Security

Dears,

1)I have created weblogin page in CP Guest. (Registerpage: https://192.168.1.3/guest/arubalogin.php)

Conf below1

2

3

4

5

6

2)then I created a service in CP with simple allow access policy. with authentication set to guest user repositary.

12

Then Created an SSID with following config in wizard.

SSID Name: guestP-T

Forwarding Mode: tunnel

Radio Type:All

Broadcast SSID: Yes

Vlan: 10 (192.168.1.0/24)

Internal/Guest: Guest

Auth... and Encr...:  Captive Portal with Auth. via credentials (Username& Password) provided by user

Captive portal: Enabled

Authentication server: (External)192.168.1.3

Role Assi...: Pre-auth Role: guestP-T-guest-logon

                     Authenticated Role: Guest

Finish.

4)Under Configuration- Authentication- L3 Authentication-Captive Portal Authentication-guestP-T-cp_prof

edited login page to: https://192.168.1.3/guest/arubalogin.php

apply and save conf.

Now when i connect to this SSID and try to browse to 1.1.2.3 (Any IP)

I am not getting redirected to login page.

But when i enter "https://192.168.1.3/guest/arubalogin.php" Manually, things run fine.

Please help to figureout the issue.

1) Why are you using an IP address instead of an FQDN? ClearPass should only be accessed via FQDN

2) Does your controller have an IP address in the client subnet?