Security

Reply
Occasional Contributor II
Posts: 10
Registered: ‎08-15-2014

the 'securelogin.arubanetworks.com' certificate has expired

 

the 'cranmail.cranburyschool.org' certificate is my old Exchange CA. I just recenetly purchased a new wild card CA for that server. Not sure why the Exchange cert is being recognized when trying to connect to the Guest portal..???

CA_expired01.jpg

Guru Elite
Posts: 8,027
Registered: ‎09-08-2010

Re: the 'securelogin.arubanetworks.com' certificate has expired

What code are you on?



The certificates are updated in AOS code.

Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
Occasional Contributor II
Posts: 10
Registered: ‎08-15-2014

Re: the 'securelogin.arubanetworks.com' certificate has expired

Hi Cappalli, 6.1.3.1

MVP
Posts: 4,094
Registered: ‎07-20-2011

Re: the 'securelogin.arubanetworks.com' certificate has expired

Please read this:
https://arubanetworkskb.secure.force.com/pkb/articles/FAQ/Built-in-certificate-in-older-releases-of-ArubaOS-expires-on-21st-Nov-2013
Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
Aruba Employee
Posts: 390
Registered: ‎11-04-2011

Re: the 'securelogin.arubanetworks.com' certificate has expired

The reason that you see the securelogin.arubanetworks.com certificate instead of your site certificate is that in order to redirect to the captive portal, the controller or AP needs to intercept the secure traffic before it can do the redirect.

 

If you were to go to http://cranmal.cranburyschool.org (without an s in http), you would probably not see the certificate warning, as intercepting unsecure HTTP traffic can be done.

 

If you use HTTPS secure traffic in your initial request, you will always see such a warning that indicates that you are not communicating to the webmail server (but to the captive portal redirect).

 

As HTTPS is designed to prevent interception, such warning cannot be prevented if people go to an HTTPS site before they have authenticated.

 

And, as stated earlier, that the certificate for securelogin.arubanetworks.com shows expired can be solved by upgrading the Aruba firmware. What that will result in, is that you still see a certificate warning that the site does not match, however the red 'expired' message will disappear.

 

Herman

--
If you have urgent issues, please contact your Aruba partner or Aruba TAC.
Occasional Contributor II
Posts: 10
Registered: ‎08-15-2014

Re: the 'securelogin.arubanetworks.com' certificate has expired

Thanks for all the replys. I removed the old certificate and rebooted the controller and all is well.

Search Airheads
Showing results for 
Search instead for 
Did you mean: