10-23-2007 11:41 AM - edited 07-03-2021 02:49 PM
2100 wireless lan controller
1130 AP's in H-Reap mode
Static WEP and Web Authentication
The problem is when clients, who are connected and authenticated reboot their machines, it is not necessary for them to login to the webauth page again. This brings up a security concern obviously. Is there a way to force the clients to re-authenticate? I was thinking about a small idle timeout but I don't want users to have to login all day long.
Thanks.
10-23-2007 06:40 PM
The idle user timeout should be set to something like 6 minutes already. Are you authenticating against the local controller database? I suspect you are. Bounce the authentication off a RADIUS or IAS server.
10-23-2007 07:26 PM
What method are you using to validate credentials in the web authentication? Local database, RADIUS, LDAP, etc.? Unfortunately, without clicking "logout" the session remains active. At this point, my only thoughts are to use something like AD (RADIUS/IAS) or the Lobby function where you can specify when a particular account times out.
Regards,
Scott
10-24-2007 05:23 AM
Thanks guys, I am using a RADIUS server for authentication. I do think the idle timeout is the default 300 seconds. But it doesn't take that long to reboot a pc.
10-25-2007 05:36 AM
Anyone have any other ideas?
So the only way to be logged out from the webauth is to physically press the logout button or for the idle timer to expire?
10-26-2007 06:33 AM
Why wouldn't they be disassociated/unauthenticated when the pc reboots?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide