I wanted to know if it is possible to disconnect all wireless users at a set time of the day. I know there's an Enable Session Timeout option where you can set the countdown to disconnection for a user; but I'm really concern about disconnecting all users at 4:00pm for example. I'm using WebAuth using ACS as my LDAP proxy.
Are you asking to disconnect users at a specific time so that they have to force re-authenticate? Or are you like wanting to make a WLAN unavailable at a certain time?
That would actually be a great feature. I think some people might like having "scheduled" wlans, for instance a guest lan only being available from 8-5....
Anyhow, I know that I am no help, but I do not know of anyway to automatically force a disconnect.
And for the record, the session timeout option is a re-authentication counter and not a disconnect counter (Maybe I'm wrong?). As far as I know, computers are just forced to re-authenticate at the timeout (if using something like PSK then this is in the background and users really don't get disconnected). If using Web-Auth like you are using, then users would not have internet access without going through the web-auth page again.
Yes, I am looking into disconnecting users at a specific time so they have to be forcefully re-authenticate. You are also correct about the session timeout counter for users to re-authenticate for internet connectivity. I also agree that there is not a way to disconnect users from the wireless connection unless I kill the POE connections to my Wireless AP's using WCS.
So I'm guessing there is definetly no way to do this through what Cisco provides, and this is a stretch but maybe it can be done through SNMP?
If I understand correctly, WCS just manages the controllers through SNMP? Maybe there is a way to send some kind of SNMP message to the controllers. I of course don't know how to do this, but in theory if you knew how to send these kind of requests, you could probably have some scheduled script that sends a request like this....
I have solved this issue with an expect script scheduled in crontab on a local linux machine on our lan. The script logs in to the controller and disables/enables the radio so that the radio is only active during office hours.
Transferring Crash file from standby: Login to the Active WLC in HA.
From CLI: (Cisco Controller) >transfer upload datatype crash (Cisco
Controller) >transfer upload filename (Cisco
Controller) >transfer upload mode tftp (Cisco Controller) >transfer
This is the start of a display filter cross reference between Wireshark
and OmniPeek. The 1st installment is a table of advanced filters. More
filters will be added as time allows. It is a living doc, so check back
for changes every so often Please feel f...