Security

last person joined: an hour ago 

Enterprise security using ClearPass Policy Management, ClearPass Security Exchange, IntroSpect, VIA, 360 Security Exchange, Extensions and Policy Enforcement Firewall (PEF).
Expand all | Collapse all

the 'securelogin.arubanetworks.com' certificate has expired

Jump to Best Answer
  • 1.  the 'securelogin.arubanetworks.com' certificate has expired

    Posted Jan 07, 2015 10:42 AM

     

    the 'cranmail.cranburyschool.org' certificate is my old Exchange CA. I just recenetly purchased a new wild card CA for that server. Not sure why the Exchange cert is being recognized when trying to connect to the Guest portal..???

    CA_expired01.jpg



  • 2.  RE: the 'securelogin.arubanetworks.com' certificate has expired

    Posted Jan 07, 2015 10:44 AM
    What code are you on?



    The certificates are updated in AOS code.


  • 3.  RE: the 'securelogin.arubanetworks.com' certificate has expired

    Posted Jan 07, 2015 10:50 AM

    Hi Cappalli, 6.1.3.1



  • 4.  RE: the 'securelogin.arubanetworks.com' certificate has expired

    Posted Jan 07, 2015 12:56 PM


  • 5.  RE: the 'securelogin.arubanetworks.com' certificate has expired

    Posted Jan 08, 2015 09:34 AM

    The reason that you see the securelogin.arubanetworks.com certificate instead of your site certificate is that in order to redirect to the captive portal, the controller or AP needs to intercept the secure traffic before it can do the redirect.

     

    If you were to go to http://cranmal.cranburyschool.org (without an s in http), you would probably not see the certificate warning, as intercepting unsecure HTTP traffic can be done.

     

    If you use HTTPS secure traffic in your initial request, you will always see such a warning that indicates that you are not communicating to the webmail server (but to the captive portal redirect).

     

    As HTTPS is designed to prevent interception, such warning cannot be prevented if people go to an HTTPS site before they have authenticated.

     

    And, as stated earlier, that the certificate for securelogin.arubanetworks.com shows expired can be solved by upgrading the Aruba firmware. What that will result in, is that you still see a certificate warning that the site does not match, however the red 'expired' message will disappear.

     

    Herman



  • 6.  RE: the 'securelogin.arubanetworks.com' certificate has expired
    Best Answer

    Posted Jan 20, 2015 09:27 AM

    Thanks for all the replys. I removed the old certificate and rebooted the controller and all is well.