65 thoughts on “Don’t enable HTTPS login on the ASUS RT-N66U (& how to fix it if you have)”

  1. I switched it to https on an RT-n65U. I was able to re-access the router via https://192.168.1.1:8443 I was able to do everything as before but I could not set it back to http as you’ve indicated. I finally restore factory defaults to get my http access back.

    Liked by 1 person

      1. I have the Asus AC88U and under the “Administration” on the menu and “System” tab – the router displays the URL, allows you to change the port, and set a timer.

        Like

  2. I was able to reconnect by erasing all stored data from the 192.168.X.X address from my web browser. Perhaps the router modifies the security certificates when updating firmware?

    Like

    1. That’s a great idea. How do you erase stored data for specific domains? Stupid question, I know, but I’ve actually never done that before.

      Like

  3. I own the ASUS RT N66R (I think it is a the same version as the U except for the labeling to prevent price matching).

    The port number is given to you when you enable https (secured); you can change to a customized port number.

    Initially I saw the same exact message and then I typed:

    https://192.168.1.1:8443/

    and I webpage asking me to give permission. I did so and
    a pop up login screen showed up. I logged in and regained access.

    Like

  4. It appears that the certificate installed in the router is not accepted. Fortunately I had safari installed (never use it but now came in handy) which automagically accepts certs it can’t check the identity of(most browsers reject it by default). This allowed me to navigate to https://192.168.1.1:8433

    Like

  5. i don’t know about you, but if you do a lot of “remote administration” outside of your LAN, wouldn’t you want https? although you won’t have a site certificate, it’s still better than plain text via http through the WAN.

    the default https port on the ASUS RT-N66U Router is 8443 but you can change this to whatever you want. i believe there’s even a built-in domain name so you can access your router by typing in

    http://router.asus.com
    https://router.asus.com:8443

    Like

    1. I don’t do remote administration, but I can see where HTTPS would be absolutely necessary for that.

      Thanks for the URL alternatives, I’ve added your tip to the original post.

      Like

    2. Thank you for this comment! I had enabled HTTPS but couldn’t connect to the router with ipaddress:8443. I was almost ready to factory reset it thinking http was messed up. Based on your comment, I went to https://router.asus.com:8443 and got right in.
      Wonder why it doesn’t work by ip? Anyway, thanks for your helpful post.

      Like

  6. none of those work for the rt-ac68r. If you log in with router.asus.com you get this message:

    Settings have been updated. Web page will now refresh.
    Changes have been made to the IP address or port number. You will now be disconnected from RT-AC68R.
    To access the settings of RT-AC68R, reconnect to the wireless network and use the updated IP address and port number.

    So basically I have no idea what to do short of reset to factory specs. I am so bummed out about this, having just put my buffalo n router to a shady retirement. It never gave me any problems, but it didn’t have 5g which so far is useless anyway.

    Like

  7. obviously its telling me to use router.asus.com:8443 or whatever, except that doesn’t work. Maybe if I start at 0001 and go all the way to 9999 I will find one, lol. very frustrating.

    Like

    1. Unlike Netgear – for example – it seems ASUS router OSes differ widely from model to model. I’m guessing that’s why it’s not working for you.

      Like

  8. Well, I can tell you this, from experience when working for a large mainframe company, the pressure to release products–either for competition or to stay on schedules promised to customers- who bought based on those promises, it seems a lot of the 802/11ac stuff is not ready, is full of bugs, is unstable, and basically, hit and miss. If its not the router its the adapter cards, the 7260 in the laptop or the others –all with driver issues. Its pathetic. I am going to send it back and either stick with n for now or go with cisco small business stuff. Its a little more money but it works and its something that can be serviced vs “try loading new firmware”. “try doing a factory reset and reloading”, all of which require hours of setting up printers again and wireless devices through the house. NOT IMPRESSED ASUS. Not impressed.

    Like

    1. Well a lot of 802.11ac stuff isn’t certified (yet) to begin with, even though the spec’s been finalized. I’m still on .11n on this end for that reason, and also because I tend to use routers until they break.

      Like

  9. I get the dreaded “Settings updated” error after about 5 minutes of being logged in to my NT65U, once it happens I can’t get in on any browser from any machine.
    The only thing I’ve found so far is to power cycle the router which is less than ideal given that I only get 5 more minutes.
    None of the above seems to help and, for me, https is already turned off.

    Like

  10. I had the same problem on my N65U after upgrading the firmware to version 3.0.0.4.376.1665. I solved it by downgrading to version 3.0.0.4.374.4422 (both firmware versions was downloaded from the Asus website).

    In order to upload the firmware to the router before the “settings updated” error is thrown (for me it happened after 10-30 seconds) I went directly to http://192.168.1.1/Advanced_FirmwareUpgrade_Content.asp

    Also, I got this error with https turned off.

    Like

  11. I have been reading some of the forums on this issue, and it seems like I need to download a different firmware. I can’t access my asus config page no matter what I type in. Also I can’t download the proper firmware because I can no longer access the internet ( I’ve reset everything possible and I’m using an Ethernet connection)

    Any suggestions

    Like

  12. I am having the same issue. None of the suggested URLs will load either, even on 2 separate PCs. Not even on my phone using Safari! Guess I am going to have to reset my router to factory. Quite annoying!

    Like

  13. It’s nice to see when I search “asus router ssh can’t login” on google your post shows up at the top of the list. I’ll still keep ssh enabled as I have reasons to use that level of security and will just login via the ssh port/link as posted in the comments — thanks for posting!

    Like

  14. Isn’t it funny that since those “old” models, this strange behavior is still present on RT-AC87U?
    Yes, this is my router and yes “To access the settings of RT-AC87U, reconnect to the wireless network and use the updated IP address and port number.” is my message.
    That message was on Firefox. No other approach was useful, by name or by IP.
    Started IE, used IP and I’m in.
    After that, I’ve deleted all that I’ve found in Firefox options, related to certificates from the router.
    Result: was able to enter by IP.
    I’m still looking after a solution to use the name.

    Like

    1. this strange behavior is still present on RT-AC87U

      Most router OEMs use basically the same firmware for all their devices with features enabled or disabled per model.

      Like

  15. The only problem here is that “please refresh” page is set to cache, which is admittedly a pretty hilarious (but still real) problem.

    Ctrl+Shift+R

    Like

  16. actually, you’ll notice in firefox, if you look in options -> advanced -> network tab, the asus router is storing offline data which is “intercepting” your requests for access from the router. You can clear the offline data, refresh the webpage and it should give no problems.

    Like

  17. “in firefox, if you look in options -> advanced -> network tab, the asus router is storing offline data which is “intercepting” your requests for access from the router. You can clear the offline data, refresh the webpage and it should give no problems.”

    This works for me in firefox, too, for an ac66u. I had this problem several times. Maybe after firmware updates.

    Like

  18. After accessing the router via https://router.asus.com:8443/ I was unable to restore access via IP by just switching the authentication back to HTTP but after I went to the LAN IP tab under the LAN section and hit Apply without changing anything it magically worked again.

    Like

  19. Fun fact: it’s your cr*ppy Firefox (and I’d bet Chrome does it too, but firefox is getting really low in terms of quality, like only unintelligent decisions were accepted there – no surprise – a big business-in-the-first-place corporation trying to pose as open source underground)!

    Serious browsers don’t do it (Opera Presto, IE). Flawed design of the above browsers and the state of the art web design based solely on bad practices forced me to move to Firefox (using Chrome as a backup for even worse web design) and Opera for this simple stuff.

    One step forward, three backward. At least we have javascript for animated “parallax” effect and tracking how many of our friends clicked a certain crippled site. On the other hand just a mere gazillion of workarounds can get us to normal simple web browsing. And we of course get router web-configs as a mobile “apps”. How uncool is that!

    Funny is that the search function of the FF address bar does not work on misspelled websites, however FF changes the manually entered IP “intelligently”. It’s not that easy to restart the misbehaving router in the café you are at anymore. You must ask the not really helpful bartender to perform the tedious task of flipping the switch on and off for you…or still fire up your less foxy trusted browser for this task.

    Part of a fail on ASUS’ side is that 192.168.1.1 might not be complete without “/Main_Login.asp”. No index.htm(.php) for you mush!
    router.asus.com is also funny – needless, but quite a workaround for the aforementioned browser behavior, but makes your nonstandard IP settings useless, as anyone can enter “router.asus.com” without having to know if it’s 192.168.1.1 or 192.140.0.100. ah the good old days!

    Like

  20. I use Firefox and have the https login problem on my RT-N66W. Frikkin annoying!!

    The easiest workaround i use is to change to “Private Mode” in Firefox and then i can access router with https://192.168.1.1:8443 because then you get the option to make an exeption of the faulty security cerificate.

    So:
    1, swich to Private Mode in Firefox
    2, enter https://192.168.1.1:8443
    3, click Advance
    4, click Make an exeption
    5, click Confirm security exeption

    DONE

    Like

    1. Thank you for that tip.
      I don’t use Firefox, but found a similar solution in Google Chrome (I have a localized version, and apologize if the english words below are not quite right).
      1. Click on the icon to the left in the address line showing e.g. https://192.168.1.1:8443
      2. In Exceptions: Pop-up-windows: Select ‘Always enable on this website’
      3. Refresh the page
      4. Ignore the warning and click the “advanced” link
      5. Now enter the login page of the asus router.

      Liked by 1 person

  21. Same here, I have logged a trouble ticket with ASUS, on an RT-AC5300 which is a cracking router. Except when you enable https for remote admin.

    🙂

    Will update on results of trouble ticket as and when.

    Adrian.

    Like

  22. Thank you Thank you Thank you! That solve the problem. Now I can access AICloud, use the Router app remotely no issues. I have just about given up after configuring so many ports forwarding rules through my modem and router wondering why the heck it was not working. The ASUS app try to force you to use http – so just cancel out of it when it asks.

    Thanks again,

    Like

  23. With havin so much content do you ever run into any issues of plagorism or
    copyright infringement? My website has a lot of exclusive content I’ve either created myself or outsourced but
    it seems a lot of it is popping it up all over the web without my permission. Do you
    know any techniques to help protect against content from
    being stolen? I’d genuinely appreciate it.

    Like

    1. There’s nothing you can do to prevent that except hope Google & Bing rank your content higher because it’s original. AFAIK Google already has measures in place that mostly mitigate the problem and it hasn’t been a huge deal for me.

      Like

  24. Thank you very much.
    I was can’t disable this ******* https on my router. When I try to disable it, router redirect me to logout page and is no changes was save on router.asus.com:8443.
    But when i go in asusnetwork.net:8443 I was disable https.

    Like

    1. My advise to all of you is install Merlin WRT firmware if your device is on the compatibility list:

      https://asuswrt.lostrealm.ca/

      This keeps exactly the same GUI and features as the original ASUS but fixes so many things on the buggy ASUS firmware it is unreal.

      I even donated money to the guy!

      Adrian.

      Like

      1. Merlin WRT not solve the problem, if https is enable I can’t log in via https from wifi device. But still I can log in via LAN. You can set BOTH in settings then you can log in by http from wifi or WAN. Maybe there is problem with certificate because few months ago all worked great.

        Like

    2. Hi Cathy. Given telnet is enabled on the router, you can putty into the router (over telnet) to test your credentials.

      Further, once you are logged in you can run:

      nvram show | grep http

      In the output, you will see your username, decrypted password, lan port to be used for https, etc.

      I was able to fix my issue by using:

      nvram set “https_lanport=8443”

      (As I chose a non-listening port when I changed to https.)

      Good luck!

      Like

  25. I was able to fix this in Firefox by going to “Tools –> Options –> Privacy –> Click ‘clear your recent history’ –> select Time range to Clear: Everything, Cache checkbox, and Offline WebSite Data checkbox”. After clearing, I enabled both https and http access in my router just to be safe for the future.

    Like

Comment

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s