05-29-2017 05:55 AM - edited 07-05-2021 07:07 AM
I am implementing radius authentication on my WLC 5508 and I have an external authentication page.
The WLC is correctly calling my external login url and is sending a switch_url parameter: http://1.1.1.1/login.html
My understanding is that I should post back to this switch_url with the radius username and password which I do (see html/javascript below).
However when I do this I just get presented with the default WLC authentication page (see attached - you normally see this when you go http://1.1.1.1/login.html).
According to all the literature that I have read this is how I should do it. What confuses me is:
Any idea what I need to do to ensure that I get radius authentication at this point, and not get the WLC authentication page? Any help would be much appreciated.
Here is the html/javascript that I use to redirect to the switch_url:
<script type="text/javascript">
window.onload = function(){
document.forms['ciscologin'].submit()
};
</script>
<FORM name="ciscologin" method="post" ACTION="http://1.1.1.1/login.html">
<INPUT TYPE="hidden" NAME="username" SIZE="16" MAXLENGTH="15" VALUE="27835982456">
<INPUT TYPE="hidden" NAME="password" SIZE="16" MAXLENGTH="15" VALUE="27835982456">
<INPUT TYPE="hidden" NAME="buttonClicked" SIZE="16" MAXLENGTH="15" VALUE="0">
<INPUT TYPE="hidden" NAME="err_flag" SIZE="16" MAXLENGTH="15" VALUE="0">
<INPUT TYPE="hidden" NAME="err_msg" SIZE="32" MAXLENGTH="31" VALUE="">
<INPUT TYPE="hidden" NAME="info_flag" SIZE="16" MAXLENGTH="15" VALUE="0">
<INPUT TYPE="hidden" NAME="info_msg" SIZE="32" MAXLENGTH="31" VALUE="">
<INPUT TYPE="hidden" NAME="redirect_url" SIZE="255" MAXLENGTH="255" VALUE="">
<!-- <INPUT TYPE="hidden" NAME="redirect_url" SIZE="255" MAXLENGTH="255" VALUE="http%3A%2F%2Fshop.pnp.co.za"> -->
<INPUT TYPE="hidden" NAME="network_name" SIZE="64" MAXLENGTH="64" VALUE="">
<INPUT TYPE="hidden" NAME="network_name" SIZE="64" MAXLENGTH="64" VALUE="HIPPY">
</FORM>
05-29-2017 03:00 PM
it sounds like the WLAN layer 3 security is setup so it using to use the built in webpage of the WLC. Have you tried changing the layer 3 policy to passthrough or redirect ?
David
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide