Wireless Access

Reply
Occasional Contributor II

Clearpass Web Login - Secure Login using HTTPS

Hi,

 

I have a Web Login within Clearpass Guest that works fine using 'Send cleartext passwords over HTTP'.

 

I wish to use the 'Secure login using HTTPS' but I seem to be running into problems. Please see the below for what I have configured so far following advice from other posts on this board:

 

Authentication Settings.pngWeb Login 1.pngWeb Login 2.pngL3 Captive Portal Authentication Profile.png

 

When I login into the Web Login, the Access Tracker shows an ACCEPT from the Application but nothing else after that:

Access Tracker 1.png

 

And the browser sits on the Web Login page as a blank screen.

 

When I revert everything back to HTTP I get an Application ACCEPT and a RADIUS ACCEPT:

Access Tracker 2.pngAccess Tracker 3.png

And then I am placed into the relevant Captive Portal role for Internet access.

 

Can anyone give me a nudge in the right direction please? More than happy to provide more information if required.

 

Cheers

Shaun

Re: Clearpass Web Login - Secure Login using HTTPS

What error do you get when you use HTTPS?

Get Outlook for iOS
Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
Occasional Contributor II

Re: Clearpass Web Login - Secure Login using HTTPS

Hi Victor,

 

Thanks for the reply,

 

I'm unsure by what you mean. There are no errors in the Access Tracker and on the Web Login after authentication the browser says loading and then after 60 seconds displays a blank page with the URL of the Web Login.

 

Where are you expecting to see an error so I can check for you.

 

Cheers

Shaun

Re: Clearpass Web Login - Secure Login using HTTPS

Are you authenticating via Aruba wireless controller ?
Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
Occasional Contributor II

Re: Clearpass Web Login - Secure Login using HTTPS

Yes we have two Aruba 7200s.

Re: Clearpass Web Login - Secure Login using HTTPS

You don't need to set the delay to 60 seconds (5 seconds should be good)

If you haven't yet make sure the default certificate install in your controllers is replaced with a third party certificate and that the controller is using that certificate for the captive portal authentication .

If you already that you need to match the cert name in the weblogin page.
Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
Contributor II

Re: Clearpass Web Login - Secure Login using HTTPS

If you are using a wildcard cert, on the ClearPass web login config you should use "captiveportal-login.domain.com" for the address field


#AirheadsMobile
Contributor II

Re: Clearpass Web Login - Secure Login using HTTPS

If you are using a wildcard cert, on the ClearPass web login config you should use "captiveportal-login.domain.com" for the address field


#AirheadsMobile
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: