Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1523
Views
0
Helpful
3
Replies

Web Auth Customization on Cisco WLC

Sagramsingh424
Level 1
Level 1

‎06-22-2015 09:17 PM - edited ‎07-05-2021 03:26 AM

Need help in customization web auth

Labels:
0 Helpful
3 Replies 3

Stephen Rodriguez
Cisco Employee
Cisco Employee

‎06-23-2015 05:43 AM

you can download an example bundle from cisco.com, it is in the same area where you would download the WLC code.

 

HTH,

Steve

HTH,
Steve

------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered
0 Helpful

gohussai
Level 4
Level 4

‎07-01-2015 08:31 AM

Web authentication is a Layer 3 security feature that causes the controller to not allow IP traffic, except DHCP-related packets, from a particular client until that client has correctly supplied a valid username and password.

Note: Web authentication only works through HTTP rather than Secure HTTP (HTTPS).

Before web pages are customized, complete these steps:

    Make sure the PC obtains an IP address without web authentication configured, for example a Service Set Identifier (SSID) with no authentication. Also, make sure it can ping the default gateway, knows the location of the Domain Name System (DNS) server, and can resolve the name with the nslookup command.
    Define a user in the WLC under Security > Local net users. Under the wireless LAN (WLAN), set Layer 2 security to none, Layer 3 security to none, and enable web policy authentication. This redirects the user from step one to the virtual IP address of the WLC. Make sure the virtual address is unique and non-routable in the network.
    Once step two works, other things can be tested.

Note: In order to customize web pages, the WLC must run 4.0.X.

 

Below is the Web Authentication Configuration/Customization Guide.

 

http://www.cisco.com/c/en/us/support/docs/wireless-mobility/wlan-security/69340-web-auth-config.html

 

0 Helpful

mohanak
Cisco Employee
Cisco Employee

‎07-06-2015 03:42 AM

Custom webauth can be configured with redirectUrl from the Security tab. This forces a redirect to a specific web page you enter. When the user is authenticated, it overrides the original URL the client requested and displays the page for which the redirect was assigned.

The custom feature allows you to use a custom HTML page instead of the default login page. Upload your html and image files bundle to the controller. In the upload page, look for webauth bundle in a tar format. Usually, PicoZip creates tars that work compatibly with the WLC. For an example of a WebAuth bundle, refer to the Download Software page for Wireless Controller WebAuth Bundles. Be sure to select the appropriate release for your WLC. A good recommendation is to customize a bundle that exists; do not create a bundle from scratch.

There are some limitations with custom webauth that vary with versions and bugs. Things to watch for include:

  • the .tar file size (no more than 1Mb)
     
  • the number of files in the .tar
     
  • the filename length of the files (should be no more than 30 characters)
     

If your customer package does not work, try with a simple custom package. Then add files and complexity one at a time to reach the package the customer tried to use. This should help you identify the problem. For an example on how to configure a custom page, refer to Creating a Customized Web Authentication Login Page, a section within the Cisco Wireless LAN Controller Configuration Guide, Release 7.0.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card