02-22-2007 07:26 AM - edited 07-03-2021 01:40 PM
please i need help urgently...i have a guest wlan that i have created by creating a vlan in my wired network,the vlan is then mapped to the guest interface on the controller and the to the guest wlan.
i want to use web auth for my guests.My problem is that when i enable web auth i do get an ip address from my DHCP server but then i cant browse,ping my default gateway or even authenticate using the web auth after putting the username and password...basically web auth just dont work.
where could i be going wrong ??
02-28-2007 11:13 AM
This document should help you. It explains how to configure web authentication for a guest WLAN.
http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a008067489f.shtml
02-28-2007 11:32 AM
Verify that you have a path to your DHCP server and primary destination networks.
Even theough the VLANs exist physically in the same box, they act as if they are totally separate boxes and require a layer 3 device (router or L3 switch) to connect the segments together.
If you're sure you have a good path (via router/L3 Switch), then verify that your DHCP server is providing the correct information (DNS and gateway (which should be a different gateway than the primary VLAN)).
Good Luck
Scott
02-28-2007 11:53 AM
Hello, you said you can not authenticate using the web auth after putting the username and password. What error did you get? Did you get wrong credentials prompt?
Before you login successfully through the web auth, only dns and dhcp are allowed to pass. So if you can not authenticate against the web auth, it is no use to try browsing and pinging. They won't work until you are authenticated.
Try to do nslookup to reslove dns name to see if that works. If you can get correct dns server info through dhcp response, you should be able to reslove dns.
I am still thinking it is the authentication problem. In the WLC web interface clients page, you can see all the clients. Make sure the client is showing as authenticated first.
Zhenning
03-01-2007 07:14 AM
no i did not get any errors the password and username field went empty after i had put my username and password.
the issue is that when i enable web auth i can no longer ping my dafault gateway form the guest lan basically with web auth enabled i cannot do anything.
03-02-2007 07:44 AM
Again, it is no need to try pinging anywhere before you are successfully authenticated. You should just focus on the authentication part.
What kind of web auth do you use? Internal, downloaded or external? Do you use local datebase or AAA server to authenticate?
03-04-2007 09:41 PM
am using internal web auth and am using the the local database on the WLC to authenticate
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide