Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1003
Views
0
Helpful
5
Replies

CMX Facebook Social Auth

Eduardo Ferreira Fernandez
Level 1
Level 1

‎10-30-2015 06:53 AM - edited ‎07-05-2021 04:09 AM

Hi, 

I have some issues implementing facebook social auth and i hope someone we can find the answer , 

The Acl redirect for Webauth permits all https traffic , and i believe its because the client needs to access facebook to successfully login , but the user before authentication alredy have access to Whatsup because https is allowedis there a way to allow only traffic for the login process and denying everything else?

In a POC deployment most of the time we are using the same device for testing purposes but once it is authenticated we can not test the entire login process no more , is there a way to somehow delete this authenticated user in the database so we can authenticate and test all the process again?

Thank you

Labels:
0 Helpful
5 Replies 5

Stephen Rodriguez
Cisco Employee
Cisco Employee

‎10-30-2015 07:01 AM

you should be able to use the command

config client deauthenticate < client mac address >

this deletes the client from the MSCB, and thye will have to do the process again.

http://www.cisco.com/c/en/us/td/docs/wireless/controller/8-1/cmd-ref/b_cr81/WLAN___Commands.html#wp3025629989

HTH,

Steve

HTH,
Steve

------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered
0 Helpful

Eduardo Ferreira Fernandez
Level 1
Level 1
In response to Stephen Rodriguez

‎10-30-2015 07:44 AM

I believe this will not deathenticate the user in cmx , actually web-auth with passthrought is used , the user is authenticated with facebbok in CMX and not the WLC.

Did you used this in CMX facebook social auth implementation?

0 Helpful

Stephen Rodriguez
Cisco Employee
Cisco Employee
In response to Eduardo Ferreira Fernandez

‎10-30-2015 08:22 AM

This command removes the client from the WLC MSCB. Even if something else is doing the authentication, the WLC keeps a record of the client state. Once you completely remove the client from the MSCB, when they reassociate the WLC is going to see it as new and put them in the WEBAUTH_REQD state.

HTH,

Steve

HTH,
Steve

------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered
0 Helpful

Eduardo Ferreira Fernandez
Level 1
Level 1
In response to Stephen Rodriguez

‎10-30-2015 12:02 PM

Yes , i tried  now but this commands only deauthenticate the client , but when it connects again , CMX somehow responds its already authenticate in the Facebook Oauth2 and gives access.

What i need is a way to do the process all over again , the clients associates - redirect to cmx custom portal - login with facebook credentials

0 Helpful

Daniel Stefani
Level 1
Level 1

‎09-15-2017 05:47 PM

Hello Eduardo,

 

I am having the same problem in a customer. Could you share your solution to restrict access for other apps and permit only facebook authentication?

 

Best Regards,

Daniel Stefani

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card