https://live.paloaltonetworks.com/t5/general-topics/running-captive-portal-with-no-ssl-certificate/m-p/50610#M37265 <HTML><HEAD></HEAD><BODY><P>Hi...We support Captive Portal only in encrypted mode (SSL) to protect the user credentials.&nbsp; Please submit a feature request to your local Palo Alto SE if you need Captive Portal in the clear with no encryption.</P><P></P><P>May I recommend that you consider obtaining a valid SSL certificate and apply it to the redirect host in Captive Portal.&nbsp; The valid cert will resolve the SSL warning.&nbsp; Thanks.</P></BODY></HTML> Wed, 30 May 2012 19:31:31 GMT rmonvon 2012-05-30T19:31:31Z https://live.paloaltonetworks.com/t5/general-topics/running-captive-portal-with-no-ssl-certificate/m-p/50609#M37264 <HTML><HEAD></HEAD><BODY><P>Hello</P><P></P><P>I am running Captive portal successfully with HTML/POST based authentication. However as I only have a self signed certificate this generates a warning in the users browser.</P><P></P><P>There is no requirement to encrypt the username/password submit to the portal in this implementation!</P><P></P><P>How can I run the Captive Portal without encryption on port 80?</P><P></P><P>Regards</P><P>Andreas Leknes</P></BODY></HTML> Tue, 29 May 2012 14:56:43 GMT https://live.paloaltonetworks.com/t5/general-topics/running-captive-portal-with-no-ssl-certificate/m-p/50609#M37264 u13001 2012-05-29T14:56:43Z https://live.paloaltonetworks.com/t5/general-topics/running-captive-portal-with-no-ssl-certificate/m-p/50610#M37265 <HTML><HEAD></HEAD><BODY><P>Hi...We support Captive Portal only in encrypted mode (SSL) to protect the user credentials.&nbsp; Please submit a feature request to your local Palo Alto SE if you need Captive Portal in the clear with no encryption.</P><P></P><P>May I recommend that you consider obtaining a valid SSL certificate and apply it to the redirect host in Captive Portal.&nbsp; The valid cert will resolve the SSL warning.&nbsp; Thanks.</P></BODY></HTML> Wed, 30 May 2012 19:31:31 GMT https://live.paloaltonetworks.com/t5/general-topics/running-captive-portal-with-no-ssl-certificate/m-p/50610#M37265 rmonvon 2012-05-30T19:31:31Z https://live.paloaltonetworks.com/t5/general-topics/running-captive-portal-with-no-ssl-certificate/m-p/50611#M37266 <HTML><HEAD></HEAD><BODY><P>Allright.</P><P></P><P>Can you recommend a vendor who will provide a valid certificate for a private IP address without full organizational validation?</P></BODY></HTML> Thu, 31 May 2012 07:31:44 GMT https://live.paloaltonetworks.com/t5/general-topics/running-captive-portal-with-no-ssl-certificate/m-p/50611#M37266 u13001 2012-05-31T07:31:44Z https://live.paloaltonetworks.com/t5/general-topics/running-captive-portal-with-no-ssl-certificate/m-p/50612#M37267 <HTML><HEAD></HEAD><BODY><P>could you not use digicert with a ucc and add a san name?</P></BODY></HTML> Thu, 31 May 2012 08:52:04 GMT https://live.paloaltonetworks.com/t5/general-topics/running-captive-portal-with-no-ssl-certificate/m-p/50612#M37267 d_ballam 2012-05-31T08:52:04Z https://live.paloaltonetworks.com/t5/general-topics/running-captive-portal-with-no-ssl-certificate/m-p/50613#M37268 <HTML><HEAD></HEAD><BODY><P>I believe you can purchase an SSL cert for a domain,say captive.mycompany.com.&nbsp; On your internal DNS server, have captive.mycompany.com resolve to the IP address of the redirect host. </P><P></P><P>Also if you have your own CA server, you could have the cert issue there.&nbsp; Thanks.</P></BODY></HTML> Thu, 31 May 2012 13:21:21 GMT https://live.paloaltonetworks.com/t5/general-topics/running-captive-portal-with-no-ssl-certificate/m-p/50613#M37268 rmonvon 2012-05-31T13:21:21Z