I have a question: we have a set up with WLC 55xx and WLC as managements system. We use guest wlan with web authentication.
The authentication in general works fine: the users get asked for login when they try to access a web page, once authenticated they can access the web page they are trying to open. When they then logout and try to access again some web page they get asked for a new authentication and so on, everything here is fine.
But if a user doesn't press the logout button but just closes the browser and later tries to access a web page he gets access with the need to authenticate.
So, here I have a few questions:
- what is the time out after which he will get automatically logged out?
- can this be changed?
- is there some configuration way in which even without the logout button being pressed to get the user logged out once he has closed the browser?
Re: Questions about the web authentication behaviour
Here is what I have ran into.... Do you want to get on the guest wireless and then have to find out that your outlook mail stopped or your VPN connection has ended because you closed out your browser? To me that's a terrible guest wireless. You should be able to stay connected even if your browser is closed, not may use that logout button anyways... I'm talking about in any free hotspot areas. At least I don't. The other issue is that some browsers automatically close the logout browser pop up so you don't have that issue. Now for the catch... If you change the session timeout, then that will force the user to have to log back in. I usually set this at 4-8 hours so users don't complain and they have a good experience. Idle timeout will clear the Mac address from the wlc when the client goes to sleep or leaves the wireless area. The issue with setting a low idle timeout or leaving it at default is the iDevices after it goes to sleep will always have to go through the webauth. It gets annoying! So I even increase this to 4 hours just so these users also has a good experience.
Transferring Crash file from standby: Login to the Active WLC in HA.
From CLI: (Cisco Controller) >transfer upload datatype crash (Cisco
Controller) >transfer upload filename (Cisco
Controller) >transfer upload mode tftp (Cisco Controller) >transfer
This is the start of a display filter cross reference between Wireshark
and OmniPeek. The 1st installment is a table of advanced filters. More
filters will be added as time allows. It is a living doc, so check back
for changes every so often Please feel f...
I have created a Powershell script to automatically add a Wireless Guest
User on Cisco WLCs. (tested on 2500 Series) The script should be
completely self explanatory. Prerequisites: Powershell SNMP Module
(Install-Module -Name SNMP) SNMP Write Access to y...