hi friends im setup to hotspot on mikrotik board. But i cant setup ssl certifica for hotspot. pls help me
i record video
Good day,
Why do you want to setup a SSL certificate on the hotspot?
using normal HTTP works fine for the ones I have setup
Https Not redirect to login page .
http not problem .
i want https redirect to my login page.
It’s true!
You can not change that
That’s not going to be possible. HTTPS has specifically been design in a way to make (among other things) this kind of redirection impossible.
PS. I’m getting tired of people constantly asking the same question here again and again. Have you even tried to search over the forum before asking it yourself?
You don’t need certificate for this. Certificate only is needed to make the login form more secure.
Redirection will work the same way. Even with http hotspot, login form should show automatically on any modern device.
Modern devices will check some predefined http sites in the background, and if they don’t see the normal content, they will pop up your login page. Apple laptops and iPhones do this, Windows laptops do this. There is no need to redirect https
Hi Normis, so there are no way to solve this using Mikrotik Hotspot?
Many of my customers use https://google.com as first web page of them smartphone and when connected at Hotspot Wifi, only show error on browser, do not open the login screen.
Thanks
If you were able to intercept https requests, so could anyone else on the internet, rendering the security useless. If your clients aren’t auto opening the login screen they must be very old devices as any modern smartphone detects captive portals and opens the browser automatically. You could consider blocking access to WAN-side https (port 443) until user has authenticated to avoid unsightly security errors, but this will just turn it into a connection error.
We tryied this but when block 443. The user connect to Hotspot Wifi, stay not showing the login screen. We really need some help here. We can pay for solve this. Anyone can help us?
This is not something that can be fixed with money. HTTPS interception is impossible without installing root certs on customer devices.
If the login screen isn’t opening when your clients connect, then either your captive portal is not intercepting the detection requests properly, or the client devices lack capability to detect hotspots.
Hello,
I have the same problem.
MacDonald’s hotspots redirect a call to https://www.google.com/ to the authentication page without certicat error messages or the like.
I read that kind of hotspot, made a call in http as soon as it saw an https. For example: the hotspot test https://www.google.com, it detects a certificate problem, then it returns to the browser of the client http://www.google.fr, and there the page of the hotspot can open .
How to implement this on Mikrotik hotspots?
This is purely a client side detection. You cannot implement anything differently, it’s entirely up to the client to detect the hotspot and redirect to the login page.
Modern versions of Chrome for desktop now detect this situation, in addition to Android doing it automatically.
I will repeat my answer, since nobody seems to have read it.
Laptops and phones automatically detect presence of hotspot in the background, and a Hotspot login popup will appear. If this does not happen, check the cause of this first. Do you have any walled garden set up? You will not even get to your https://google.com link, the popup will appear before that!