Security

Reply
Occasional Contributor I
Posts: 8
Registered: ‎08-31-2016

Problem: Guest available to access CPPM over CN certificate

Hello folks.

 

I have a a captive portal over CPPM and a SSL certificate in order to get a HTTPS portal. The dhcp scoop is manage by the controller and it is nat to a costumer firewall for internet.

 

The problem is that the users connected in SSID guest (captive portal) are available to get CPPM page over the CN.

 

SSL certificate: CN: example.company.com

Name of server: CPPM

Dns of CPPM: internal

 

Scoop guest: over controller

Dns: google 

 

Captive portal page: example.company.com/guest/registre.php

 

If the guest put on the browser : example.company.com after get access to internet is avaible to access CPPM

 

How I can fix this big hole of security?

 

Hopping yo can help me.

 

Best regarda.

Guru Elite
Posts: 7,828
Registered: ‎09-08-2010

Re: Problem: Guest available to access CPPM over CN certificate

Use the application ACLs under the server's configuration section.  

Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
Occasional Contributor I
Posts: 8
Registered: ‎08-31-2016

Re: Problem: Guest available to access CPPM over CN certificate

It´s not working! is this acl aplication works only with the IP management? or works on the data IP too?

Search Airheads
Showing results for 
Search instead for 
Did you mean: