Aruba Guest authentication
with Wildcards
If you have a
wildcard certificate you can use it on your Aruba controllers to provide guest
access in conjunction with ClearPass. The wildcard even works if it's for a
different domain. In the steps below
I'll show you how to install a the certificate on the controller and configure
your ClearPass to work with the wildcard.
- Install wildcard on the controller
- Navigate to: Configuration > Management > Certificates
- Upload the wildcard certificate as shown
- Associate wildcard to the captive portal
- Navigate to: Configuration > Management > General
- Under "Captive Portal Certificate" "Server Certificate" select your new wildcard certificate
Note:
When clicking apply the webservices on the controller will restart, this only
takes a few seconds.
- Adjust ClearPass to work with the wildcard certificate.
- Navigate to: ClearPass Guest > Configuration > (Your Guest Page) > Edit > NAS Vendor Settings
- Modify: "*IP Address" field.
- The field may already have a value like "securelogin.arubanetworks.com"
- Replace the value with "captiveportal-login.example.org" where example.org is the wildcard domain (CN field value minus the * ) of the certificate you uploaded to the controller.
Note: Even though you have a wildcard on the controller you still need
"captiveportal-login" to precede the domain name.
- Save the config on ClearPass and controller and you're all set!!
