Wireless Access

Occasional Contributor II

securelogin certificate

Hopefully this is the right place to post.

for the time of me i am unable to locate securelogin(captive portal) is located so i can upload a new certificate.


we are running clearpass and Aruba central and i have gone through both and still cant find it anyone able to help 



Aruba Employee

Re: securelogin certificate



On Central, you can upload the new certificate under Organization --> Certificates



Then under your Group Config, you select this certificate for captive portal.



On ClearPass Guest Page, you change the IP address to match your certificate common name. If your certificate is a wildcard certificate, then you use the name captiveportal-login.example.com assuming you have a wild card certificate for *.example.com






Occasional Contributor II

Re: securelogin certificate

thanks for your reply.

but i have gone through that and i can confirm all i can see is default certificate.


URL for captive portal is different to what in clearpass guest reg page.


are there any other locations the certs will be uploaded?

Aruba Employee

Re: securelogin certificate



Can you please explain in details where are you facing the issue?

From high level steps,

1) User connects to WiFi and is placed in initial role, gets redirected to ClearPass Guest Portal. Here they get the certificate from ClearPass.


Are you reaching this step? If not, did you select External Captive portal profile and select your right profile?





2) Users completes the registration and presses login. ClearPass will instruct the client where to post back. This is the IP address/FQDN specified on ClearPass under the guest login page.


3) Client's device will postback to this URL (which is for the certificate hosted on the IAP / controller)


4) After that NAS will send a Radius Request to ClearPass to complete the authentication




Where is it failing?



Search Airheads
Showing results for 
Search instead for 
Did you mean: