Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Captive portal

This thread has been viewed 7 times

  • 1.  Captive portal

    Posted Aug 26, 2017 06:40 AM

    Hy, I am trying to deploy the aruba central cloud guest to social login with facebook in my company, however a certificate error message is displayed.My clients are having difficulty accessing the network because an invalid certificate message is displayed. How to disable HTTPS on captive portal?

    I am using an IAP 225 with central aruba and guest token



  • 2.  RE: Captive portal

    MVP EXPERT
    Posted Aug 27, 2017 04:44 AM

    What is the invalid certificate error you are seeing? My concern is that if you disable https then essentially any Facebook credentials to the external Captive Portal are surely unencrypted?



  • 3.  RE: Captive portal

    EMPLOYEE
    Posted Aug 28, 2017 12:55 AM

    Hi Dan,

     

    Can you describe, where you see the invalid error message? 

     

    Normally, you will always see this message, when you redirect to a captive portal. The reason for this is that the browser is trying to connect to something like "https://www.google.com" and is expecting a certificate from www.google.com. But due to the redirect, it is getting a certificate for e.g. securenetworks.arubanetworks.com. This mismatch creates the invalid certificate message. There is no way to avoid this. 

    You can only get around this, by not using a HTTPS enabled page for the first place like "http://www.google.com". but this heavily depends on the default settings of your client machines. 

    Disabling HTTPS on the captive portal page itself will also solve it, but I would never recommend doing so. This will make the credentials visible to anyone within the range of your WLAN.