Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2376
Views
0
Helpful
4
Replies

Wireless Guest Users once authenticated, are able to connect again after disconnection

kamal kumar
Level 4
Level 4

‎06-13-2012 06:02 AM - edited ‎07-03-2021 10:17 PM

                   Wireless Guest Users once authenticated, are able to connect again after disconnection .Clients should not able to connect after the restart or by disabling and enabling the WIFI adapter. But as of now clients are connecting to network . How we can configure this feature in WLC ?

Labels:
0 Helpful
4 Replies 4

Saravanan Lakshmanan
Cisco Employee
Cisco Employee

‎06-15-2012 10:45 AM

is it a guest anchor scenario using auth - webauth.

does the client entry stays and shows policy manager as RUN on WLC after client reboot or its radio disable/enable event.

get the debug client output recreating the issue.

0 Helpful

Scott Fella
Hall of Fame
Hall of Fame

‎06-15-2012 07:02 PM

IIRC, if your reboot, disable the adapter or disconnect from the wireless, as long as the session timer or the idle timer does not timeout, then you are still considered as authenticated. If you logout, the wlc logs you off and you will have to log back in. The wierd thing is with iPhones or iPads, they go to sleep mode and you have to log back in to access the guest network. The workaround was to increase the idle timers to a certain acceptable limit to prevent this from happening.

If you disconnect from the guest SSID and leave your client off the network until the idle timer expires, do you get prompted for a login or do you have access again?

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***
0 Helpful

kamal kumar
Level 4
Level 4
In response to Scott Fella

‎06-15-2012 10:58 PM

thanks for the answers .

So can we make session timer to a low value, to solve the issue ? as of now it's default 1800 sec. But we noticed that even though the client is disconnected (Via adapter disabling) , we can still see session time more then 50 mins. We will get the debug client output on Monday , let's see what can be interpreted from that .

0 Helpful

Scott Fella
Hall of Fame
Hall of Fame

‎06-16-2012 06:36 AM

This is the other catch... Your session timer will also force a guest user to have to login again after the timer expires. So if the default is 1800, that means that every 30 minutes, webauth users who are active on the system will loose network access and have to login back using webauth. You might want to increase that value to 4,8,12,24 hours to keep them happy. Like hotels usually have a 24 hour period before your session timeout. It's up to you, but maybe lowering your idle timeout is what might help your situation.

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card