cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1338
Views
0
Helpful
7
Replies

Issue with WLC 2112 (Web Authentication)

joe.muller
Level 1
Level 1

Hi,

I have setup my WLC 2112 exactly as per the different deployment guides, still I am failing to get the certificate when using web authentication for my guest VLAN. I then also do not get diverted to the internal web page to login in with one of the local net users.

Also if I manually enter: https://1.1.1.1/login.html, the page is not found, however if I browse the Dynamic guest interface on say: http://20.20.20.10 I get the header in the web page that say" web authentication redirect" but then nothing happens.

Is it possible to use only one WLC 2112 with local net user database and perform web authentication for guests via their own dynamic interface? I do not have a second WLC to perform mobility anchoring. Please any help would be appreciated.

7 Replies 7

Kayle Miller
Level 7
Level 7

Joe,

     So a couple things for you to take note of and or to check.... 

Goto Controller> Interfaces> Virtual> is this interface configured as 1.1.1.1 ?  Also make sure there is no DNS name listed there.

Next goto the WLANS>(Your Guest SSID)  and make sure it's anchored to itself.

Then Click on the SSID>Security>Layer3   Set it to Authentication if that's what you want, or condition redirect

The goto Security>WebAuth>Web Login Page and make sure it's set for Internal (Default)

Also make sure that the network they are being placed on can pass DNS traffic.

lastly be aware that the WLC doesn't intercept https requests only http requests

Please rate helpful posts.

Thanks,

Hi Kayle,

thx for the response. See below soem screenshots. I hav doen everythng possible, but still somewhow its not working.

Attached more clearer screenshot. Thx, Joe

I am also using the internal DHCP of the controller and have it setup for the 20.20.20.0 subnet. (VLAN 20) I do get an ip and i can ping the other devices in my 20 VLAN, it's only the Dynamic interface that's not reachable and also I do not get any cert or the actual web redirect to the vurtual IP.

Joe,

     It didn't register with me until I saw the screen shots, but the 20.20.20.x address range is an internet routable address space, did you intend for it to be that???  you should use another private space and route it out.

Thanks.

Hi Kayle,

I am aware ot the IP address space I am using, hoewever the LAB network is not connected/routed to the Internet.

I am pretty sure if I use the 192.168.x.x space, the same issue will prevail..

Hi,

Please mark the Question as Answered if the provided information is correct and issue is fixed.

thanks,
Vinay

Thanks & Regards
Review Cisco Networking for a $25 gift card