×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

WLC webauthentication issues 5508

Unanswered Question
Nov 29th, 2013
User Badges:

                   Hi ,


We have upgraded our wireless infrastructure from 44xx wlc to 5508 . We have 2 foriegn controllers with HA and 2 anchor controllers , the wireless users were not facing any issues with the 44xx controllers but when we upgraded to 5508 the webauthentication security is not performing well . We have more than one SSID & most of them are anchor SSIDs . The SSIDs that are working with MAC filtering securitu or WPA, WPA2 with PSK are working fine , the SSIDs that are working with webauthentication are not working fine . We have controllers 5508 with the latest images 7.5 and access points 1252AG . The users are facing different issues with the webauthentication SSIDs,  some of them the webpage is not appearing , some of them will connect and then after a while they are disconnected eventhough the timing is 36000 on the WLAN . We are facing this issue with different users different browsers . The users are authenticated from our ACS . Any ideas for this ?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Scott Fella Fri, 11/29/2013 - 04:27
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,

    The Hall of Fame designation is a lifetime achievement award based on significant overall achievements in the community. 

  • Cisco Designated VIP,

    2017 Wireless

Here are a few things to set for WebAuth in general.

Make sure certificates have been installed in both wlc's

Session timeout disable

Idle timeout set to 2-4 hours

v7.4.110.0 MR1 is recommended for HA AP SSO and only use v7.5.102.0 if and only if you need a feature along with AP SSO

Also check your logs on the radius server

Sent from Cisco Technical Support iPhone App

mscherting Mon, 12/02/2013 - 12:33
User Badges:

Scott,


Could you elaborate on this?  What's wrong with 7.5.102.0?


"v7.4.110.0 MR1 is recommended for HA AP SSO and only use v7.5.102.0 if and only if you need a feature along with AP SSO"


Thanks!

Actions

This Discussion