Wireless Access

 View Only
last person joined: 13 hours ago 

Access network design for branch, remote, outdoor and campus locations with Aruba access points, and mobility controllers.
Expand all | Collapse all

Apple iOS devices not open Captive Portal Login Page automatically

This thread has been viewed 11 times
  • 1.  Apple iOS devices not open Captive Portal Login Page automatically

    Posted 26 days ago
    Hi Guys!

    We would like to implement a guest Captive Portal solution with UAP policy. (with internal custom login page)

    I made configurations based on User Guide, solutions works fine on Windows and Android devices (Login Page automatically opens or device alerts user to tap to open page). Apple devices can connect also, but no alert displayed to open Login Page. If a user opens a Safari browser and try to go to any webpage, it redirected to Login Page, but we need this to work automatically.

    I made a second guest WLAN with absolute same settings, but default template Captive Portal Login Page was used. If an Apple device connects to the second SSID, Aruba login page is opened automatically.

    Based on this experience, I suspect that there might be a problem with the html code of the custom page?


    Some outputs:

    (wlc01) [mynode] #show aaa authentication captive-portal aguest_cppm_prof
    Captive Portal Authentication Profile "aguest_cppm_prof"
    Parameter                                          Value
    ---------                                          -----
    Default Role                                       guest
    Default Guest Role                                 guest
    Server Group                                       default
    Redirect Pause                                     10 sec
    User Login                                         Disabled
    Guest Login                                        Disabled
    Logout popup window                                Disabled
    Use HTTP for authentication                        Disabled
    Logon wait minimum wait                            5 sec
    Logon wait maximum wait                            10 sec
    logon wait CPU utilization threshold               60 %
    Max Authentication failures                        0
    Show FQDN                                          Disabled
    Authentication Protocol                            PAP
    Login page                                         /upload/custom/aguest_cppm_prof/aguest.html
    Welcome page                                       /auth/welcome.html
    Show Welcome Page                                  No
    Add switch IP address in the redirection URL       Disabled
    Adding user vlan in redirection URL                Disabled
    Adding AP's MAC address in redirection URL         Disabled
    Add a controller interface in the redirection URL  N/A
    Allow only one active user session                 Disabled
    White List                                         N/A
    Black List                                         N/A
    Show the acceptable use policy page                Enabled
    User idle timeout                                  N/A
    Redirect URL                                       https://company.com
    Bypass Apple Captive Network Assistant             Disabled
    URL Hash Key                                       N/A
    (wlc01) [mynode] #

    (wlc01) [mynode] #show references aaa authentication captive-portal aguest_cppm_prof
    References to Captive Portal Authentication Profile "aguest_cppm_prof"
    Referrer                                           Count
    --------                                           -----
    /sc:user-role "aguest-guest-logon" captive-portal  1
    (wlc01) [mynode] #


  • 2.  RE: Apple iOS devices not open Captive Portal Login Page automatically

    Posted 25 days ago
    In my experience this may happen if you didn't put in a proper trusted HTTPS certificate for your captive portal.

    Apple appears to prevent the popup if the captive portal certificate is not trusted.

    Herman Robers
    If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

    In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.