Does WLC 5508 has capability to create login credentials with specific time of validity? Could it be used in hotel set-up to provide prepaid access account to guest?
View 2 RepliesWe have a Linksys WRT120N wireless router set up at one of our small offices. I noticed recently when trying to log in to the router to make some admin configurations that it will not accept the login credentials when trying to log in from IE10 browser. Works fine from Chrome, IE9, ect. logging in to a linksys router with IE10?
View 3 Replies View Relateduser can't login into domain with right credentials in active directory
View 6 Replies View Relatedfor some reason some AP's are terminating the association to either one of the controllers for a short period of time. When this happens and the AP re-associates itself with either of the active controllers, it looses the information of what group it previously belonged; and it gets dropped in the default group, broadcasting every single SSID available.
What I would like to see happen is that if for some reason an AP terminates association, but restablishes it shortly; it can automatically go to the correct group.
Both WLC are running the same version and have the same amount of licenses, they can hold all the AP's one of the WLC came down. Config-wise they are identical except that the groups are named differently but ultimately configured the same. If that is an issue we can change it no problem since it's only the name.
I am facing a proble in wireless connection speed that is getting very slow at a specific time, i.e., from 12pm to 2pm and from 9 pm to 2 am. The service is unlimitted type contract
View 1 Replies View RelatedHow to block a specific website with a specific time (office hours) for example "facebook" I want to block facebook within 8AM - 12Noon then 12-1 they can access the website, then 1-4 block again the website .
View 3 Replies View RelatedWith M10, I cannot restrict internet access for specific time period. Parent Control feature doesn't satisfy the situation, and there is no build-in access-policy in web-based setup. Are you going to upgrade firmware or Cisco Connect with more flexible access time control?
View 1 Replies View RelatedI've configured three specific AD groups, Admin, Storage, and HelpDesk, with their own commands sets.
This seems to be working fine, but everyone can log into everything, but they can't do anything except exit.
My goal is to not allow anyone to login that is not part of the three AD groups I have specified with the respective command sets.
All the logins hit the Admin account, even though the id in AD is not in the that AD group. I have something screwed up.
Modem: WRT310N Firmware: 1.0.9.0 Build 4 (Latest)If I want to allow Multicast traffic on my network, does this box need a "Check Mark" or does it need to be "Unchecked".Filter Multicast Multicasting allows for multiple transmissions to specific recipients at the same time. Ifmulticasting is permitted, then the Router will allow IPmulticast packets to be forwarded to the appropriatecomputers. Select this feature to filter multicasting. Thisfeature is not selected by default. Filter Multicast. Multicasting allows for multiple transmissions to specific recipients at the same time. If multicasting is permitted, then the Router will allow IP multicast packets to be forwarded to the appropriate computers. Select Enabled to filter multicasting, or Disabled to disable this feature.
WRT610N Manual: Filter Multicast Multicasting allows for multipletransmissions to specific recipients at the same time. Ifmulticasting is permitted, then the Router will allow IPmulticast packets to be forwarded to the appropriatecomputers. It is selected by default. Deselect this featureto disable it.
WRT54G2 Manual: Filter Multicast Multicasting allows for multipletransmissions to specific recipients at the same time. Ifmulticasting is permitted, then the Router will allow IPmulticast packets to be forwarded to the appropriatecomputers. This feature is selected by default. Deselectthis feature to disable it.
We have a 5508 controller with about 40 LAPs, running AIR-CT5500-K9-7-2-103-0-FUS software.The need has arose to have LAPs in various locations that only broadcast specific SSIDs.
I've got seperate dyanmic interfaces already created.We have 3 "Normal" SSIDs that we broadcast to the LAPs already associated with the 5508.2 more SSIDs were created (2 different purposes).
I just can't figure out how to get it to certain LAPs to only broadcast the specific SSIDs, while the rest broadcast the normal 3, but not those 2 new ones.
I would like to be able to allow a specific client to only associate at 6mbit/s -is this possible using the wlc controller 5508? Another option would be to limit a whole w lan ssid to 6mbit/s but i can't find a way to do that either.
Other w lan ssid's on the same access points/controller need full data rates, so i guess i can't use the RF-profiling for this.
Yesterday I was in one of our client premises configuring a WLC 5508 with software 7.2, went through the initial configuration wizard with no problem whatsoever, my issue began when trying to configure a ap-manager interface.In many WLC configuration guides cisco states that for 5508 it is not required to configure an ap-manager interface because the management will suffice, but then they put a side note recommending it's configuration for best practices and better performance. OK so I saw that in an earlier version document and now they do not make the recommendation but the still use the word required and for me that's still is not a limitation. I can't create the ap manager interface because when I put the VLAN ID it says the it is being used by another interface.
View 5 Replies View RelatedI am deploying Cisco 5508 with Cisco 1602 Access Points at one of my client's office. User authentication will be done through Microsoft IAS Server working as RADIUS Server. There is a requirement from my client is that the user over wireless can only be able to login to One device using its user ID. I want to inquire if this can be done through WLC or it can be restricted on the RADIUS server? Looking forward for comments.
View 4 Replies View RelatedI have two WLC-5508 for 50 AP's deployed. One is primary controller & other is secondary.Recently noticed an unknown "authorization failed, no sufficient privileges for user" message poping up while making configuration changes in WLC. Specificly when trying to create an new SSID. WLC Authentication is local. This message poped up earlier once or twice but it didnt prevent from making changes that time.
View 3 Replies View RelatedI have got a wireless project with WLC main office and have 10 sites where ap's are there and ap's getting registerd .we need 4 ssid in all branches same .
ssid guest
ssid scanner
ssid user
vlan 600 main office for scanner 192.168.1.0
in branch
vlan 600 for scanner but ip is 172.16.1.0
and bgp is running . And customer is asking me not to edit the ip range or vlan or create new vlan . but in wlc am not able to create branch network 172.16.1.0 range interface and vlan 600 as vlan 600 i already created for scanner main office 192.168.1.0 So is there a way to do that .
Temprarly one site i did like created vlan 610 in branch no ip . And in main office interface vlan 610 given another ip range . and i created interface in wlc . from branch i can connect the ssid and getting ip . But they dont want to create any aditional vlan or another network . Customer dont have a smartnet contract . They recently baught 2 wlc 5508 and 40 ap 1142.
Using a DIR-655, does anybody know how to create a firewall rule to block all dns requests except to specific servers?
View 2 Replies View RelatedHow to block Internet Connection during specific time.for example i want to block everyday between 8am to 12nn, then 1pm to 5pm.what are the options and better to achieve this kind of policy??
View 6 Replies View RelatedWe have Cisco Cat4503 series L3 Switch and Cisco L2 2560 Series Switches, some of the users want to have a dynamic VLAN membership, and connecting with the network as mobile users,
can it possible and create dynamic VLAN for specific group of users.
1) KA-AGR-DEP-C1941#telnet 74.125.236.133 /source-interface gigabitEthernet 0/1
% telnet connections not permitted from this terminal
How can we enable telnet for the above for testing
2) KA-AGR-DEP-C1941#sh caller
Active Idle
Line User Service Time Time
vty 132 agri VTY 00:02:24 00:00:00
Here we are getting the time of our vty login and not the serial link uptime. How can we enable to check the serial link uptime.
3) CGHSULSOR#traceroute google.com
Translating "google.com"...domain server (164.100.3.1) [OK]
Type escape sequence to abort.
Tracing the route to google.com (74.125.236.129)
1 10.161.20.69 4 msec 4 msec 4 msec
2 10.255.232.38 4 msec 4 msec 4 msec
3 10.255.238.237 40 msec 40 msec 40 msec
4 10.255.221.225 40 msec 40 msec 40 msec
5 * *
CGHSULSOR#telnet 74.125.236.129 80
Trying 74.125.236.129, 80 ...
% Connection refused by remote host
In the above case it's showing refused by remote host. If the port 80 is opened in firewall also if we get this error what will be the issue. As i understood when firewall port is opened we wil get as OPEN
I have the Qwest/Actiontec Q1000 modem/router. I go to the ip address using my web-browser and open up advanced configurations -> access scheduler. I select a computer (and it automatically adds the MAC address) and then the days/times I want the internet to be accessible. However, when I click "add" (to add my internet allowance to the scheduler list) it just says 12:00 to 0:00, which is essentially permanently blocking the internet for that computer.
View 7 Replies View RelatedIs it possible to rename the default webauthentication URL from [URL] to something like [URL]. We are running on 7.0.98.0, is it possible to do http for web authentication and https for Mgmt access if we upgrade the controller software?
We configured our guest wireless with no layer 2 authetication so users can associate with an AP and get an ip adress but they can't go anywhere unless they have a valid username and password(web authentication) - does this affect the performance of an AP since there will be many people associated with each AP, is there any setting in the WLC to de associate a client from an AP if its idle for certain time.
I would like to set a time limit for how long a client can be continously connected to the WLAN that provides my guest internet access. The user name/password is hosted on my ACS and authentication is provided by my Cisco NAC. I am using 5508 controllers (7.02) and WCS.
Somewhere in this combination of stuff, there has to be a way to set a two hour time limit.
Looking to add time of day restrictions to our Guest WLAN that is currently in its pilot phase.
Is there a way to config time of day access to a WLAN ?
We have dialup users that are connecting to our portal for uploading/downloading credit information. We are currently using ACS 3.3. There is a requirement that, initially we provide clients with their username/password, but we want to enforce the policy that when the user logs in first time, he should be prompted (forcefully) to change his password.
1) Can this be done in ACS 3.3
2) What solution shall be used in this case ? can it be done in ACS 5.3 ?
Lately I've been experiencing connection problems between my router and cable modem. Every night after 11:00 PM EST, my Internet connection sporadically goes out. I called my ISP who said there was nothing wrong on their end. Plugging directly into my modem allows me to access the Internet. When I wake up in the morning, the connection is back until 11 or later again. I ran WireShark but I'm not sure what to be looking for. There are a lot of random things from the LLMNR protocol like standard query A zmtvrjaql.
View 2 Replies View RelatedI've been asked to generate some report data on a specific WLAN, a limited access WLAN that was added recently. We need to be able to report on "Average and Peak Number of clients (Total)" and "Total Bytes Transferred (all APs)" on a per site basis. The sites involved mainly use 4402 and 5508 WLCs managed by our WCS server. Is there anything on WCS where we can easily get this information (on a monthly basis).
View 1 Replies View RelatedRecently i have setup a WLAN with inside and anchor 5508 controllers. Standard setup. However, one issue I have is I wish to extend the length of time between password changes for users connected in on the guest wlan. At the moment, 30 is max. I dont have an option on the controller to creat accounts for any longer than that. How to I extend it to 90 days or 120 days?
View 1 Replies View RelatedI have Cisco 871 router with 12.3. OS version.
1. I'm interested if it's possible to block certain contetn only at certain time ? e.g. We would like to block facebook from 7:00 to 10:00 and from 11:00 to 15:00. I was going through cisco manuals but can't find the right answer to this.
2. Cisco 871 has 4 LAN interfaces and one WAN interface. Currently WAN interface is connected to adsl modem in bridge mode and LAN 0 interface is connected to switch.
I'm interested if I could use remaining 3 LAN interfaces for adsl connections same as I'm using WAN interface. Then I would create vlans that would use LAN interface 0. Each of those VLAN's would use different adsl connection.I would assign different IP to each VLAN's so users would be able to change their gateway and use different ADSL connection.
could i create new guest accounts via CLI? i know that via GUI with lobby embassador account i can create them. I have WLC 5508 (7.0.116).
View 7 Replies View RelatedWe have currently a WLC 5508 using 8 ports bundled into an etherchannel.
We would like to remove one physical from this etherchannel and use it for providing an access to Internet only,
Is it possible to create an virtual interface on the WLC that points only on this port?
(we would like to have a physical separation for the Internet traffic only and encrypt the capwapp up to the WLC).
I am configuring my 5508 WLCs with SW version 7.0.116.0. I configured a guest ssid with web-authentication enabled, but I cannot retrieve the login page on the controller. I configured the virtual interface with the addredd 1.1.1.1 SSID Layer 2 security: None SSID Layer 3 security: Web Policy enabled
I join the ssid with clients, receive the IP address correctly however when I try to open a web page, the login page does not appear. When I check the client status I see that it stuck in WEBAUTH_REQD state.
We`re using a WLC 5508 with SW 7.2.103.0.The most things are working fine, but i have a problem with the web auth.
Setup:
- Max Concurrent Logins for a user name is set to 1
- Max-Login Ignore Identity Response is set to enable
- Web Authentication Type is set to customized
The Problem:
- the user "test" is logged in at device1 (working), the same user "test" try to login at device 2 (is not working, fine!) -> login is not accepted, WLC redirects to the INTERNAL Web Login Page.The problem is the redirect to the internal web login page after failed login. If i try to login with a not existing user, the redirect is working perfect to the customized web login.
I'm setting a Wireless Guest with a WLC 5508 (7.3) and ISE (1.1.2) -- (no anchor).It appears to work (still some adjustments are required), but I found when the guest user log in, it receives the successful login screen and inmediately the guest portal again. If another browser window or tab is open, the user can browse properly.
View 5 Replies View Related