Wireless Access

Reply
Occasional Contributor II
Posts: 18
Registered: ‎01-06-2015

Guest is able to list other user before authentication

Hi,

I have a Guest Wifi where people can get a list from other users on the Guest SSID using the "Fing" App on Android or Apple, even if they are just connected to the SSID but not authenticated.

The Guest logon-Role only allows DHCP and DNS, and forces all other traffic to be redirected to the captive Portal.

The "Deny Inter-User Traffic" is enabled on both logon-role (before the authentication) and guest Role (after a successful Guest authentication). I tried to activate the "Deny Inter-User Bridging" in the Stateful Firewall Options, but this blocks the whole Guest WLAN.

Did someone already have a similar case?

 

Thank you for your feedback,

Kind regards,

Nicolas.

Guru Elite
Posts: 8,770
Registered: ‎09-08-2010

Re: Guest is able to list other user before authentication

Is drop broadcast/multicast enabled in the VAP?

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor II
Posts: 18
Registered: ‎01-06-2015

Re: Guest is able to list other user before authentication

Hi Tim,

 

No it wasn't. I will inform my client to test it and let you know asap

 

Thanks.

MVP
Posts: 1,414
Registered: ‎11-30-2011

Re: Guest is able to list other user before authentication

had it happen in a master / local scenario, but not seeing what you are using.

Search Airheads
Showing results for 
Search instead for 
Did you mean: