Security

last person joined: 19 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Problem: Guest available to access CPPM over CN certificate

This thread has been viewed 1 times

  • 1.  Problem: Guest available to access CPPM over CN certificate

    EMPLOYEE
    Posted Oct 21, 2016 11:37 AM

    Hello folks.

     

    I have a a captive portal over CPPM and a SSL certificate in order to get a HTTPS portal. The dhcp scoop is manage by the controller and it is nat to a costumer firewall for internet.

     

    The problem is that the users connected in SSID guest (captive portal) are available to get CPPM page over the CN.

     

    SSL certificate: CN: example.company.com

    Name of server: CPPM

    Dns of CPPM: internal

     

    Scoop guest: over controller

    Dns: google 

     

    Captive portal page: example.company.com/guest/registre.php

     

    If the guest put on the browser : example.company.com after get access to internet is avaible to access CPPM

     

    How I can fix this big hole of security?

     

    Hopping yo can help me.

     

    Best regarda.



  • 2.  RE: Problem: Guest available to access CPPM over CN certificate

    EMPLOYEE
    Posted Oct 21, 2016 02:36 PM
    Use the application ACLs under the server's configuration section.  


  • 3.  RE: Problem: Guest available to access CPPM over CN certificate

    EMPLOYEE
    Posted Nov 02, 2016 10:40 AM

    It´s not working! is this acl aplication works only with the IP management? or works on the data IP too?