seems that everything is working fine:

     

    1- I get redirected to the login page

    2- I login in  - I see account being authenticated in Amigopod and I see account authenticated with role applied on controller

    3- Welcome page comes up

    4- I click on continue browsing the web

    5- I get redirected back to login page

     

    AOS - 6.1.1.0

    Amigopod - 3.7.3

     

    Thanks



  • 2.  RE: Login loop

    Posted Jan 25, 2012 07:38 PM

    Did you get a chance to look at the config guide we published on integrating the two products? http://www.arubanetworks.com/vrd. There is the doc and an example file for you to use.

     

    -awl

     

     



  • 3.  RE: Login loop

    Posted Jan 25, 2012 10:23 PM

    Just to confirm, when you get to the welcome page, is the correct post-login role shown?

    That post-login role ma not be configured correctly (incorrect firewall policies + captive portal enabled).

     

    Take a look at the guide Andy referenced. 

    If you still have any issues, feel free to share some excerpts from your config (captive portal, pre-login and post-login roles)>

     

     

     



  • 4.  RE: Login loop

    Posted Jan 25, 2012 11:36 PM

    It sounds like you might be using the sample welcome page from the VRD document.

     

    If that is the case the 'Continue browsing' link is designed to open up a new browser window and direct it to your originally request URL when you first started the web session. Typically this will be your homepage of something similar.

     

    If you look closely at the first page on Amigopod that you are redirected to as part of the association process with the Aruba controller you will see some additional parameters listed in the URL bar. An example is shown below

     

    http://<ip-address>/Aruba_Login.php?cmd=login&switchip=172.16.0.254&mac=c8:bc:c8:d4:ae:2b&ip=172.16.0.247&essid=guestnet-X&apname=Cam_AP105&apgroup=MDAC-Training&url=http%3A%2F%2Fwww%2Egoogle%2Ecom%2F

     

    What you will notice is the controller has captured the original URL requested when you first initiated a web request (in this case http://www.google.com) and stores this for later use in a url parameter.

     

    It is this address that the sample welcome page is attempting to redirect you to when clicking on the Continue Browsing link.



  • 5.  RE: Login loop

    Posted Jan 31, 2012 06:51 AM

    Got it working..and again my lab controller config bit me in the a$$ again.  I had the initial and post auth roles all screwed up and also the role on Amigopod didn't match the post auth role.

     

    Amigopod is just awesome, testing all kinds of config and features right now.  Great product

     

    Thanks!



  • 6.  RE: Login loop

    Posted Feb 01, 2012 02:33 PM

    Thanks for the great feedback on Amigopod - we love it too!!