Controllerless Networks

Trying to get an external captive portal to work (Instant AP 6.4.4.3-4.2.2.0_53034). 

Tried to configure it like in https://arubapedia.arubanetworks.com/afp/index.php/External_Captive_Portal

Also tried to use the url https://securelogin.arubanetworks.com/cgi-bin/login

I would appreciate a working example of an external splash page with authentication text.

Thank you for your help

Johnny

Thank you for your quick response

The redirect is working fine but the authentication is not working.

I get no response from the VC

wlan external-captive-portal froehlich.or.at
 server froehlich.or.at
 port 443
 url "/"
 auth-text "Accept"
 https

<HTML>
<HEAD>
External Captive Portal Page <meta http-equiv="Content-Type" content="text/html; charset=GB2312"/>
</HEAD>
<BODY>
<HTML>
<form method="POST" ACTION="https://securelogin.arubanetworks.com/cgi-bin/login">
<input type="hidden" name="user" value="guest">
<input type="hidden" name="password" value="guest">
<input type="submit" name="Accept" value="authenticate">
</form>
</HTML>
</BODY>
</HTML>

wlan ssid-profile bstest
 enable
 index 1
 type guest
 essid bstest
 opmode opensystem
 max-authentication-failures 0
 auth-server InternalServer
 set-role-pre-auth preauth
 rf-band all
 captive-portal external profile froehlich.or.at
 dtim-period 1
 broadcast-filter arp
 dmo-channel-utilization-threshold 90
 local-probe-req-thresh 0
 max-clients-threshold 64

user guest ed31476c3b980e2190ff0aedfc52fe51 portal

wlan access-rule preauth
 index 6
 captive-portal external profile froehlich.or.at
 rule any any match any any any deny

a working example was posted some time ago, a search for external captive portal should turn it up i hope.

I was lucky finding the answer. I was missing a question mark at the end of my post command.

So this works:

<form method=POST action="http://securelogin.arubanetworks.com/cgi-bin/login?">

can you share  little  more  about external  portals  actually i am also working on this  ...

Did  you  designed  your  external portal  or  its a third party  software  ?

Hello Kashan,

the post comand is included in an external website done by an app designer. We are designing a guest wifi for chain of fitness gyms. normally I would like to use clearpass for this scenario, but in this case open authentication which neither Instant Aps nor clearpass can use was the option or a external captive portal hosted by the app designer was the option.

If anyone ever achieved an open authentication with clearpass I would like to hear about it.

-Johnny

johannfroelich,

When you say "Open Authentication", what do you mean?  ClearPass does support Open (just click accept), username and password or just a single passcode for authentication methods.

Hi Colin,

In this case I would require OAuth (like in https://en.wikipedia.org/wiki/OAuth).

I know that clearpass can use SAML as SSO source. But this interface is not provided by this app designer.

Thank you Johnny