Wireless Access

------------------------------
jose perez
------------------------------

It is not advisable to use a self-signed certificate for the Captive Portal as it us unlikely that the clients will trust it thus breaking the Captive Portal. InstantOS does not have the ability to generate a CSR, so you should do this 'off box'.

Once you have the Certificate from your CA, ensure it is in .pem format for it to be uploaded. You will need to include the Root & Intermediate CAs as well if using a Public Cert.

The below link, although not directly related to your task it does contain some good information.

https://community.arubanetworks.com/browse/articles/blogviewer?blogkey=153ef9a1-a573-4ccb-80cb-3edac3ce2869

------------------------------
Craig Syme
------------------------------

Original Message:
Sent: Jan 15, 2021 06:13 AM
From: jose perez
Subject: Certificate captive portal expired

Hi. We have an aruba version 6.4.0.3-4.1.0.1_45063 controller and the default certificate that came with aruba from the captive portal expired long ago. Current browsers do not allow authentication and we want to renew the certificate for free (self-signature). We have tried using openssl but we couldn't. How can we do it? This is what the aruba shows:
Thanks a lot.

------------------------------
jose perez
------------------------------

Before all, thank for your answer.
I have a doubt. We don't have our own domain and I see that in the original CN certificate it is securelogin.arubanetworks.com. We want everything to work the same as before. So, to prepare the certificate I also have to put CN = securelogin.arubanetworks.com? Thank you.

------------------------------
jose perez
------------------------------

Original Message:
Sent: Jan 15, 2021 08:22 AM
From: Craig Syme
Subject: Certificate captive portal expired

It is not advisable to use a self-signed certificate for the Captive Portal as it us unlikely that the clients will trust it thus breaking the Captive Portal. InstantOS does not have the ability to generate a CSR, so you should do this 'off box'.

Once you have the Certificate from your CA, ensure it is in .pem format for it to be uploaded. You will need to include the Root & Intermediate CAs as well if using a Public Cert.

The below link, although not directly related to your task it does contain some good information.

https://community.arubanetworks.com/browse/articles/blogviewer?blogkey=153ef9a1-a573-4ccb-80cb-3edac3ce2869

------------------------------
Craig Syme

Original Message:
Sent: Jan 15, 2021 06:13 AM
From: jose perez
Subject: Certificate captive portal expired

Hi. We have an aruba version 6.4.0.3-4.1.0.1_45063 controller and the default certificate that came with aruba from the captive portal expired long ago. Current browsers do not allow authentication and we want to renew the certificate for free (self-signature). We have tried using openssl but we couldn't. How can we do it? This is what the aruba shows:
Thanks a lot.

------------------------------
jose perez
------------------------------

Hey, 

The securelogin.arubanetworks.com is a factory cert which ships with the IAP and should be replaced. So as the link states,

The common name can be anything you want (it does not actually have to resolve to a host), but we recommend it be a user-friendly name off your domain as it is briefly displayed on an end-user's device during authentication. An example would be: network-login.yourdomain.xyz. Do not use arubanetworks.com.

------------------------------
Craig Syme
------------------------------

Original Message:
Sent: Jan 15, 2021 08:42 AM
From: jose perez
Subject: Certificate captive portal expired

Before all, thank for your answer.
I have a doubt. We don't have our own domain and I see that in the original CN certificate it is securelogin.arubanetworks.com. We want everything to work the same as before. So, to prepare the certificate I also have to put CN = securelogin.arubanetworks.com? Thank you.

------------------------------
jose perez

Original Message:
Sent: Jan 15, 2021 08:22 AM
From: Craig Syme
Subject: Certificate captive portal expired

It is not advisable to use a self-signed certificate for the Captive Portal as it us unlikely that the clients will trust it thus breaking the Captive Portal. InstantOS does not have the ability to generate a CSR, so you should do this 'off box'.

Once you have the Certificate from your CA, ensure it is in .pem format for it to be uploaded. You will need to include the Root & Intermediate CAs as well if using a Public Cert.

The below link, although not directly related to your task it does contain some good information.

https://community.arubanetworks.com/browse/articles/blogviewer?blogkey=153ef9a1-a573-4ccb-80cb-3edac3ce2869

------------------------------
Craig Syme

Original Message:
Sent: Jan 15, 2021 06:13 AM
From: jose perez
Subject: Certificate captive portal expired

Hi. We have an aruba version 6.4.0.3-4.1.0.1_45063 controller and the default certificate that came with aruba from the captive portal expired long ago. Current browsers do not allow authentication and we want to renew the certificate for free (self-signature). We have tried using openssl but we couldn't. How can we do it? This is what the aruba shows:
Thanks a lot.

------------------------------
jose perez
------------------------------

Ok.
Thanks a lot.

------------------------------
jose perez
------------------------------

Original Message:
Sent: Jan 15, 2021 08:48 AM
From: Craig Syme
Subject: Certificate captive portal expired

Hey, 

The securelogin.arubanetworks.com is a factory cert which ships with the IAP and should be replaced. So as the link states,

The common name can be anything you want (it does not actually have to resolve to a host), but we recommend it be a user-friendly name off your domain as it is briefly displayed on an end-user's device during authentication. An example would be: network-login.yourdomain.xyz. Do not use arubanetworks.com.

------------------------------
Craig Syme

Original Message:
Sent: Jan 15, 2021 08:42 AM
From: jose perez
Subject: Certificate captive portal expired

Before all, thank for your answer.
I have a doubt. We don't have our own domain and I see that in the original CN certificate it is securelogin.arubanetworks.com. We want everything to work the same as before. So, to prepare the certificate I also have to put CN = securelogin.arubanetworks.com? Thank you.

------------------------------
jose perez

Original Message:
Sent: Jan 15, 2021 08:22 AM
From: Craig Syme
Subject: Certificate captive portal expired

It is not advisable to use a self-signed certificate for the Captive Portal as it us unlikely that the clients will trust it thus breaking the Captive Portal. InstantOS does not have the ability to generate a CSR, so you should do this 'off box'.

Once you have the Certificate from your CA, ensure it is in .pem format for it to be uploaded. You will need to include the Root & Intermediate CAs as well if using a Public Cert.

The below link, although not directly related to your task it does contain some good information.

https://community.arubanetworks.com/browse/articles/blogviewer?blogkey=153ef9a1-a573-4ccb-80cb-3edac3ce2869

------------------------------
Craig Syme

Original Message:
Sent: Jan 15, 2021 06:13 AM
From: jose perez
Subject: Certificate captive portal expired

Hi. We have an aruba version 6.4.0.3-4.1.0.1_45063 controller and the default certificate that came with aruba from the captive portal expired long ago. Current browsers do not allow authentication and we want to renew the certificate for free (self-signature). We have tried using openssl but we couldn't. How can we do it? This is what the aruba shows:
Thanks a lot.

------------------------------
jose perez
------------------------------

You must acquire your own certificate.

------------------------------
Tim C
------------------------------

Original Message:
Sent: Jan 15, 2021 09:35 AM
From: jose perez
Subject: Certificate captive portal expired

Ok.
Thanks a lot.

------------------------------
jose perez

Original Message:
Sent: Jan 15, 2021 08:48 AM
From: Craig Syme
Subject: Certificate captive portal expired

Hey, 

The securelogin.arubanetworks.com is a factory cert which ships with the IAP and should be replaced. So as the link states,

The common name can be anything you want (it does not actually have to resolve to a host), but we recommend it be a user-friendly name off your domain as it is briefly displayed on an end-user's device during authentication. An example would be: network-login.yourdomain.xyz. Do not use arubanetworks.com.

------------------------------
Craig Syme

Original Message:
Sent: Jan 15, 2021 08:42 AM
From: jose perez
Subject: Certificate captive portal expired

Before all, thank for your answer.
I have a doubt. We don't have our own domain and I see that in the original CN certificate it is securelogin.arubanetworks.com. We want everything to work the same as before. So, to prepare the certificate I also have to put CN = securelogin.arubanetworks.com? Thank you.

------------------------------
jose perez

Original Message:
Sent: Jan 15, 2021 08:22 AM
From: Craig Syme
Subject: Certificate captive portal expired

It is not advisable to use a self-signed certificate for the Captive Portal as it us unlikely that the clients will trust it thus breaking the Captive Portal. InstantOS does not have the ability to generate a CSR, so you should do this 'off box'.

Once you have the Certificate from your CA, ensure it is in .pem format for it to be uploaded. You will need to include the Root & Intermediate CAs as well if using a Public Cert.

The below link, although not directly related to your task it does contain some good information.

https://community.arubanetworks.com/browse/articles/blogviewer?blogkey=153ef9a1-a573-4ccb-80cb-3edac3ce2869

------------------------------
Craig Syme

Original Message:
Sent: Jan 15, 2021 06:13 AM
From: jose perez
Subject: Certificate captive portal expired

Hi. We have an aruba version 6.4.0.3-4.1.0.1_45063 controller and the default certificate that came with aruba from the captive portal expired long ago. Current browsers do not allow authentication and we want to renew the certificate for free (self-signature). We have tried using openssl but we couldn't. How can we do it? This is what the aruba shows:
Thanks a lot.

------------------------------
jose perez
------------------------------