Solved: Central Web Auth Redirect not working for iPhone/Apple devices

Chris Terry · ‎06-14-2023

We're running ISE 2.6 and two 5520 WLCs running 8.5.151.0 in a foreign/anchor setup

I'm running into an issue with iPhone/Apple devices not redirecting to the CWA portal. Android devices and a Windows laptop I was using to test get redirected without issue. I can see in ISE that the iPhone is getting the redirect URL to the ISE portal that has a public signed and validated cert. I can also see the iPhone getting the redirect URL in the WLCs as well.

When I open up Safari and type in 1.1.1.1 it will redirect to the CWA portal, but it will be a blank page saying Safari cannot display the page because it's not connected to the internet.

thomas · ‎06-16-2023

This appears to be a duplicate of your reply in

Guest Portal CWA Not Redirecting to Login Page

Please follow @poongarg 's advice from that thread:

> Kindly disable captive-bypass on WLAN settings>Layer 3>Security and check again. It is known issue with Apple devices.

View solution in original post

thomas · ‎06-16-2023

This appears to be a duplicate of your reply in

Guest Portal CWA Not Redirecting to Login Page

Please follow @poongarg 's advice from that thread:

> Kindly disable captive-bypass on WLAN settings>Layer 3>Security and check again. It is known issue with Apple devices.

Irshad-ahmad · ‎01-29-2025

I am facing the same problem, when i am connecting my apple device to guest ssid it is getting connected however web redirection is not happening , i have disabled the captive-bypass on WLAN [None] still it is not working...

Chris Terry · ‎01-29-2025

There's a bypass on the WLAN config and also just on the controller itself. Is it set to None or Disabled? Try Disabled if set to None.

GUI:
WLAN Bypass disable: WLANs -> <WLAN> -> Security -> Layer 3 -> Captive Network Assistant Bypass - Disabled

CLI:
config network web-auth captive-bypass disable