Security

Hi, 

I would like to configure an external captiveportal for my guest Users. 

So, I configure a new SSID assigneted to a new vlan. 

My initiale role is a MySSID-guest-logon : 

user-role public-portail-guest-logon

captive-portal "Alsatis-Public-Portail"
access-list session global-sacl
access-list session hm_whitelist
access-list session logon-control
access-list session captiveportal
access-list session apprf-public-portail-guest-logon-sacl
access-list session v6-logon-control
access-list session captiveportal6

My problem is that when I use http for authentication on my captive portal webpage, it works.

But I would like to use https for authentication, but it does not work.

Thank for your help, 

Best Regard

What is the error that you are seeing? Have you replaced the default certificates?

the problem is that the post request doesn't work. I see a webpage who asks me to open the authentication web page, and this in a loop.

When I use http for authentification, I'm redirected on webpage "IPController/cgi-bin/login" and the radius request is initiated. 

I've seen this before and it was due to certificate issues (Guest browser didn't trust the certificate on the controller) so it broke the HTTPS port. Are all of the certificates on the Controller and CPPM valid and trusted? Is the CN names correct and matching any DNS records/controllers?