Wireless Access

Reply
Highlighted
Regular Contributor I

Re: How can I disable HTTP captive portal page?

WIll that block all HTTP traffic or just during the login phase? While logging in it is using Role Guest-logon but after one is authentiacted it is using guest role. 

Highlighted
Guru Elite

Re: How can I disable HTTP captive portal page?

That will block all http traffic to the controller, period.


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.5 User Guide
InstantOS 8.5 User Guide
Airheads Knowledgebase
Airheads Video Knowledge Base
Remote Access Point Solution Guide
ArubaOS Consolidated Release Notes
ArubaOS 8 ViA VPN Solution Guide
Highlighted
Aruba Employee

Re: How can I disable HTTP captive portal page?

Even if you uncheck HTTP in CP profile, users can still open HTTP page and get redirected to CP page. You should see difference in redirection URL:

 

HTTPS::

HTTPS://securelogin.arubanetworks.com/.....

 

HTTP::

HTTP://<controller-ip>.com/...

Highlighted
Regular Contributor I

Re: How can I disable HTTP captive portal page?

We don't want to block all HTTP traffic only during the captive portal page when the user is using guest-logon

Highlighted
Guru Elite

Re: How can I disable HTTP captive portal page?

Why if the default action is to redirect to https anyways?


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.5 User Guide
InstantOS 8.5 User Guide
Airheads Knowledgebase
Airheads Video Knowledge Base
Remote Access Point Solution Guide
ArubaOS Consolidated Release Notes
ArubaOS 8 ViA VPN Solution Guide
Highlighted
Regular Contributor I

Re: How can I disable HTTP captive portal page?

Yes what a user can do is simply change the HTTPS://  to HTTP:// and it works we have done a wire shark packet capture and see while we are authenticating it is sending it unencrypted. 

Highlighted
Guru Elite

Re: How can I disable HTTP captive portal page?

Why would a user do that, though?  What is the motivation?

 

The command I listed above will stop answers from port 80 to the controller, ONLY.


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.5 User Guide
InstantOS 8.5 User Guide
Airheads Knowledgebase
Airheads Video Knowledge Base
Remote Access Point Solution Guide
ArubaOS Consolidated Release Notes
ArubaOS 8 ViA VPN Solution Guide
Highlighted
Regular Contributor I

Re: How can I disable HTTP captive portal page?

The problem is if you block all HTTP traffic while a guest is on the internet they can't go to webpages that are not HTTPS we only want the authentication process to use HTTPS.

Highlighted
Guru Elite

Re: How can I disable HTTP captive portal page?

Pages from a user to the internet are NOT destined to the controller.  It will only affect traffic TO the controller on port 80.

 

 


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.5 User Guide
InstantOS 8.5 User Guide
Airheads Knowledgebase
Airheads Video Knowledge Base
Remote Access Point Solution Guide
ArubaOS Consolidated Release Notes
ArubaOS 8 ViA VPN Solution Guide
Highlighted
Regular Contributor I

Re: How can I disable HTTP captive portal page?

Somone could intercept the logon credentals if it is sent in plane text I think the security risk is very small but our IT security department wants it close. We are going to purchase clear pass by the end of the year so I'm trying to convence them to forget about this due to Clear pass should resolve the issue. 

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: