Controller does not respond to DNS query for "securelogin.arubanetworks.com" for captive portal

MVP
MVP
Q:

Controller does not respond to DNS query for  "securelogin.arubanetworks.com"  for clients connected to  captive portal  SSID.



A:

The network is configured for external captive portal.  We are using default certificate on the controller.

So, the credentials are posted to the CN of certificate which is "securelogin.arubanetworks.com".

Customer reported that after entering the credentials on captive portal page, the connection was timing out with the following reason :

 

 

 

The packet capture showed the following :

Controller is not responding to the DNS request for "securelogin.arubanetworks.com". So DNS response comes from the actual server which says "No Such name".

Ideally, controller should have hijacked this DNS query & responded on behalf of DNS server.

 

The issue was due to the following misconfiguration :

 

(Aruba) (config) #show running-config | include "ip cp"
Building Configuration...
ip cp-redirect-address disable

In this case, cp-redirect-address was disabled which would disable automatic DNS resolution for captive portal. 

Once it was enabled, controller started responding to the DNS query for "securelogin.arubanetworks.com"

 

Version history
Revision #:
2 of 2
Last update:
‎11-06-2018 03:35 PM
Updated by:
 
Labels (1)
Contributors
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: