Security

 View Only
  • 1.  Custom login form

    Posted Dec 02, 2024 10:07 PM

    Dear Experts, 

    I am using custom login form in the login page of the self registration. I saw that the action should be  action="/auth/index.html/u". However in my case its not posting to the controller but reverts back to CPPM main page. I am not sure how it works or what am i missing? is this the right action to be taken when submit button is clicked?



  • 2.  RE: Custom login form

    Posted Dec 05, 2024 04:07 PM

    I would compare the HTML with a unmodified login page. The action should probably include the reference to your controller, not just /auth which is local on the web server (which is ClearPass). You may have found that URL in references for the internal captive portal for the controller, in which case you can use a relative url.

    Try to change to something like: 'action="https://captiveportal.yourcompany.com/auth/index.html"' change the hostname to what is the hostname/fqdn for the certificate installed on your controller for captive portal.

    Personally I find it always useful to use the network trace in the developer tools of your browser and follow the steps in the guest workflow. That probably would have exposed this, that the request was going to ClearPass instead of to the controller.



    ------------------------------
    Herman Robers
    ------------------------
    If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact Aruba TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks.

    In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
    ------------------------------



  • 3.  RE: Custom login form

    Posted Dec 06, 2024 05:41 AM

    Dear Herman, 

    I have made another post, with the same title, can you help to provide your expert feedback there, it will help me write a custom login form and could really use your help



    ------------------------------
    iqbal
    ------------------------------



  • 4.  RE: Custom login form

    Posted Dec 06, 2024 12:10 PM

    I'm using a custom login form hosted on a web-server (not on CPPM).  I found I had to have the form action go to the Mobility Conductors (we're running 8.10 and 8.12).  I had to direct to form to one of the two conductors we have - the VIP (L2 redundancy) didn't work and I haven't had chance to look into why.

    Form action is

    "https://<mobility conductor>/cgi-bin/login"



  • 5.  RE: Custom login form

    Posted Dec 10, 2024 02:38 AM

    Thanks Alan



    ------------------------------
    iqbal
    ------------------------------



  • 6.  RE: Custom login form

    Posted Dec 10, 2024 10:30 AM

    The POST to the controller (not conductor) must go to the controller that the client is currently utilizing as the UAC.  That's usually accomplished by pointing at the FQDN used in the certificate that has been specified for captive portal functions on the controller.



    ------------------------------
    Carson Hulcher, ACEX#110
    ------------------------------