Security

Reply
Occasional Contributor II

Problem: Guest available to access CPPM over CN certificate

Hello folks.

 

I have a a captive portal over CPPM and a SSL certificate in order to get a HTTPS portal. The dhcp scoop is manage by the controller and it is nat to a costumer firewall for internet.

 

The problem is that the users connected in SSID guest (captive portal) are available to get CPPM page over the CN.

 

SSL certificate: CN: example.company.com

Name of server: CPPM

Dns of CPPM: internal

 

Scoop guest: over controller

Dns: google 

 

Captive portal page: example.company.com/guest/registre.php

 

If the guest put on the browser : example.company.com after get access to internet is avaible to access CPPM

 

How I can fix this big hole of security?

 

Hopping yo can help me.

 

Best regarda.

Guru Elite

Re: Problem: Guest available to access CPPM over CN certificate

Use the application ACLs under the server's configuration section.  

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor II

Re: Problem: Guest available to access CPPM over CN certificate

It´s not working! is this acl aplication works only with the IP management? or works on the data IP too?

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: