A company has an HP MSM solution that consists of an HP MSM Controller and controlled HP
MSM APs. The solution includes an access VSC, which enforces HTML-based user login (WebAuth) using the controller’s internal login pages. The network administrator knows that many users
who will connect to the VSC clients configured for Web proxy to a server that operates on port
8080.
Which steps can the network administrator take to help clients log in and use the network? (Select

two)

A.
Enable redirection to the public access interface through HTTP rather than HTTPS.

B.
Enable DNS interception.

C.
Enable the HTTP/HTTPS proxy supports feature.

D.
Create Mac address public access across attributes for the clients with the proxy settings.

E.
Change the port used for HTTP on the controller’s public access interface.

Explanation:

Student Guide Book 2 – Implementing and Troubleshooting HP Wireless Networks – Page 5-31
Enable HTTP/HTTPS proxy support
In a BYOD environment, client browsers might be configured to send HTTP and
HTTPS requests to a proxy server at a different port from the standard 80 or 443. Atthe default
settings, as you saw on the previous slide, the controller only redirectstraffic directed to the
standard HTTP or HTTPS ports. Therefore, the controller wouldsimply drop the traffic, and the
user could not log in.
The guests probably would not understand what the problem is. And many users withproxy
settings received those settings from a domain policy and do not know how tochange them. You
can help these users by selecting the HTTP/HTTPS proxy setting inthe Controller >> Public
access > Access control window.
The MSM Controller then attempts to redirect any TCP traffic. Thus when the clientattempts to
send HTTP or HTTPS requests on a different port, the browser still receivesthe redirect.
The controller does make a few exceptions. It cannot redirect traffic directed to some
TCP ports because it uses those ports for other purposes. Therefore, the solution failsif the client
uses any of these ports for the proxy server:
-21
-23
-25
-110
-443
-8080
-8090
If you have control over the client proxy server settings, have the proxy server use adifferent port.
Otherwise, simply be aware of the limitation. For the final two ports,you could make the redirect
work if you change the ports used by the MSMController’s internal login pages, which are, by
default, 8080 for HTTP and 8090 forHTTPS. (The setting is in the Controller >> Public access >

Web server window.) Inthat case, of course, the new ports that you specify could not be used by
the proxyserver.
The controller can continue to support traffic from the client after the user logs in.