Cisco Wireless :: Does WLC 5508 Has Capability To Create Login Credentials With Specific Time Of Validity
Jul 18, 2011
Does WLC 5508 has capability to create login credentials with specific time of validity? Could it be used in hotel set-up to provide prepaid access account to guest?
We have a Linksys WRT120N wireless router set up at one of our small offices. I noticed recently when trying to log in to the router to make some admin configurations that it will not accept the login credentials when trying to log in from IE10 browser. Works fine from Chrome, IE9, ect. logging in to a linksys router with IE10?
for some reason some AP's are terminating the association to either one of the controllers for a short period of time. When this happens and the AP re-associates itself with either of the active controllers, it looses the information of what group it previously belonged; and it gets dropped in the default group, broadcasting every single SSID available.
What I would like to see happen is that if for some reason an AP terminates association, but restablishes it shortly; it can automatically go to the correct group.
Both WLC are running the same version and have the same amount of licenses, they can hold all the AP's one of the WLC came down. Config-wise they are identical except that the groups are named differently but ultimately configured the same. If that is an issue we can change it no problem since it's only the name.
I am facing a proble in wireless connection speed that is getting very slow at a specific time, i.e., from 12pm to 2pm and from 9 pm to 2 am. The service is unlimitted type contract
How to block a specific website with a specific time (office hours) for example "facebook" I want to block facebook within 8AM - 12Noon then 12-1 they can access the website, then 1-4 block again the website .
With M10, I cannot restrict internet access for specific time period. Parent Control feature doesn't satisfy the situation, and there is no build-in access-policy in web-based setup. Are you going to upgrade firmware or Cisco Connect with more flexible access time control?
Modem: WRT310N Firmware: 1.0.9.0 Build 4 (Latest)If I want to allow Multicast traffic on my network, does this box need a "Check Mark" or does it need to be "Unchecked".Filter Multicast Multicasting allows for multiple transmissions to specific recipients at the same time. Ifmulticasting is permitted, then the Router will allow IPmulticast packets to be forwarded to the appropriatecomputers. Select this feature to filter multicasting. Thisfeature is not selected by default. Filter Multicast. Multicasting allows for multiple transmissions to specific recipients at the same time. If multicasting is permitted, then the Router will allow IP multicast packets to be forwarded to the appropriate computers. Select Enabled to filter multicasting, or Disabled to disable this feature.
WRT610N Manual: Filter Multicast Multicasting allows for multipletransmissions to specific recipients at the same time. Ifmulticasting is permitted, then the Router will allow IPmulticast packets to be forwarded to the appropriatecomputers. It is selected by default. Deselect this featureto disable it.
WRT54G2 Manual: Filter Multicast Multicasting allows for multipletransmissions to specific recipients at the same time. Ifmulticasting is permitted, then the Router will allow IPmulticast packets to be forwarded to the appropriatecomputers. This feature is selected by default. Deselectthis feature to disable it.
We have a 5508 controller with about 40 LAPs, running AIR-CT5500-K9-7-2-103-0-FUS software.The need has arose to have LAPs in various locations that only broadcast specific SSIDs.
I've got seperate dyanmic interfaces already created.We have 3 "Normal" SSIDs that we broadcast to the LAPs already associated with the 5508.2 more SSIDs were created (2 different purposes).
I just can't figure out how to get it to certain LAPs to only broadcast the specific SSIDs, while the rest broadcast the normal 3, but not those 2 new ones.
I would like to be able to allow a specific client to only associate at 6mbit/s -is this possible using the wlc controller 5508? Another option would be to limit a whole w lan ssid to 6mbit/s but i can't find a way to do that either.
Other w lan ssid's on the same access points/controller need full data rates, so i guess i can't use the RF-profiling for this.
Yesterday I was in one of our client premises configuring a WLC 5508 with software 7.2, went through the initial configuration wizard with no problem whatsoever, my issue began when trying to configure a ap-manager interface.In many WLC configuration guides cisco states that for 5508 it is not required to configure an ap-manager interface because the management will suffice, but then they put a side note recommending it's configuration for best practices and better performance. OK so I saw that in an earlier version document and now they do not make the recommendation but the still use the word required and for me that's still is not a limitation. I can't create the ap manager interface because when I put the VLAN ID it says the it is being used by another interface.
I am deploying Cisco 5508 with Cisco 1602 Access Points at one of my client's office. User authentication will be done through Microsoft IAS Server working as RADIUS Server. There is a requirement from my client is that the user over wireless can only be able to login to One device using its user ID. I want to inquire if this can be done through WLC or it can be restricted on the RADIUS server? Looking forward for comments.
I have two WLC-5508 for 50 AP's deployed. One is primary controller & other is secondary.Recently noticed an unknown "authorization failed, no sufficient privileges for user" message poping up while making configuration changes in WLC. Specificly when trying to create an new SSID. WLC Authentication is local. This message poped up earlier once or twice but it didnt prevent from making changes that time.
I have got a wireless project with WLC main office and have 10 sites where ap's are there and ap's getting registerd .we need 4 ssid in all branches same .
ssid guest ssid scanner ssid user vlan 600 main office for scanner 192.168.1.0 in branch vlan 600 for scanner but ip is 172.16.1.0
and bgp is running . And customer is asking me not to edit the ip range or vlan or create new vlan . but in wlc am not able to create branch network 172.16.1.0 range interface and vlan 600 as vlan 600 i already created for scanner main office 192.168.1.0 So is there a way to do that .
Temprarly one site i did like created vlan 610 in branch no ip . And in main office interface vlan 610 given another ip range . and i created interface in wlc . from branch i can connect the ssid and getting ip . But they dont want to create any aditional vlan or another network . Customer dont have a smartnet contract . They recently baught 2 wlc 5508 and 40 ap 1142.
How to block Internet Connection during specific time.for example i want to block everyday between 8am to 12nn, then 1pm to 5pm.what are the options and better to achieve this kind of policy??
We have Cisco Cat4503 series L3 Switch and Cisco L2 2560 Series Switches, some of the users want to have a dynamic VLAN membership, and connecting with the network as mobile users,
can it possible and create dynamic VLAN for specific group of users.
In the above case it's showing refused by remote host. If the port 80 is opened in firewall also if we get this error what will be the issue. As i understood when firewall port is opened we wil get as OPEN
I have the Qwest/Actiontec Q1000 modem/router. I go to the ip address using my web-browser and open up advanced configurations -> access scheduler. I select a computer (and it automatically adds the MAC address) and then the days/times I want the internet to be accessible. However, when I click "add" (to add my internet allowance to the scheduler list) it just says 12:00 to 0:00, which is essentially permanently blocking the internet for that computer.
Is it possible to rename the default webauthentication URL from [URL] to something like [URL]. We are running on 7.0.98.0, is it possible to do http for web authentication and https for Mgmt access if we upgrade the controller software?
We configured our guest wireless with no layer 2 authetication so users can associate with an AP and get an ip adress but they can't go anywhere unless they have a valid username and password(web authentication) - does this affect the performance of an AP since there will be many people associated with each AP, is there any setting in the WLC to de associate a client from an AP if its idle for certain time.
I would like to set a time limit for how long a client can be continously connected to the WLAN that provides my guest internet access. The user name/password is hosted on my ACS and authentication is provided by my Cisco NAC. I am using 5508 controllers (7.02) and WCS.
Somewhere in this combination of stuff, there has to be a way to set a two hour time limit.
We have dialup users that are connecting to our portal for uploading/downloading credit information. We are currently using ACS 3.3. There is a requirement that, initially we provide clients with their username/password, but we want to enforce the policy that when the user logs in first time, he should be prompted (forcefully) to change his password.
1) Can this be done in ACS 3.3 2) What solution shall be used in this case ? can it be done in ACS 5.3 ?
Lately I've been experiencing connection problems between my router and cable modem. Every night after 11:00 PM EST, my Internet connection sporadically goes out. I called my ISP who said there was nothing wrong on their end. Plugging directly into my modem allows me to access the Internet. When I wake up in the morning, the connection is back until 11 or later again. I ran WireShark but I'm not sure what to be looking for. There are a lot of random things from the LLMNR protocol like standard query A zmtvrjaql.
I've been asked to generate some report data on a specific WLAN, a limited access WLAN that was added recently. We need to be able to report on "Average and Peak Number of clients (Total)" and "Total Bytes Transferred (all APs)" on a per site basis. The sites involved mainly use 4402 and 5508 WLCs managed by our WCS server. Is there anything on WCS where we can easily get this information (on a monthly basis).
Recently i have setup a WLAN with inside and anchor 5508 controllers. Standard setup. However, one issue I have is I wish to extend the length of time between password changes for users connected in on the guest wlan. At the moment, 30 is max. I dont have an option on the controller to creat accounts for any longer than that. How to I extend it to 90 days or 120 days?
1. I'm interested if it's possible to block certain contetn only at certain time ? e.g. We would like to block facebook from 7:00 to 10:00 and from 11:00 to 15:00. I was going through cisco manuals but can't find the right answer to this.
2. Cisco 871 has 4 LAN interfaces and one WAN interface. Currently WAN interface is connected to adsl modem in bridge mode and LAN 0 interface is connected to switch.
I'm interested if I could use remaining 3 LAN interfaces for adsl connections same as I'm using WAN interface. Then I would create vlans that would use LAN interface 0. Each of those VLAN's would use different adsl connection.I would assign different IP to each VLAN's so users would be able to change their gateway and use different ADSL connection.
I am configuring my 5508 WLCs with SW version 7.0.116.0. I configured a guest ssid with web-authentication enabled, but I cannot retrieve the login page on the controller. I configured the virtual interface with the addredd 1.1.1.1 SSID Layer 2 security: None SSID Layer 3 security: Web Policy enabled
I join the ssid with clients, receive the IP address correctly however when I try to open a web page, the login page does not appear. When I check the client status I see that it stuck in WEBAUTH_REQD state.
We`re using a WLC 5508 with SW 7.2.103.0.The most things are working fine, but i have a problem with the web auth.
Setup:
- Max Concurrent Logins for a user name is set to 1 - Max-Login Ignore Identity Response is set to enable - Web Authentication Type is set to customized
The Problem:
- the user "test" is logged in at device1 (working), the same user "test" try to login at device 2 (is not working, fine!) -> login is not accepted, WLC redirects to the INTERNAL Web Login Page.The problem is the redirect to the internal web login page after failed login. If i try to login with a not existing user, the redirect is working perfect to the customized web login.
I'm setting a Wireless Guest with a WLC 5508 (7.3) and ISE (1.1.2) -- (no anchor).It appears to work (still some adjustments are required), but I found when the guest user log in, it receives the successful login screen and inmediately the guest portal again. If another browser window or tab is open, the user can browse properly.