Hello Everyone,
I have seen this on many posts in community, still many ppl's using 1.1.1.1 as a virtual IP address of WLC.
Address 1.1.1.1 is now a secure DNS server. So Cisco is no more recommending to use 1.1.1.1 as Virtual IP address.
There might be a chance of Redirection failure or Authentication packet will not get forward to external or internal server (same page will be redirect again).
If you are using 1.1.1.1 please change the virtual IP as recommended in the link and regenerate the webauth certificate and reload the controller to take this effect.
Link is for your reference Virtual IP Recommendation Cisco
Regards,
Sathiyanarayanan Ravindran
Please rate the post and accept as solution, if my response satisfied your question:)