Wireless Access

last person joined: 21 hours ago 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

how to remove the Controller IP in the captive portal address bar without using secured connection?

This thread has been viewed 3 times

  • 1.  how to remove the Controller IP in the captive portal address bar without using secured connection?

    Posted May 22, 2017 10:19 PM

    Hi,

     

    We are mcurrently having a problem in installation in our site.

    When a laptop connects to the wireless network and the captive portal comes up it displays the controller's IP address which is not safe for a public network.

     

    What do we need to do to solve this issue without using HTTPS:// ? 

    When we use the https:// option this problem shows up

    not all clients in the site are techy, so if someone sees this problem appearing they are complaining of a network problem.

     

    As per the end user they are not going to purchase any certificate for this wireless network.

     

    BR,

    Carlo



  • 2.  RE: how to remove the Controller IP in the captive portal address bar without using secured connection?
    Best Answer

    EMPLOYEE
    Posted May 22, 2017 10:30 PM

    Solution:

     

     - Make sure the controller has an ip address on the guest VLAN

    - Change it so that the controller redirects to that ip address, instead:

     

    config t

    ip cp-redirect-address <ip address of controller on guest vlan>

     



  • 3.  RE: how to remove the Controller IP in the captive portal address bar without using secured connection?

    EMPLOYEE
    Posted May 22, 2017 10:31 PM

    Somehow I cannot see your pictures.  Can you post them again?



  • 4.  RE: how to remove the Controller IP in the captive portal address bar without using secured connection?

    Posted May 22, 2017 10:55 PM

    This is the first image of the captive portal:

     

     

    Here is the image were the end point is using a secured connection:

     

     

    Thank you Colin for replying to my inquiry. Notify me if you are not yet able to see the images uploaded.

     

    BR,

    Carlo



  • 5.  RE: how to remove the Controller IP in the captive portal address bar without using secured connection?

    Posted May 22, 2017 11:22 PM
    Hi Colin,

    Could we use an internal DNS instead of an ip in the guest vlan? How could we do it?

    Br,
    Carlo

    Sent from Outlook on Android


  • 6.  RE: how to remove the Controller IP in the captive portal address bar without using secured connection?

    EMPLOYEE
    Posted May 23, 2017 05:40 AM

    By default, the "securelogin.arubanetworks.com" will automatically resolve to the captive portal ip address.  Here is how it works:

     

    - The default captive portal certificate is "securelogin.arubanetworks.com"

    - Any user that opens a captive portal will ask for "securelogin.arubanetworks.com" and the controller will intercept the DNS query and return the ip address of the captive portal.

    - by default, the ip address of the captive portal is the controller's management ip address.  Optionally, you can change that to any ip address on a VLAN on the controller by using the ip cp-redirect-address.

    - Using the default procedure, no ip address should appear in the browser's address bar...