Controllerless Networks

Reply
Contributor II

IAP 205, wildcard certificate for replace securelogin.arubanetworks.com

Hi,

 

Can I use wildcard certificate for replace default certificate for captive portal (securelogin.arubanetworks.com) on IAP running relase 6.5.0.0-4.3.0.0?

 

And if it is possible, what is the procedure?

 

Regards,

 

EF

Guru Elite

Re: IAP 205, wildcard certificate for replace securelogin.arubanetworks.com

Take a look here: https://community.arubanetworks.com/t5/Controller-less-WLANs/ArubaOS-Default-Certificate-Revocation-FAQ-Instant/ta-p/275814

| Tim Cappalli | Aruba Security | @timcappalli | timcappalli.me |

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.
Occasional Contributor I

Re: IAP 205, wildcard certificate for replace securelogin.arubanetworks.com

-resolved-

Highlighted
Contributor II

Re: IAP 205, wildcard certificate for replace securelogin.arubanetworks.com

I followed these steps and works for me.

 

Previous you need:

 

  • Wildcard certificate. Ex.: cert.crt
  • Private key of wildcard certificate. Ex.: certkey.key
  • Bundle certificate with root and intermediate certificates of CA. Ex.: bundle.crt
  • Openssl

 

1.- Make copy of wildcard (you will need)

 

Ex.: cert-copy.crt

 

2.- Make bundle with wildcard and bundle.

 

cat bundle.crt >> cert.crt

 

3.- Make a pkcs12 certificate

 

openssl pkcs12 –export –out certpkcs12.pfx –inkey certkey.key –in cert.crt –certfile cert-copy.crt

 

YOU WILL BE ASKED TO SET A PASSWORD, DON´T FORGET IT

 

4.- convert to pem format

 

Openssl pkcs12 –in certpkcs12.pfx –out certpem.pem –nodes

 

YOU WILL BE ASKED TO ENTER THE PASSWORD

 

5.- Load certificate in the virtual controller

 1.jpg

6.- Reload virtual controller.

 

7.- Try to login and you will see that the name of the portal is “captiveportal-login.mycompany.com”

 2.jpg

 

 

IF YOU ARE USING CLEARPASS WEB LOGIN PORTAL, YOU MUST CHANGE THIS PARAMETER INSIDE YOUR LOGIN PAGE

 3.jpg

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: