05-13-2015 05:59 AM - edited 03-12-2019 05:45 PM
Hi All. I am experiencing an issue with CWA redirection not working. But when I enter the address of the Guest portal, I can successfully authenticate. However, no CoA is happening to activate the post auth Authorization Policy. I have attached some config screenshots for review. Any assistance will be appreciated.
EDIT: WLC code-7.4.121.0 and ISE code-1.3.0.876
05-18-2015 11:53 PM
can you attach screenshot of OPERATIONS -> AUTHENTICATION -> DETAIL and ACL on WLC and is URL redirection portion of the ACL have been applied to the session ?
05-19-2015 12:23 AM
HI. Thanks for your response. I have posted the Operations--->authentication. It is the authlog.jpg above. See attached the ACL and the Authentications detail. I have also added the Screen shot after portal authentication success. There is no CoA. Any help will be appreciated.
Regards
Andre
05-19-2015 08:11 AM
Hi Andre,
On your WLC(s) under: Security -> AAA -> RADIUS -> Authentication
For each of your ISE PSN's do you have 'Support for RFC 3576' set to 'Enabled'?
I had this same problem this morning.
cheers,
Seb.
05-19-2015 08:28 AM
Hi Seb. Thanks for your reply. I have support for RFC3576 enabled on both PSN.
07-21-2015 03:12 AM
Good day All. Thanks for your responses. I managed to eventually resolve the problem. The applied "Airspace ACLs" were not allowing the return DNS traffic. Once I corrected this. All is working. CoA, CWA redirect, Authorization policies are applying correctly.
Thanks again.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide