I am finding conflicting information on Web Portal Guest Authentication. I would like to confirm that the guest username and passwords are encrypted (via https) between the client and the WLC during the redirect to the Virtual interface (184.108.40.206 in my case).
What I found in a configuration document is as follow.... "Web authentication is supported only through HTTP. HTTPS is not supported. Because web authentication is tied to the management login on the controller, HTTPS login for management must be disabled and HTTP for management must be enabled.â
But at the same time, when looking at authentication page examples in the some config guides, the redirect page address is https://220.127.116.11 and not http://18.104.22.168
Could someone confirm to me if the username and password are encrypted when exchanged between the user and the WLC?
This is kind of a late reply, but if you are interested in my two cents; I've learned that with the WLC guest authentication you can have either SSL or HTTP enabled for the user authentication.
If you have SSL enabled, the auth page defaults to the encrypted https://22.214.171.124 url, hence the auth page is encrypted along with the credentials entered onto the page.
I found this out when trying to get rid of the self-signed certificate errors users would get when they first authenticate on my guest wireless network. It's a pain to get a trusted cert working on this setup, so I just opted to use HTTP. The drawback to this, however, is that my web management connection to my anchor WLC is HTTP.
Your feedback is appreciated. I am also stumped on how to get a trusted cert for the https://126.96.36.199 URL. I'd be surprised if any trusted authority (GoDaddy, Verisign, etc) would hand out a certificate to a host with the name 188.8.131.52.
If anybody else has any ideas on how to get a trusted certificate on this thing, please let us know. It drives my users nuts to have to click 'I accept' to a homemade certificate.
If you go to virtual interface and open its properties, you can add address to which should wlc redirect insted of 184.108.40.206. This domain should be used for cert and should be translate to 220.127.116.11 by DNS.
Transferring Crash file from standby:
Login to the Active WLC in HA.
(Cisco Controller) >transfer upload datatype crash
(Cisco Controller) >transfer upload filename <Desired filename>
(Cisco Controller) >transfer up...
This is the start of a display filter cross reference between Wireshark and OmniPeek.
The 1st installment is a table of advanced filters. More filters will be added as time allows.
It is a living doc, so check back for changes every so often
Please feel ...
I have created a Powershell script to automatically add a Wireless Guest User on Cisco WLCs. (tested on 2500 Series)
The script should be completely self explanatory.
Powershell SNMP Module (Install-Module -Name SNMP)
SNMP Write Access to...