You are here
WL0058 - 9800 WLC L3 Security Local Web Auth Portal (Part 2)
Difficulty Level:
Lab Document:
<Please login to see the content>
Category:
Wireless
Video Download:
Title: WL0058 - Video Download $17.00
The video shows you how to enable Local Web Authentication (LWA) on Cisco 9800 WLC. We will create a guest SSID that is protected by web authentication, and look at different configuration aspects including portal customization, installation of trusted certificate, and pre-auth ACL and URL. The lab finishes with a discussion around HTTPS redirect.
Part 2 of this video covers an installation of trusted certificate
Topic:
-
Web Authentication Portal
- Web Policy
- Policy Profile
- Virtual IP
- Portal Customization
- Trusted Certificate
- Pre-Auth ACL
- Pre-Auth URL
- HTTPS Redirect
About Author
Metha Chiewanichakorn, CCIE#23585 (Ent. Infra, Sec, SP), is a Cisco networking enthusiast with years of experience in the industry. He is currently working as a consulting engineer for a Cisco partner. As a founder of and an instructor at labminutes.com, Metha enjoys learning and challenges himself with new technologies.
2 comments
LWA client authentication WLC 9800 17.9.3
Hello Metha,
Excellent content. What is the best way to keep active user sessions in LWA in flex conect mode so that it does not ask for credentials for as long as possible? Currently I have configured in the policy:
Session Timeout: 86400
Idle Timeout: 100000
In Web Auth:
Sleeping Client: 43200
Thank you so much.
LWA client authentication WLC 9800 17.9.3
Those sound like reasonable settings. It is usually acceptable to have users login once a day. For anything longer, you may want to look into CWA on ISE instead which will give you much better control.