OC200 use own (internal/public) X509 ceritifcates/keys for WebGUI and/or Guest portal
OC200 use own (internal/public) X509 ceritifcates/keys for WebGUI and/or Guest portal
OC200 use own (internal/public) X509 ceritifcates/keys for WebGUI and/or Guest portal
2019-04-20 20:15:55
Model: OC200
Hardware Version: V1
Firmware Version: OC200v1_un_1.1.0_20190220_rel41433

Hi TP-Link community.

 

Today I received the OC200 and configured the basic setup.

One question related to the TLS of the provided websites.

May I missed it, but I did not discover a feature to use certificates from an internal PKI for the WebGUI of the controller, and/or a use a certificate fro an public CA (e.g Lets encrypt) for the Guest portal.

 

Best way would be if CSRs can be created.

 

Is this somewhere hidden, or may planned for the next update?

 

Thanks

0
0
#1
Options
4 Replies
Re:OC200 use own (internal/public) X509 ceritifcates/keys for WebGUI and/or Guest portal
2019-04-21 01:25:03

Both OC200 and Omada Controller are all use the self-signed certificates, it wll tell us the page is unsecure when we open the page, but just ignore it and everything will be ok.

0
0
#2
Options
Re:Re:OC200 use own (internal/public) X509 ceritifcates/keys for WebGUI and/or Guest portal
2019-04-21 06:09:00

cbq wrote

Both OC200 and Omada Controller are all use the self-signed certificates, it wll tell us the page is unsecure when we open the page, but just ignore it and everything will be ok.

Hi,

 

for sure, I know.

 

During the setup shoud be a possibility to use other certificates (from public or internal PKIs), to prevent such warnings and for a proper setup.

 

Simply ignoring security warnings is not the best way to deal with the issue instead it should be configured the right way. Such Warnings are there for a reason.

Especially when it comes to a professional usage, recommending to ignore security warnings to end users is far from a good advice.

 

br

 

 

 

0
0
#3
Options
Re:Re:Re:OC200 use own (internal/public) X509 ceritifcates/keys for WebGUI and/or Guest portal
3 weeks ago - last edited 3 weeks ago

In Omada Controller running on servers you can easily add your own certificate.

 

As for OC200: it is unfortunately kind of a closed system. Maybe you want file a feature request with TP-Link support to add this functionality. Alternatively, you could set up an external portal and use your own certificates at least on the portal page.

༺ 0100 1110 0011 0010 10ཏ1 0010 0110 1010 1101༻
0
0
#4
Options
Re:Re:Re:Re:OC200 use own (internal/public) X509 ceritifcates/keys for WebGUI and/or Guest portal
3 weeks ago

Hi, thanks.

 

I've discovered your post before, thanks.

 

I've filed a request to the TP-Link support, lets see.

 

br

0
0
#5
Options