This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
RUCKUS Self Help |   ASK the Pack
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Hotspot service trusted certificate

philip_francis1
Contributor

‎01-24-2019 09:15 AM

Hello, I am using a Hotspot service for company users to authenticate to when they 'onboard' a new mobile BYOD device.
i.e. users connect to an initial unsecure SSID, which redirects to a third party 'onboarding' server which then auto configures a secure wifi profile on their mobile device.
The problem is that the initial connection to the Hotspot service is untrusted i.e .new user BYOD devices have no way of being pre-installed with our corporate root CA cert. This is understandable.
Therefore, I was thinking to buy a public signed cert and bind it to our corporate public IP address which would NAT through to our LAN 'onboarding' server.
My questions are:
1) is this is a good idea for ensuring that the first step of onboarding a new mobile device does not involve an untrusted URL ?
2) Can you enter a public IP address in the ZoneDirector Hotspot 'Redirect unathenticated user to' service ? 
1 REPLY 1

Ankush_Chandan
RUCKUS Team Member

‎01-24-2019 10:26 AM

Hi Philip,

Getting a one time certificate warning is expected even with the Public Signed Certificate as the CN of the certificate couldn't be the same as the initial URL(eg google.com) client is trying to visit.
You may refer to this article for details:
https://support.ruckuswireless.com/articles/000006337

To answer your second query, yes you can enter a Public IP in the Hotspot URL, provided you have a public hosted portal service.

Copyright © 2024 Khoros, LLC