Web Authentication on HTTP Instead of HTTPS in WLC 5700 and WS-C3650-48PD (IOS XE)

Similar Messages

• Urgent - help question on sending http instead of https

  I'm trying to dump out my http wrapper: I'm trying to set send http instead of https so I can dump the wrapper.
  currently my code does the following for https determination. i read from a configuratioin file to see if i should set https or http
  question) Do i need an else section to cover non https?
  If so, what do i need to set for http properties.
  // check if https is wanted
  // yes - send https
  String useHttps = cf.get("useHttps", "true");
  if (useHttps.equals("true")) {
  logger.debug(classMethod + "https mode=" + useHttps);
  System.setProperty(
  "java.protocol.handler.pkgs",
  "com.sun.net.ssl.internal.www.protocol");
  // make provider and/or protocol configurable?
  Security.addProvider(
  new com.sun.net.ssl.internal.ssl.Provider());
  }

  resolved - don't need help anymore on it

• Intranet Clients try to access SUP Point Over http instead of https

  Hi
  My internet clients on DMZ Network trying to access my SUP Server over http instead of https.
  So the clients are not downloading any updates, here is my ContentTransferManager log on a DMZ Client
  Persisted locations for CTM job {31F9D2B4-1289-4EB3-926F-83770BC6D294}:
   (LOCAL) net:http://wsus.ds.download.windowsupdate.com/msdownload/update/software/crup/2014/02/windows6.1-kb2929733-x64_8856fdc2cde01190e69f849eb279b4e6e0e1868a.cab
   switched to location 'http://xxx.xxx.xx/SMS_DP_SMSPKG$/a48042d8-b0e5-4246-9282-02c331ea184c
  The client is activated as PKI client in my sccm site and and everthing else is working except for SUP.
  Best regards Andreas

  Hi
  Reinstalled the MP for the Internet clients and can now the MP is now in the list of MP´s
  But when the internet clients trying to download the updates it only try from
  (LOCAL) net:http://wsus.ds.download.windowsupdate.com/msdownload/update/software/updt/2013/06/windows6.1-kb2836942-x64_b576b76c2c385f390b77f1727ecd804d9718821f.cab
  But I still got this in the LocationService log
  WSUS Path='https://xxx.xxx.xx:8531', Server='xxx.xxx.xx', Version='1037' 
  Calling back with locations for WSUS request {4166FE44-C262-4BE4-AD58-7C81A3C3E16C}
  Executing Task LSSiteRoleCycleTask
  1 internet MP errors in the last 10 minutes, threshold is 5. 
  Executing Task LSMPCommSuccessTask
  Reset internet MP error count
  Calling back with the following distribution points
  Distribution Point='net:http://wsus.ds.download.windowsupdate.com/msdownload/update/software/updt/2013/06/windows6.1-kb2836942-x64_b576b76c2c385f390b77f1727ecd804d9718821f.cab', Locality='LOCAL', DPType='WUMU', Version='0', Capabilities='<Capabilities/>',
  Signature='', ForestTrust='FALSE', 
  Calling back with locations for location request {EE7E4CFC-AAD6-4908-B30D-68F524E55166} 
  Executing Task LSSiteRoleCycleTask 
  1 internet MP errors in the last 10 minutes, threshold is 5.
  Best regards Andreas

• If my URL shows my connection as http: instead of https: am I at risk of being hacked? If so, how do I fix it?

  A friend on FB said that if my URL box doesn't show as beginning with https: (instead of http:) I am at risk of being hacked. I fixed it for FB but all my other websites are coming up as http:
  Is this really something to be concerned about?

  http://en.wikipedia.org/wiki/HTTP_Secure
  most sites is http, and all the sites when you redirect you in some payment method(paypal, greditcard etc) reverse to https for maximum secure.

• Clicking on workflow from oracle applications manager getting directed to http instead of https

  Oracle DB:11.2.0.3.0
  Oracle Apps: 12.1.3
  O/S: Sun Solaris
  Hi All,
  We are facing s strange issue -  Whenever we click on workflow from oracle applications manager, it's getting directed to http instead of https?
  Could anyone please share the fix to the above issue.
  Thanks for your time.
  Regards,

  I've noticed that lsmod | grep agp gives me this output:
  intel_agp 25436 1
  agpgart 29332 2 drm,intel_agp
  Is alright to see the intel_agp module or should I use ati_agp?
  That module is motherboard dependent or VGA dependent?
  Edit:
  dmesg | grep agp
  agpgart-intel 0000:00:00.0: Intel 865 Chipset
  agpgart-intel 0000:00:00.0: AGP aperture is 256M @ 0xe0000000
  agpgart-intel 0000:00:00.0: AGP 3.0 bridge
  agpgart-intel 0000:00:00.0: putting AGP V3 device into 4x mode
  Last edited by pazioman (2009-06-04 14:25:59)

• Controller 4402 web authentication http instead of https?

  Hello,
  Does somebody know if its possible to redirect to a http page instead of https when using web authentication? with WLC 4400 and AP 1000?
  Or how not to have the certificat message?
  thanks Gael

  Yes, I tried it. It does work, although there is a noticable time lag until the cert warning pops up. Also, the controllers, as of ver 3.2.78.x, had only 30k space for text & images thus limiting what can be displayed on the webauth page. It does allow for url redirects though, but I am not sure it can parse html or not.

• Need my custom webauth page displayed with HTTP instead of HTTPS

  I have a custom webauth page installed that I am using with web passthrough authentication on my WLC2006 in order to put up a acceptable use policy page.
  The WLC uses HTTPS to display this which causes a security certificate warning to appear if I go with the WLC's own self-signed certificate. Is there a way I can get the WLC to use plain HTTP to display this page instead so I can eliminate the warning?
  I have already tried installing a trusted 3rd party certificate on the WLC, but I have this very strange problem where mucking with the WLC's web authentication certificate in any manner causes all network activity on the WLC to break except for CDP and ARP, essentially leaving the WLC dead. Three weeks of troubleshooting with Cisco TAC has yielded no progress on that front so now I am trying to bypass the need for a security certificate altogether since I really don't need to encrypt my acceptable use policy page.

  The documentation doesn't provide very clear direction, does it?
  To download the WLC's default webauth page, browse to the controller's Security > Web Login Page. Make sure the web authentication type is Internal (Default). Hit the Preview button. Then use your browser's File > Save As... menu item to save the HTML into a file. Edit this to your liking and bundle it and any graphics images up into a TAR archive, then upload via the controller's COMMAND page.

• Using HTTP instead of HTTPS

  Hello,
  Is that possible to set web dynpro for abap to run under HTTP and not HTTPS protocol?
  Regards,
  Mauricio

  Thanks Sergio, the System Logon was something I had not studied.
  But I am wondering if I need to change all my Web Dynpro for abap applications to do not switch to HTTPS?
  I guess the answer is to set the system parameter you pointed, this would set the global definition to do not switch to HTTPS to all my applications, am I right?
  Currently my icm/HTTP/redirect_0 is set to blank.
  Something I think is strange also is that I have BSP applications running on this server also and They do not behave like the Web Dynpro for Abap applications, I mean, They do not switch to HTTPS, do you know why?
  Thanks again,
  Regards,
  Mauricio

• I can't afford to pay SSL at GoDaddy at present. My website is now http instead of https. Firefox is saying my website is unsafe. What can I do about it?

  My website is easybalconygardening.com. I painstakingly built it until it has 298 pages of gardening, provident living, and simple cooking information. It is wholesome and informative. My SSL with GoDaddy expired earlier this month. I cannot afford to renew it. Whenever I go to my website now, Firefox says that my website is unsafe, and in a box is a message to get the visitor out of there. What can be done?
  For a little history: I found myself in a situation that I have to switch my website to wix.com, and have to do it one page at a time. GoDaddy switched my version 6 Website Tonight to version 7. Unfortunately, the two versions are not compatible. I tried to switch to version 7, but because I have 298 pages, it became a really huge problem as my technical skills are insufficient. Meanwhile, because of SSL coding by GoDaddy, my Amazon and eBay ads suddenly disappeared. I have contacted both GoDaddy, Amazon, and eBay tech support. GoDaddy and eBay and Amazon tech supports said that it is GoDaddy's SSL coding. So with SSL, my Amazon and eBay ads don't show. Without SSL, Firefox says my website is unsafe. What can I do to help my situation while I am transferring my pages to wix.com? It will take me several months to transfer as I have 298 pages. I have transferred over 80 pages thus far.
  I cannot afford to pay GoDaddy their SSL charges. Right now, I have to pay them $15.98 every month to keep the builder going so that I can transfer my pages to wix.com manually, one page at a time. I also got my domain easybalconygardening.com from GoDaddy, but the domain costs are minimal.
  Help, please.

  Sorry, you have to handle those issues with GoDaddy, they control your IP address registration and probably need to reset their DNS servers for a non-secure connection = HTTP. There is nothing Mozilla can do to help you.

• Http instead of https

  Hello experts,
  In SOAManager, i have configured a service endpoint to communication security of "SSL over HTTP". But even after that the endpoint URL starts with http and not with https?
  Is there any other configuration that needs to be made apart from this?
  Regards,
  Vivek

  Figured this one out.
  Endpoint address location points to HTTPS URL even though the endpoint service URL is HTTP. (i wonder why??)
  Even this could be controlled by choosing "Show WSDL options" and by selecting the WSDL URL
  Regards,
  Vivek

• WCF service fronted with SSL enabled NGINX load balancer shows HTTP based WSDL url instead of HTTPS

  Hi,
  I have WCF service hosted using IIS 8.5 on application server. And application servers are fronted with NGINX load balancer with SSL enabled. Backend communication protocol between NGINX to application server is http. 
  When customer visits public domain url (https://xxx.com/service.svc), they can see the WSDL url with http://xxx.com/service.svc?wsdl. 
  What change should I make so that WSDL url will have https instead of http ? 
  This is service side configuration.
  <system.serviceModel>
      <services>
        <service name="Service.IService">
          <endpoint address="" binding="basicHttpBinding" bindingNamespace="http://xyz.com/Service" name="Service_Endpoint" contract="Service.IService" />
        </service>
      </services>
      <bindings>
        <basicHttpBinding />
      </bindings>
      <client />
      <behaviors>
        <serviceBehaviors>
          <behavior>
            <serviceThrottling maxConcurrentCalls="5000" maxConcurrentInstances="2147483647" maxConcurrentSessions="5000" />
            <serviceMetadata httpGetEnabled="true" />
            <serviceDebug includeExceptionDetailInFaults="true" />
          </behavior>
        </serviceBehaviors>
      </behaviors>
      <serviceHostingEnvironment multipleSiteBindingsEnabled="true" />
    </system.serviceModel>
  Thanks in advance !!

  Hi,
  For this scenario, you could just enable SSL in IIS to get HTTPS endpoints. If your service is exposed at https then you configure the same using “httpsGetEnabled”:
  <behaviors>
  <serviceBehaviors>
  <behavior
  name="MyServiceTypeBehaviors"
  >
  <serviceMetadata
  httpGetEnabled="true"
  />
       </behavior>
  </serviceBehaviors>
  </behaviors>
  For more information, you could refer to:
  http://www.codeproject.com/Articles/327260/What-s-new-in-WCF-Automatic-HTTPS-endpoint-for
  http://blogs.msdn.com/b/brajens/archive/2007/04/26/accessing-description-metadata-wsdl-of-wcf-web-service.aspx
  Regards

• How to enable SSL in order to access web appln. deployed in CE using https?

  Hi,
  I am new to Netweaver and this forum. Not sure if I am posting my question in right forum category. Please let me know otherwise.
  Question -
  I would like to know how to enable SSL in order to access the deployed web application in Netweaver environment using https instead of http.
  System Info:
  Netweaver 7.1
  Database: SAP DB (KERNEL    7.7.04   BUILD 021-123-186-883)
  OS: Linux (amd64) 2.6.18-194.el5
  Note: I have general idea about how to enable SSL in a non-SAP application server like tomcat using valid certificate (like enabling SSL in tomcat and adding certificate to server & Java keystore). But since I am new to Netweaver, not sure how to enable the same in Netweaver environment.
  Any help would be much appreciated.
  Thanks
  Edited by: Gopi.j on Oct 15, 2010 8:04 PM

  hi
  check the following sap help.
  http://help.sap.com/saphelp_nwce71core/helpdata/en/f1/2de3be0382df45a398d3f9fb86a36a/frameset.htm
  Best regards,
  John

• When accessed from Firewall, the OSB WSDL is inserting schemalocation with HTTP port instead of HTTPS

  We have OSB service and we are able to access over firewall. Also the WSDL, Schemas etc., But when we external users access the WSDL, they are not able to get complete content i.e schemas are not imported.
  Reason is WSDL has http (<import schemaLocation="http://test.com:80/xxxxxx/Proxy/schema") with port no 80 instead of https (<import schemaLocation="https://test.com/xxxxxx/Proxy/schema") .
  Since we don't specify the complete schema location in WSDL, how does WSDL include the complete schema path? And how to change it https path instead of http?

  Namaste,
  Sorry for the delayed response.
  Yet, my one query is not answered.
  Q:Are you ABLE to get the Desired path in Endpoint URL(https) as well?
  Explanation:
  What I mean is, When the external users access the WSDL (I am assuming External Users are able to access WSDL through Firewall),
  As you have mentioned that XSD imports have HTTP instead of HTTPS, but how about the soap:address location? Even this points to HTTP instead of HTTPS?
  (Ex:
  <wsdl:service name="CaduceusSiteService">
      <wsdl:port name="site_pt" binding="tns:site_pttBinding">
          <soap:address location="https://www.test.com/test123"/>    ---> is this HTTP or HTTPS?
      </wsdl:port>
  </wsdl:service>
  BTW, did you set, HTTP Transport Configuration --> HTTPS required parameter to "YES"? (This is a prerequisite).
  We had a similar issue, where we had HTTP instead of HTTPS when WSDL accessed from Firewall.
  However, after lot of struggle, we got it worked after changing Firewall (MS TMG) settings to support for "text/xml".
  I think, it could be the same settings needed to done in your case too. Please do check the firewall settings.
  Thanks,
  Nagaraj Ganapa

• WiSM and GUEST web authentication

  I have a WiSM and we use Cisco open web
  authentication with a user email address.
  When performing  this command via CLI:
  >config network secureweb disable
  >save config
  > reset system
  Will this make the web authentication come up HTTP instead of HTTPS ?

  That command is in order that you manage the unit.
  However there used to be a workaround that when you disable HTTPS and SSH and you reboot the WLC the web authentication will be showed as http and no https.
  Let me know if it works for you

• How to create a Web Authentication Meathod using Server 2008 r2 ?

  HI, i am a NewBee in Server Managment. am using windows server 2008 R2 Enterprise Edition, with 2 NiC One is Connected to modem other one connected to Lan , using ICS for internet . i have 80 client computers , all clients have access to unlimited internet,
  i want to control them without 3rd part application, or  Create a Web authentication username and Password for users , is there any possible way to create a web authentication server in server 2008 r2 ? plz give me a proper guideline.....

  Hi,
  According to your description, my understanding is that you want to configure web authentication that allow the client to connect to Internet by password and user name.
  I am afraid that no function within Windows Server 2008 R2 may fulfill your requirement. 
  For better control of your clients, I would recommend you to configure the Windows Server 2008 R2 as an RRAS (dial-up) router(use NAT to assign private IP address for the internal network), and connect to the clients with intermediate device, such as hub,
  switch. Cooperate with NPS to provide authentication for network connection.
  3rd party software/device should be needed for configuring web authentication. Here is a deployment scenario just for your reference:
  Web Authentication Using LDAP on Wireless LAN Controllers (WLCs) Configuration Example
  http://www.cisco.com/c/en/us/support/docs/wireless/4400-series-wireless-lan-controllers/108008-ldap-web-auth-wlc.html
  Please Note: Since the web site is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.
  Best Regards,           
  Eve Wang