Security

Reply

certificate warning clearpass using http

Hello i want to use the captive portal but i dont want to  get the certificate warning, ill use http, and i know it goes on cleartext the password and user.

 

Anyways I have set it up that on clearpass on the selftregistration  on

Secure Login im putting send clearpass password cleartext http

 

on the controller on the captive portal authentication i put the checkbox i put the check on it also on the  login page i put http instead of https for the url

 

and when i use the captive portal im getting redirected but i get the certificate warning

 

Also i tried this

http://community.arubanetworks.com/t5/Technology-Blog/Captive-Portal-why-do-I-get-those-certificate-warnings/ba-p/268921

 

and i tried deleting the https rule that redirect but when i do that when iuse the captive portal i get stuck when i try to use a https page like google to po up the captive portal... if i use a page that use http then its okay it works but users will try to use google or something like that so this does not work for me...

I also see that the someone posted a mesage in that tread that noone asnwer to seems to be the same problem

TIM, someone!  help? :(

 

Cheers

Carlos

----------------------------------------------------
Product Manager - Aruba Networks
Alternetworks Corp
Aruba Employee

Re: certificate warning clearpass using http

Hi Carlos,

 

In Home » Configuration » Authentication page, uncheck the security box.

 

Security:

Require HTTPS for guest access
If checked, HTTP access by guests will be redirected to use HTTPS instead.

Regards,

Pavan

If my post addrresses your query, give kudos:)

Re: certificate warning clearpass using http

i still get the certificate error....

----------------------------------------------------
Product Manager - Aruba Networks
Alternetworks Corp
Guru Elite

Re: certificate warning clearpass using http

Are you getting a certificate error when you go to a non-secured site like ebay.com?

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480

Re: certificate warning clearpass using http

its when i got to a secure page for example google.com

 

----------------------------------------------------
Product Manager - Aruba Networks
Alternetworks Corp

Re: certificate warning clearpass using http

On clearpass this is also unchecked

Require HTTPS for guest access under Authentication Settings

----------------------------------------------------
Product Manager - Aruba Networks
Alternetworks Corp
Guru Elite

Re: certificate warning clearpass using http

The only way to prevent that would be to remove HTTPS redirection in your user-role.

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480

Re: certificate warning clearpass using http

If you mean deleting this rule

IPv4 user any svc-https dst-nat 8081 Low

I already did it and when i do that the https pages wont open...

 

Cheers

Carlos

----------------------------------------------------
Product Manager - Aruba Networks
Alternetworks Corp
Guru Elite

Re: certificate warning clearpass using http

That’s correct. There is no way to avoid certificate warnings when navigating to an HTTPS page. That’s the whole point of the certificate warning in the first place.

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480

Re: certificate warning clearpass using http

That works if the captive portal is the controller....

It doesnt work if the captive portal is the clearpass...

 

So there is no way to do this with the clearpass? even using http only?

It just that i find odd that you can do it with controller but not with clearpass..

----------------------------------------------------
Product Manager - Aruba Networks
Alternetworks Corp
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: