Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

WLC5508 external web auth questions

Hello,

I'm trying to configure external web auth (redirection to ISE guest portal) on WLC5508 (WLC software version 7.3.101).

I have two issues with this task:

- In some Cisco docs there is information that controller will substitute real external web auth server IP with IP of controller virtual interface - this is not happening in my case - wireless client gets real IP of web auth server in the http redirection (and can't connect to this address).

- In my case external web auth (ISE policy node) is located on management interface network, but not directly - it is reachable via default gateway of this interface. When wireless client tries to connect to external web auth (after getting redirection from WLC) i don't see any traffic to external web auth comming out from the management interface. My pre-auth acl allows traffic from any to external web auth (and back). I can ping external web auth server from the WLC.

Maybe someone has some ideas what else i should check to make sure that my config/setup is OK.

Thanks,

WM

3 REPLIES
Hall of Fame Super Silver

Re: WLC5508 external web auth questions

The virtual interface is used when the internal WebAuth portal on the WLC is used, not when a redirect happens. When using an external web server like ISE, you need to allow on the pre auth ACL access to the ISE box to obtain the ISE portal page.

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***
Hall of Fame Super Silver

Re: WLC5508 external web auth questions

Here is a guide that should help.

http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a008076f974.shtml

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***
Silver

Re: WLC5508 external web auth questions

Hello,

I went through your query and found the below link's which I think might help you out:-

www.cisco.com/en/US/tech/tk722/tk809/technologies_tech_note09186a0080bf7d89.shtml#external

http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a008076f974.shtml

262
Views
0
Helpful
3
Replies