Security

Reply
Occasional Contributor II

Guest login fail login reason

Is there a way to distinguish and notify the end user that is trying to connect to the guest portal (during the Pre-Auth Check) to know why the login is failing as it is shown in access tracker, missing username, wrong password etc.

For now the user get only a general "Invalid username or password" and get confusing for them.

inva.PNGinva not.PNGinva p.PNG

Highlighted
MVP Guru

Re: Guest login fail login reason

It is generic security best-practice to show a generic message if authentication fails to not give away too much information. If, for example, you would show 'Invalid Username', an attacker can find out if the username is existing first, after that try to find the password.

 

This behavior is requested by a lot of customers in their security requirements.

 

I don't think this behaviour can be configured differently for ClearPass Guest.

 

--
If you have urgent issues, please contact your Aruba partner or Aruba TAC (click for contact details).
Highlighted
Occasional Contributor II

Re: Guest login fail login reason

Thank your for your response.

Anyway since this is a guest network access with a lot of inexperienced user and with a low security profile it would be nice to give some details to them why the login is failing. The procedure of creating an account, waiting for sponsor, waiting for mail etc is somehow complicated.

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: