Dot1x (Switch) Question with MAC bypass & Web Auth

Similar Messages

• RED Workflow questions with Mac Pro (including third party plugins)

  Hello all,
  I’ve been searching many forums for the better part of a day trying to get some workflow questions sorted. I’m experiencing (very) slow export times, and mediocre playback for a machine that should be screaming fast.
  Here is what I’m working with:
  2014 Mac Pro
  -2.7 GHz 12-core intel xeon E5
  -64GB Ram
  -Dual AMD FirePro D700 6GB
  -1TB Flash Storage
  Editing all footage off 96TB Raid 6 mini-sas server (getting about 1100mbs read/write rate according to AJA system test) which is faster than any Thunderbolt/TB2 drive array I have.
  Media I work with is footage from the RED Epic (normally 5K) as well as DSLR footage from the 5d.
  Software:
  -PrPro CC 2014 (8.1)
  -Magic Bullet Looks 2.5.2
  My question(s) pertains to RED post-pro workflow in combination with third party plug-ins and the different approaches to make it more efficient.
  Right now, majority of the clients need a 1080p HD master, and they are generally anywhere from 2-8 minutes (usually). So my sequence settings are as follows:
  Video:
  Editing Mode: RED Cinema
  Size: 1920 x 1080
  Audio: 48Hz
  Video Previews
  Preview File Format: I-Frame Only MPEG
  Codec: MPEG I-Frame
  1920x1080
  Maximum Bit Depth unchecked
  Maximum Render Quality unchecked
  Composite in Linear Color checked
  Export Settings
  H.264
  1920x1080
  VBR 1 pass
  Target Bitrate 12mbs
  Max bitrate 12mbs
  Maximum render quality/depth/previews unchecked
  Issues I have:
  -Playback is fine at 1/2 or even full, but once effects (especially magic bullet looks) start to go on the clips, it’s very choppy and has difficult playback at 1/4
  -Export times (especially with magic bullet looks) will take the better part of 1-4 hours for a video that is 3-6 minutes long. This doesn’t seem like it should be the case for a maxed out MacPro
  So my questions are:
  Do these seem like the right sequence/export settings for mastering at 1080p? If not, what would you suggest?
  Would using offline editing help at all?
  Do you place your effects on adjustment layers?
  Is there anyway to improve export settings when using an array of filters?
  Have you stopped using third party plugins for their inefficiency in unreliability and switched to more integrated applications like SpeedGrade?
  Is there any other tweaks that you would suggest for RED workflow with PrPro?
  Should I consider switching to FCPX or (besides the iMovie-likeness) does it carry problems of its own?

  Hi This Is Ironclad,
  thisisironclad wrote:
  Hello all,
  I’ve been searching many forums for the better part of a day trying to get some workflow questions sorted. I’m experiencing (very) slow export times, and mediocre playback for a machine that should be screaming fast.
  The biggest issue is that most people have is that updating OS X causes certain folders to be set to Read Only. See this blog post: Premiere Pro CC, CC 2014, or 2014.1 freezing on startup or crashing while working (Mac OS X 10.9, and later).
  thisisironclad wrote:
  Hello all,
  I’ve been searching many forums for the better part of a day trying to get some workflow questions sorted. I’m experiencing (very) slow export times, and mediocre playback for a machine that should be screaming fast.
  Here is what I’m working with:
  2014 Mac Pro
  -2.7 GHz 12-core intel xeon E5
  -64GB Ram
  -Dual AMD FirePro D700 6GB
  -1TB Flash Storage
  It's a nice base system. How about an additional speedy disk for media cache files. You also did not mention which version of OS X you are running.
  thisisironclad wrote:
  Software:
  -Magic Bullet Looks 2.5.2
  The Red Giant website does not indicate that this software is yet updated to work with Premiere Pro CC 2014.1 (8.1). Proceed with caution here.
  thisisironclad wrote:
  Issues I have:
  -Playback is fine at 1/2 or even full, but once effects (especially magic bullet looks) start to go on the clips, it’s very choppy and has difficult playback at 1/4
  I would not use this plug-in until you get the OK from the manufacturer.
  thisisironclad wrote:
  -Export times (especially with magic bullet looks) will take the better part of 1-4 hours for a video that is 3-6 minutes long. This doesn’t seem like it should be the case for a maxed out MacPro
  Again, I suspect your plug-in.
  Keep in mind that exports are largely CPU based but you can make sure that GPU acceleration is enabled for AME at the bottom of the Queue panel.
  thisisironclad wrote:
  So my questions are:
  Do these seem like the right sequence/export settings for mastering at 1080p? If not, what would you suggest?
  It's OK.
  thisisironclad wrote:
  Would using offline editing help at all?
  No need when you should be able to edit natively. Relinking might also be an issue.
  thisisironclad wrote:
  Do you place your effects on adjustment layers?
  That's one way you can do it with the benefit of being more organized.
  thisisironclad wrote:
  Have you stopped using third party plugins for their inefficiency in unreliability and switched to more integrated applications like SpeedGrade?
  I do. Of course, that's a preference.
  thisisironclad wrote:
  Is there any other tweaks that you would suggest for RED workflow with PrPro?
  Try the following:
  Sign out from Creative Cloud, restart Premiere Pro, then sign in
  Update any GPU drivers
  Trash preferences
  Ensure Adobe preference files are set to read/write(Hopefully you checked this out already)
  Delete media cache
  Remove plug-ins
  If you have AMD GPUs, make sure CUDA is not installed
  Repair permissions
  Disconnect any third party hardware
  If you have a CUDA GPU, ensure that the Mercury Playback Engine is set to CUDA, not OpenCLYou have AMD GPUs.
  Disable App Nap
  Reboot
  thisisironclad wrote:
  Should I consider switching to FCPX or (besides the iMovie-likeness) does it carry problems of its own?
  I really shouldn't answer that question.
  Hope this helps.
  Thanks,
  Kevin

• PALM with WLC 4400 (Web Auth Portal)

  We cannot get the Web Portal splash page to display on wireless Palm units....the site simply hangs. Is there any fixes out there for this problem. Thanks for all replies!!

  Has anyone else seen this Palm/WebAuth issue or found a fix? I am seeing this on our Palm devices too. Running 4.x code with internal guest auth, laptops work just fine with the https://1.1.1.1 redirect, but the Palm just hangs. Could it be the certificate is not valid and the Palm has no way to prompt for that message like a laptop. Any ideas?

• WLC (Foreign-Anchor), problem with the external web auth -- ISE

  hello guys
  I am currently designing a platform for a guest network, which must be isolated from the local network, the following equipment:
  ISE 1.2 (Cisco SNS- 3415-K9)
  WLC 7.0.230.0 (Cisco controller 5508)---> wlc Foreign
  WLC 7.0.230.0 (Cisco controller 5508)---> wlc Anchor.
  The EoIP tunnel between wlc is performed successfully.
  The wireless client gets IP address of the anchor wlc (DHCP server).
  Test 1:
  I configure the WLC ANCHOR with local web authentication (internal), the wireless client is authenticated by WLC and navigate successfully.
  Test 2:
  Configure the WLC to anchor external web authentication (ISE). configure a user in ISE guest portal.
  The wireless client gets IP address of the anchor wlc (DHCP server), attempting to navigate not display the guest portal.
  Debug a wireless client trying to connect to the guest network is attached.

  Thanks for your help Scott...
  Now I presents another problem with the guest portal page. The wireless client obtains IP address and managed to reach the guest portal page, then enter the username and password page tells me it was successful. When I try to browse again brings me to the portal visitor page and asks me to enter user name and password.
  test 1:
  the username and password created for away was verified.
  Scoot will have some implementation details with the same scenario I am developing? I think I'm missing some details in the ISE does not allow me to navigate the entrance for visitors to be successful.

• Is Datavideo SE-500 Digital A   V Switcher compatible with mac video outputs

  I need to find a video mixer for braodcasting a prerecorded show. I am wondering if this system oututs s-video feed.

  Macs do not have s-video outputs.  I'm not sure they ever did (maybe some really old ones did).
  All recent Macs have either DVI, miniDisplayPort or Thunderbolt outputs for video.  Apple does not make analog video adapters for any of the more recent Macs that have these video outputs. 
  Oddly enough, I happened on a thread about an inexpensive converter called the PC-to-EZ that may work (about $50 at Amazon).  Apparently it works quite well.  You will need the Apple miniDisplayPort-VGA adapter also.
  Here is a link to the thread I mentioned.  Scroll to page 2, see the long response from user Lougle for details.
  I'm curious, if you are purchasing a video mixer, why are you not going with a model that supports digital video inputs?

• So confused with Mac's web server MYSQL setup

  I'm a recent Mac convert, and while I use to install apache~php~mysql on my PC I've been enjoying my pre-installed apache~php~mysql on my Mac... except one thing, I have no idea how to access MYSQL. I did a phpinfo(); check and it says that MYSQL has been enabled. I installed Sequel Pro to help manage MYSQL databases, but I can't log in. What's the default username and password? I just need to fill the following in:
  Name:
  Host:
  Username:
  Password:
  Any amount of help would be great, thanks in advance~!

  Try the Unix forum under OS X Technologies.

• 5760 Central Web Auth with ISE

  Hi,
  I am having problems with getting central web auth to work on the 5760, I cant seem to find any documentation for the 5760-Central Web Auth.
  The setup is with a Cisco 5760 and Cisco ISE, for guest users to be re-directed to ISE guest portal to authenticate. Has anyone configured this or have any advice, that would be great.
  Thanks

  Hi Roger,
  I have gotten CWA running on the 5760 with ISE, below is the config for the guest SSID:
  wlan Guest 1 TEST-guest
  aaa-override
  ip dhcp required
  mac-filtering cwa_macfilter
  mobility anchor 10.1.1.100
  nac
  no security wpa
  no security wpa akm dot1x
  no security wpa wpa2
  no security wpa wpa2 ciphers aes
  security dot1x authentication-list ISE_Auth_Group
  session-timeout 14400
  no shutdown
  ! ***You will need the following commands as well:
  ip http server
  ip http authentication local
  ip http secure-server
  aaa authentication login ISE_Auth_Group group ISE
  aaa authorization network cwa_macfilter group ISE
  Hope it helps =)

• Having trouble with custom web auth page on 4404

  Hi all
  I am having trouble with a custom web auth page on my controller, we have edited the original file, but when we click login it goes to page cannot be displayed and it doesnt redirect to the page I want, however when I close the window and reopen it has already authenticated me.
  Has anyone got a copy of some working html code I can use ?
  cheers

  There is sample Web Authentication bundle avaiable for download from cisco.com. if you go to the software download page and go to Wireless->Standalone Controllers->4404 you should see a link for Wireless Lan Web Authentication Bundle.
  Its the same bundle whether you have a WiSM, 4404 or 2100

• Anchor WLC web-auth secure web issue

  Hi all,
  I am running into an issue with disabling the web-auth secure web on an 5508 anchor WLC running 7.2.110. After the WLC rebooted, the guest authentication portal didn't show up...I could see the IE tab showed Web Auth Redirect though...Changed again the web-auth secure web to enable and rebooted the WLC fixed the issue...Has anyone ran into this before and any idea how to fix it?
  Thanks in advanced for your input!
  Robin

  The custome page might be from Cisco web auth page sample by the look of the webpage. I don't know how to verify whether or not it was hard coded for HTTPS...
  Do I also need to diable the web-auth secure web on the main controller?
  This anchor is running in production and has to reboot after hour, will do the test and let you know how it goes.
  Thanks!
  Robin

• How to generate CSR on switches for web auth with NGS

  Hello
  I am doing a dot1x solution with web auth on cisco 3750 switches.
  Once the wired client get put into web auth state (after dot1x and mab) and goes to a website, he gets a certificate warning. This is because the certificate of the cisco switch is selfsigned.
  I want to use a verisign certificate to solve this error, but I cannot find a way to generate a CSR on a switch. I only found a guide how to request a certificate from a CA on the local network, but this is also not a solution, because the clients using the web auth, will not know the internal CA.
  Is there any way to solve this?
  Greetings
  Steven

  Hi Steven,
  The below document is actually for IOS SSLVPN, but the certificate portion should be the same:
  http://www.cisco.com/en/US/prod/collateral/iosswrel/ps6537/ps6586/ps6657/white_paper_c07-372106_ps6657_Products_White_Paper.html
  Search for "Appendix B" and it goes into creating a trustpoint and then one section is for self-signed and another is for generating a certificate request to send to an external CA.
  Once a trustpoint is created the command to actually generate the CSR is "crypto pki enroll ".
  This document goes into a little more detail on all the indivual commands and what they do:
  http://www.cisco.com/en/US/docs/ios/sec_secure_connectivity/configuration/guide/sec_cert_enroll_pki.html
  Also you could use something external to the switch like OpenSSL to generate the CSR/private key and then use that to request a cert from your Verisign CA and then import the cert/keypair into the IOS device.
  Thanks,
  Nate

• Web Auth with Mac Filtering

  I am trying to setup a scenario where a user logs in via Web Auth and witha  successfull connection the Mac Address is remembered for 7 days. That way if the user connects again during the course of 7 days they aren't required to authenticate via web auth again they just get access. After 7 days they will need to login again through the web auth. Similar scenario to what you see at a Hotel wireless network. Anyone know how I would go about setting up the dyanmic mac filtering and set the timer for 7 days? With that said I want it to be for a single SSID.

  well, it's not possible with just the WLC.
  You can do it, but you need to have a way to pull the MAC address from the webauth page, and insert that into a LDAP db, which you control the age out process in.
  Then on a subsequent visits they get mac-authed instead of having to re-accept the page.
  in the webauth config you would check the On MAC filter failure box.
  HTH,
  Steve
  Please remember to rate useful posts, and mark questions as answered

• Auto login with web auth?

  I have a guest WLAN on a mobility anchor that uses web auth for access. There is a small set of local users, but the majority of the auth comes from a Radius server. Question is, can I setup some type of policy that will auto login users based on MAC address so they don't have to web authenticate?
  Thanks!
  Edit: I have seen where you can enable mac filtering on the WLAN and specify individual mac addresses to permit. This would work, but I still want web auth for the majority of users. Only a few users should be automatically connected. The rest should still authenticate via web auth.

  Well I have some fantastic news.... and then some horrible news at the same time...
  In 7.0.116.0 a new feature was introduced called web auth on mac-filter failure.  Basically it does exactly what I think you are asking. Right?   You mac filter your wlan, and then if anyone fails the mac filter, they can web authenticate. 
  Unfortunately, it doesn't work in an Anchored scenario  as the Mac filter is L2 performed on the Foreign WLC, and the Anchor does L3 with no knowledge the Foreign was good to bypass webauth....   CSCts54424 is tracking this behavior for Anchor scenario, but I don't think it is planned to go into 7.0......

• Guest Anchor with web auth using ISE guest portal

  Hello All,
  Before launching into my exact issues, could anyone confirm if they have completed a wireless Guest anchor setup using 2504 controllers on 7.4 as the anchor (5508 is the foreign) with webauth external redirection at ISE 1.1.3 using ISE Guest Services?
  I am attempting this for an internal POC and have hit a couple of issues. Firstly I am looking for correct configuration confirmation prior to going in depth with a couple of the issues. I've been using the TrustSec 2.1 how to guides to build the parts I am not strong on so if anyone has actual completed this setup, I'd love to go through it with you.
  massive thanks to anyone that can assist.
  JS.

  Thanks for the reply RikJonAtk.
  so to start with, based on the trust sec documents, of the guest WLAN on the anchor I need to configure mac filtering at the layer 2 security menu as well as enable RADIUS NAC under the Advanced tab. But when I do this, I get an error message that states that mac filitering and RADIUS NAC cannot be enable at the same time.
  Additionally, if I just enable the RADIUS NAC setting under the Advanced tab in the WLAN, I get another error message that states that the priority order for Web-Auth can only be set for radius, so I go to the AAA server tab and send local and LDAP to the not use column and hit apply. If I move to another menu then check the priority order again under the AAA servers tab, the local and LDAP have been moved back to the menu field to be used again.  So I initially though it might be a bug, but I was hoping to find someone here that has done this already and can look at my issues and maybe walk me through their configs, which I'll mirror and see how it goes.
  Thanks in Advanced,
  JS

• Thinking about switching to Intel Mac Mini... questions for the cognoscenti

  Greetings:
  I've been checking out the new Intel Mac Minis and I was thinking of purchasing one to replace my AV computer (PC) in the living room, which the GF currently uses. She's a typical user: watches video files/DVDs, uses iTunes excessively , sends web email and surfs the Net.
  I've fairly decided on an Intel Core Duo Mini. Since I know the basics about Mac, I had a few questions:
  1. What's an appropriate amount of RAM for a non-power user? Would 1 GB be more than enough or overkill? I'm used to running 1GB in a Windows machine. Plus, I'm also used to popping in memory when I needed to upgrade, and I see that's not really an option on the Mini.
  2. How would I integrate it into a Windows network? Would the Mini be able to share files with a Windows machine and vice versa?
  3. Regarding network integration: how easily would the Mini integrate into an existing Linksys 802.11g home network?
  Lastly, this isn't really an (easily) answerable question, but how easy do you think it would be for an average computer user to get up and running on a Mac after having used Windows machines all their life?
  Thanks, I look forward to your responses.
  -Craig
  Homebuilt   Windows XP Pro   2GB PC 3500 RAM, 500GB SATA RAID (2x250), ATI AIW 9700 Pro, Athlon XP3200

  Hello, I can only really answer Q's 1 & 3 as I've only owned a mini for the past 24 hours.
  I purchased the Single Core after taking advice of the Apple Store staff in Manchester, they were quite helpful. I only really produce music (have used Ableton, Acid Pro etc on PC for quite a while), surf the web, do my banking etc so was advised that the Single Core with 512mb would be sufficent. I work for an ISP and have 10 years plus knowledge of Windows but I was prepared to listen and learn having never used a mac before. From my own experience, I'm used to having to use a pc with minimum spec ie min 1.2GHz processor, 1gb ram in order to produce music without any pops or clicks (latency), though sound cards also play a part. I've also had to keep internet activity well away from any PC that I produce music on in that respect. Anyhow, I'm going off on a tangent here but I was playing around with garageband last night and I've never known music production to run so smoothy on 512mb RAM, never known it before so was extremely impressed and certain I made the right purchase opting for Solo Core. You may not actually NEED the full 1gb though this depends what you're doing. To answer your other question, my mac slotted straight into my home nertwork without making any additional configuration.
  i.e how long does it take to get used to a mac, I've found there is a learning curve but it's not THAT difficult, it's just the odd thing such as no right click of the mouse that takes some getting used to.

• Windows with Mac-basic questions

  I had been using a my Mac for work; then switched to my notebook PC (Dell, D630) . That becuase I had to use outlook and ACT and a few other programs that are work related.
  I would like to update my MacBook to Leopard, and use boot-camp to run Windows when I am on the road etc,or in office mainly to get access to read & do emails and ACT databases while off line.
  Can someone assist with following Questions:
  1. What do I need to do to update my Macbook. What is recommended memory to support this?
  2. After Leopard upgrade, what do I need to do next?
  3. If I instal windows 2000, do I have to install windows office too? ie when I am running windows, I need windows office, Outlook etc, etc. ? Is there any degradation of speed or features?
  4. If I am in Windows and, for example, I simply download from a received e-mail, an attached MS Word file to store in a Document folder, do I have two folders (one when with Mac OS; the other with Windows? . If I save a doc when the Windows environment, and then later reopen to Mac envioronment , can I still easily get at that Word doc in that common folder? And Vice versa, if I am working, say in Mac Word and I save a file to 'Folder A', if I then later switch & re-open to Windows environment on my Mac at work (example) can I see & get to 'Folder A '.
  Thanks,

  IBoughtaMac wrote:
  1. If I load MS Exchange on Mac and run on my MacBook when in the Window XP environment, can I get to MS Exchange as I normally do on notebook PC, does it function in this situation ? Any experience with that?
  I presume you mean install Outlook.
  Generally Exchange has to be installed on a Windows Server.
  When running Windows XP on a Mac in Boot Camp, it is the same (well a little faster) as a Windows PC.
  Virtually everything you can do on a Windows PC you will be able to do on a Mac running Windows.
  Outlook will install, run and can be configured to work with an Exchange server with no problems.
  2. Ditto , ACT. Can I use ACT if I load the application? Any experience with that?
  No idea what ACT is.
  But if it runs on Windows then it can run on a Mac running Windows.
  3. Can I use MS Explorer when under the Windows environment (on the Mac). Limitations?
  Yes, no limitations.
  If it runs on Windows then it can run on a Mac running Windows.
  4. Assume I am in Windows on Mac via Boot Camp. Assume I have MS word etc for Windows . Lets say I get an e-mail with an attached word file or whatever doc. If I then save it to say, ' My office work ,Folder A'. Close the Window environment, and Open Mac , can I get to same folder & open same doc?
  Yes, if the Windows partition is FAT32, you will be able to make and save changes.
  If the partition is NTFS then you will only be able to read the Word file.
  Note when running Windows you can not read the Mac partition unless you have third party tools.
  I did get a reply about this item (no. 5) but it had buzz words such as NTFS and FAT VOL, I dont understand that,sorry,
  A hard drive (the disk) in order to work with an operating system needs to be formatted.
  Windows can use two formats, one called FAT and one called NTFS.
  Generally NTFS is preferred when running Windows, but FAT is more compatible with OS X for reading and writing files.
  iFelix