Security

last person joined: 14 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

CPPM tips access on Data/External IP

This thread has been viewed 2 times

  • 1.  CPPM tips access on Data/External IP

    Posted Mar 26, 2013 06:09 PM

    Hi,

     

    CPPM ver: 6.0.2

    Data and Management IPs setup

    Virtual Appliance

     

    I was curious if there is anything we can do to prevent users from accessing http(s)://<DNS NAME>/tips from the Data/External Interface IP?

     

    We have two IP's setup one for Management and one for Data/External Port in different VLANs

     

    We have our DNS setup to point the Data/External IP so when a user hits the Captive Portal on the CPPM they use the correct port.

    As a guest user they can type in the browser http(s)://<DNS NAME>/tips and they are presented with the login for the CPPM.

     

    Have we misconfigured something that allows this? I would prefer if no one could hit the Management GUI from the Data/External IP.

     

    Do we have to do something inside the User Role for access to the CPPM IP via HTTP vs HTTPS? I noticed when you access /tips it redirects to HTTPS. We would have to send users to the Captive Portal via HTTP only.

     

    Thank you,

     

    Cheers



  • 2.  RE: CPPM tips access on Data/External IP

    EMPLOYEE
    Posted Apr 04, 2013 05:05 AM

    Please put a post into the Ideas portal about restricting what ip addresses can access the management portal of CPPM.



  • 3.  RE: CPPM tips access on Data/External IP

    Posted Apr 04, 2013 02:03 PM

    Hi,

     

    I submitted a post on the Ideas Portal.

    I hope I did it under the correct section.

     

    I hope I am not missing something obivous!

     

    Thank you.