Hi Patrick,
One certificate for the access point and another of the public captive portal?
- I believe so, you have the following Usage Types for certificates:
--Certifcate Authority
--Autentication Server
--Captive Portal (this is for the Guest Splash pages)
--Radsec
--Radsec Certificate Authority
Can we use our own public certificate / a-record in the central enviroment?
- You can, but you need to be very careful that it is chained correctly otherwise you'll get SSL errors, we've found Android devices pretty picky. (Even with the Aruba supplied default cert, we had to request an updated, properly chained one)
- You may also need to override the Common Name on the Guest Portal by doing the following:
Please set ‘’override common name’’ under Splash page settings as mentioned below:
1. From the app selector, click Guest Access. The guest access configuration and management menu options are displayed
2. Click Splash Page. The Splash Page pane is displayed
3. Select the appropriate group from the group selector. You can create splash page profiles only for the individual groups. The splash page creation function is not available if the page view is set to All Groups
4. On the Configuration tab, select for ‘’Override Command Name’’
5. Click the Override Common Name toggle switch for ‘securelogin.hpe.com’. The common name is the web page URL of the guest access portal
6. Save the changes