Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

WLC web auth not returning login page

I am working on setting up a new WLC.  The WLC and the APs are at different sites and the APs are running in flexconnect mode.   The guest WLAN is configured to use internal web auth.  Users are able to associate to the WLAN, get a DHCP address which does inclulde DNS of 8.8.8.8.  However, when they then try to authenitcate they get the certificate warning message and upon clicking continue it just spins.  

To test without a straight redirect had a user try to hit the virtual IP of the WLC directly with same results.  Certificate warning page and then nothing.  

It appears that when it goes to try to tunnel the traffic to the virtual IP to bring up the login page it isn't being successful.  

WLAN is configured for flexconnect local swiching.

Any thoughts on what would cause the certificate warning but then no login page on redirect?

For testing, not only do I have the webauth setting set to webauth Internal, I also went under the WLAN and did a "global override" and set it to internal webauth as well.  No help.

The odd thing is when looking at the logs, I do see messages about both webauth internal and webauth external, ,but I have nothing set to external.  Below are the logs.  Basically loops these same things...

*webauthRedirect: Jun 22 13:38:53.702: 40:f0:2f:f:5f:9d- parser host is detectportal.firefox.com
*webauthRedirect: Jun 22 13:38:53.702: 40:f0:2f:f:5f:9d- parser path is /success.txt
*webauthRedirect: Jun 22 13:38:53.702: 40:f0:2f:f:5f:9d- added redirect=, URL is now https://192.0.2.1/login.html?
*webauthRedirect: Jun 22 13:38:53.702: 40:f0:2f:f:5f:9d- str1 is now https://192.0.2.1/login.html?redirect=detectportal.firefox.com/success.txt
*webauthRedirect: Jun 22 13:38:53.702: 40:f0:2f:f:5f:9d- clen string is Content-Length: 327


*webauthRedirect: Jun 22 13:38:53.702: 40:f0:2f:f:5f:9d- Message to be sent is
HTTP/1.1 200 OK
Location: https://192.0.2.1/login.html?redirect=detectportal.firefox.com/success.txt
Content-Type: text/html
Content-Length: 327
*webauthRedirect: Jun 22 13:38:53.702: 40:f0:2f:f:5f:9d- send data length=478
*webauthRedirect: Jun 22 13:38:53.702: 40:f0:2f:f:5f:9d- Web-auth type External, but unable to get PerProfile URL
*webauthRedirect: Jun 22 13:38:53.702: 40:f0:2f:f:5f:9d- cleaning up after send

*webauthRedirect: Jun 22 13:38:53.702: 1591 - 40:f0:2f:f:5f:9d- closing socket= 90

*webauthRedirect: Jun 22 13:38:56.941: 40:f0:2f:f:5f:9d- received connection. client socket = 90

*webauthRedirect: Jun 22 13:38:56.947: 40:f0:2f:f:5f:9d- trying to read on socket 90

*webauthRedirect: Jun 22 13:38:56.947: 40:f0:2f:f:5f:9d- calling parser with bytes = 292

*webauthRedirect: Jun 22 13:38:56.947: 40:f0:2f:f:5f:9d- bytes parsed = 292
*webauthRedirect: Jun 22 13:38:56.947: captive-bypass detection disabled, Not checking for wispr in HTTP GET, client mac=40:f0:2f:f:5f:9d
*webauthRedirect: Jun 22 13:38:56.947: 40:f0:2f:f:5f:9d- Preparing redirect URL according to configured Web-Auth type
*webauthRedirect: Jun 22 13:38:56.947: 40:f0:2f:f:5f:9d- unable to get the hostName for virtual IP, using virtual IP =192.0.2.1
*webauthRedirect: Jun 22 13:38:56.947: 40:f0:2f:f:5f:9d- Checking custom-web config for WLAN ID:2
*webauthRedirect: Jun 22 13:38:56.947: 40:f0:2f:f:5f:9d- Global status is disabled, checking on WLAN web-auth type
*webauthRedirect: Jun 22 13:38:56.947: 40:f0:2f:f:5f:9d- Web-auth type Internal, no further redirection needed. Presenting defualt login page to user
*webauthRedirect: Jun 22 13:38:56.947: 40:f0:2f:f:5f:9d- http_response_msg_body1 is <HTML><HEAD><TITLE> Web Authentication Redirect</TITLE><META http-equiv="Cache-control" content="no-cache"><META http-equiv="Pragma" content="n
*webauthRedirect: Jun 22 13:38:56.947: 40:f0:2f:f:5f:9d- http_response_msg_body2 is "></HEAD></HTML>

*webauthRedirect: Jun 22 13:38:56.947: 40:f0:2f:f:5f:9d- parser host is detectportal.firefox.com
*webauthRedirect: Jun 22 13:38:56.947: 40:f0:2f:f:5f:9d- parser path is /success.txt
*webauthRedirect: Jun 22 13:38:56.947: 40:f0:2f:f:5f:9d- added redirect=, URL is now https://192.0.2.1/login.html?

  • Getting Started with Wireless
1
Views
0
Helpful
0
Replies