Force to reauthenticate to webauth after reboot

acomiskey · ‎10-23-2007

2100 wireless lan controller

1130 AP's in H-Reap mode

Static WEP and Web Authentication

The problem is when clients, who are connected and authenticated reboot their machines, it is not necessary for them to login to the webauth page again. This brings up a security concern obviously. Is there a way to force the clients to re-authenticate? I was thinking about a small idle timeout but I don't want users to have to login all day long.

Thanks.

dennischolmes · ‎10-23-2007

The idle user timeout should be set to something like 6 minutes already. Are you authenticating against the local controller database? I suspect you are. Bounce the authentication off a RADIUS or IAS server.

Scott Pickles · ‎10-23-2007

What method are you using to validate credentials in the web authentication? Local database, RADIUS, LDAP, etc.? Unfortunately, without clicking "logout" the session remains active. At this point, my only thoughts are to use something like AD (RADIUS/IAS) or the Lobby function where you can specify when a particular account times out.

Regards,

Scott

acomiskey · ‎10-24-2007

Thanks guys, I am using a RADIUS server for authentication. I do think the idle timeout is the default 300 seconds. But it doesn't take that long to reboot a pc.

acomiskey · ‎10-25-2007

Anyone have any other ideas?

So the only way to be logged out from the webauth is to physically press the logout button or for the idle timer to expire?

acomiskey · ‎10-26-2007

Why wouldn't they be disassociated/unauthenticated when the pc reboots?