Good morning,
I've successfully set up a captive portal with an authentication profile, but I have run into a snag.
I have a CA certificate from GoDaddy which is a wildcard, and I've used it for numerous other deployments (Jira/Confluence/Bitbucket/Mattermost) with no issues. I used KeyStore Explorer to extract the pub/priv keys and generate a p12 file for the firewall. I then set the firewall to "firewall.myurl.com" so that it matches the wildcard (no more security notice, yay!).
My firewall is at 10.1.128.2, and I used a DNS A entry to create an FQDN. I set the captive portal redirect to 10.1.128.2 since it is my DNS proxy, though my switch handles DHCP.
Okta is asking for an ACS URL, but I'm not sure how to configure this. It simply says "enter your [base_url]" (base_url:6082) but I've tried my firewall IP and FQDN to no avail.
I'm not a network engineer, I'm just a software architect that was thrust into this, but I'd love some feedback on how I messed this up.
No comments:
Post a Comment