Urgent - NAC+ACS+Web-Auth in Wired environment - https redirection - Certificate Issue

Hi everyone.
I'm seting up an environment which uses Web-Auth for my wired and wireless networks. I have followed the exact same steps in this Cisco page to get it working:
http://www.cisco.com/en/US/prod/collateral/iosswrel/ps6537/ps6586/ps6638/app_note_c27-577490.html
I'm only testing the wired environment right now.
I plug a PC to a port, and I try to get access to a randon internet page (for example www.cisco.com) . It is automatically redirected to authentication page. I type the username and password, but, when authentication passes, it goes automatically to https version of the page, which brings me to the problem. I have to add an exception (continue on this webpage option on IE) to that page in order to continue with the authentication and get the access to the internet. I'm attaching the steps I have to perform:
I think it is related to Certificate, but I'm not quite sure which or where. I'd like to have some advices from you to avoid this problem. I'm not planning to buy any certificates, so if I could skip the https would be great.
Thanks a bunch for your help
Victor Alves

You need a certificate that your client will trust.
Easy way is to buy one from an official source. All PC browsers have a list of the major cert vendors so that's automatically trusted.
You could issue the certificate yourself also, for free :
-Self signed : the signing authority is the switch ... That means you need all your PCs to trust all your switches. Manual operation ...
-You create an enterprise CA and create a certificate for all your switches : you just need your clients to trust your enterprise CA so that's still a manual task but a simpler one.
When laptops are integrated in a domain, it's usually easier to create your CA on windows server and push the certificates to the clients automatically

Similar Messages

  • Web Auth FAIL on guest wlan

    We have a 2100 Wlan controller set up with multiple wlans.
    We are having problems on the Guest VLAN in that everytime a user tries to authenticate via Web Auth, they fail and are redirected to the username/password page.
    Local accounts have been added and the WLAN has been set up to use web auth but each time a user tries to authenticate the following message is in the log:-
    NOV 21 09:47:21.852 pem_api.c:4513 PEM-1-WEBAUTHFAIL : Web Authentication Failure for station aa:bb:cc:dd:ee:ff
    If the box is rebooted it works for around an hour, then begins to fail again.
    Any ideas?

    Here is the configuration guide for the Webauthentication for WLC with example it may help you to troubleshoot and configuration
    http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a008067489f.shtml

  • Web-Auth not working on Apple IOS devices

    I am using L3 web-auth (when no mac filter match). I currently have downloaded the custom page to the controller. It works fine with Windows and Android. I can not get to the redirect page on Apple IOS though.
    In my pre-auth ACL I have added rules to allow any traffic to and from 17.0.0.0/8. I can see that it is getting hits.         
    I have also tried the config netwrok web-auth captive-bypass enable command.
    Neither of these have helped.
    My Apple client is getting an IP address.
    Any ideas? Thanks

    WLAN on Anchor controller:
    (Cisco Controller) >show wlan 2
    WLAN Identifier.................................. 2
    Profile Name..................................... HopeNet
    Network Name (SSID).............................. HopeNet
    Status........................................... Enabled
    MAC Filtering.................................... Enabled
    Broadcast SSID................................... Disabled
    AAA Policy Override.............................. Disabled
    Network Admission Control
      Client Profiling Status ....................... Disabled
       DHCP ......................................... Disabled
       HTTP ......................................... Disabled
      Radius-NAC State............................... Disabled
      SNMP-NAC State................................. Disabled
      Quarantine VLAN................................ 0
    Maximum number of Associated Clients............. 0
    Maximum number of Clients per AP Radio........... 200
    Number of Active Clients......................... 2
    Exclusionlist Timeout............................ 60 seconds
    Session Timeout.................................. 3600 seconds
    CHD per WLAN..................................... Enabled
    --More-- or (q)uit
    Webauth DHCP exclusion........................... Disabled
    Interface........................................ guest-dmz
    Multicast Interface.............................. Not Configured
    WLAN IPv4 ACL.................................... unconfigured
    WLAN IPv6 ACL.................................... unconfigured
    DHCP Server...................................... Default
    DHCP Address Assignment Required................. Disabled
    Static IP client tunneling....................... Disabled
    PMIPv6 Mobility Type............................. none
    Quality of Service............................... Silver
    Per-SSID Rate Limits............................. Upstream Downstream
    Average Data Rate................................   0    0
    Average Realtime Data Rate.......................   0    0
    Burst Data Rate..................................   0    0
    Burst Realtime Data Rate.........................   0    0
    Per-Client Rate Limits........................... Upstream Downstream
    Average Data Rate................................   0    0
    Average Realtime Data Rate.......................   0    0
    Burst Data Rate..................................   0    0
    Burst Realtime Data Rate.........................   0    0
    Scan Defer Priority.............................. 4,5,6
    Scan Defer Time.................................. 100 milliseconds
    WMM.............................................. Allowed
    --More-- or (q)uit
    WMM UAPSD Compliant Client Support............... Disabled
    Media Stream Multicast-direct.................... Disabled
    CCX - AironetIe Support.......................... Enabled
    CCX - Gratuitous ProbeResponse (GPR)............. Disabled
    CCX - Diagnostics Channel Capability............. Disabled
    Dot11-Phone Mode (7920).......................... Disabled
    Wired Protocol................................... None
    Passive Client Feature........................... Disabled
    Peer-to-Peer Blocking Action..................... Drop
    Radio Policy..................................... All
    DTIM period for 802.11a radio.................... 1
    DTIM period for 802.11b radio.................... 1
    Radius Servers
       Authentication................................ Disabled
       Accounting.................................... Disabled
       Dynamic Interface............................. Disabled
    LDAP Servers
       Server 1...................................... 10.4.21.177 389
       Server 2...................................... 10.4.21.178 389
    Local EAP Authentication......................... Disabled
    Security
       802.11 Authentication:........................ Open System
    --More-- or (q)uit
       FT Support.................................... Enabled
       Static WEP Keys............................... Disabled
       802.1X........................................ Disabled
       Wi-Fi Protected Access (WPA/WPA2)............. Disabled
       Wi-Fi Direct policy configured................ Disabled
       EAP-Passthrough............................... Disabled
       CKIP ......................................... Disabled
       Web Based Authentication...................... Enabled-On-MACFilter-Failure
    IPv4 ACL........................................ web-auth-test
    IPv6 ACL........................................ Unconfigured
    Web-Auth Flex ACL............................... Unconfigured
    Web Authentication server precedence:
    1............................................... local
    2............................................... radius
    3............................................... ldap
       Web-Passthrough............................... Disabled
       Conditional Web Redirect...................... Disabled
       Splash-Page Web Redirect...................... Disabled
       Auto Anchor................................... Enabled
       FlexConnect Local Switching................... Disabled
       flexconnect Central Dhcp Flag................. Disabled
       flexconnect nat-pat Flag...................... Disabled
       flexconnect Dns Override Flag................. Disabled
    --More-- or (q)uit
       FlexConnect Vlan based Central Switching ..... Disabled
       FlexConnect Local Authentication.............. Disabled
       FlexConnect Learn IP Address.................. Enabled
       Client MFP.................................... Optional but inactive (WPA2 not configured)
       Tkip MIC Countermeasure Hold-down Timer....... 60
    Call Snooping.................................... Disabled
    Roamed Call Re-Anchor Policy..................... Disabled
    SIP CAC Fail Send-486-Busy Policy................ Enabled
    SIP CAC Fail Send Dis-Association Policy......... Disabled
    KTS based CAC Policy............................. Disabled
    Band Select...................................... Disabled
    Load Balancing................................... Disabled
    Multicast Buffer................................. Disabled
    Mobility Anchor List
    WLAN ID     IP Address            Status
    2           10.241.15.5           Up                             
    802.11u........................................ Disabled
    MSAP Services.................................. Disabled
    WLAN on foreign controller:
    WLAN Identifier.................................. 4
    Profile Name..................................... HopeNet
    Network Name (SSID).............................. HopeNet
    Status........................................... Enabled
    MAC Filtering.................................... Enabled
    Broadcast SSID................................... Disabled
    AAA Policy Override.............................. Disabled
    Network Admission Control
      Client Profiling Status ....................... Disabled
       DHCP ......................................... Disabled
       HTTP ......................................... Disabled
      Radius-NAC State............................... Disabled
      SNMP-NAC State................................. Disabled
      Quarantine VLAN................................ 0
    Maximum number of Associated Clients............. 0
    Maximum number of Clients per AP Radio........... 200
    Number of Active Clients......................... 2
    Exclusionlist Timeout............................ 60 seconds
    Session Timeout.................................. 3600 seconds
    CHD per WLAN..................................... Enabled
    --More-- or (q)uit
    Webauth DHCP exclusion........................... Disabled
    Interface........................................ management
    Multicast Interface.............................. Not Configured
    WLAN IPv4 ACL.................................... unconfigured
    WLAN IPv6 ACL.................................... unconfigured
    DHCP Server...................................... Default
    DHCP Address Assignment Required................. Disabled
    Static IP client tunneling....................... Disabled
    PMIPv6 Mobility Type............................. none
    Quality of Service............................... Silver
    Per-SSID Rate Limits............................. Upstream Downstream
    Average Data Rate................................   0    0
    Average Realtime Data Rate.......................   0    0
    Burst Data Rate..................................   0    0
    Burst Realtime Data Rate.........................   0    0
    Per-Client Rate Limits........................... Upstream Downstream
    Average Data Rate................................   0    0
    Average Realtime Data Rate.......................   0    0
    Burst Data Rate..................................   0    0
    Burst Realtime Data Rate.........................   0    0
    Scan Defer Priority.............................. 4,5,6
    Scan Defer Time.................................. 100 milliseconds
    WMM.............................................. Allowed
    --More-- or (q)uit
    WMM UAPSD Compliant Client Support............... Disabled
    Media Stream Multicast-direct.................... Disabled
    CCX - AironetIe Support.......................... Enabled
    CCX - Gratuitous ProbeResponse (GPR)............. Disabled
    CCX - Diagnostics Channel Capability............. Disabled
    Dot11-Phone Mode (7920).......................... Disabled
    Wired Protocol................................... None
    Passive Client Feature........................... Disabled
    Peer-to-Peer Blocking Action..................... Drop
    Radio Policy..................................... All
    DTIM period for 802.11a radio.................... 1
    DTIM period for 802.11b radio.................... 1
    Radius Servers
       Authentication................................ Disabled
       Accounting.................................... Disabled
       Dynamic Interface............................. Disabled
    Local EAP Authentication......................... Disabled
    Security
       802.11 Authentication:........................ Open System
       FT Support.................................... Disabled
       Static WEP Keys............................... Disabled
       802.1X........................................ Disabled
    --More-- or (q)uit
       Wi-Fi Protected Access (WPA/WPA2)............. Disabled
       Wi-Fi Direct policy configured................ Disabled
       EAP-Passthrough............................... Disabled
       CKIP ......................................... Disabled
       Web Based Authentication...................... Enabled-On-MACFilter-Failure
    IPv4 ACL........................................ Unconfigured
    IPv6 ACL........................................ Unconfigured
    Web-Auth Flex ACL............................... Unconfigured
    Web Authentication server precedence:
    1............................................... local
    2............................................... radius
    3............................................... ldap
       Web-Passthrough............................... Disabled
       Conditional Web Redirect...................... Disabled
       Splash-Page Web Redirect...................... Disabled
       Auto Anchor................................... Enabled
       FlexConnect Local Switching................... Disabled
       flexconnect Central Dhcp Flag................. Disabled
       flexconnect nat-pat Flag...................... Disabled
       flexconnect Dns Override Flag................. Disabled
       FlexConnect Vlan based Central Switching ..... Disabled
       FlexConnect Local Authentication.............. Disabled
       FlexConnect Learn IP Address.................. Enabled
    --More-- or (q)uit
       Client MFP.................................... Optional but inactive (WPA2 not configured)
       Tkip MIC Countermeasure Hold-down Timer....... 60
    Call Snooping.................................... Disabled
    Roamed Call Re-Anchor Policy..................... Disabled
    SIP CAC Fail Send-486-Busy Policy................ Enabled
    SIP CAC Fail Send Dis-Association Policy......... Disabled
    KTS based CAC Policy............................. Disabled
    Band Select...................................... Disabled
    Load Balancing................................... Disabled
    Multicast Buffer................................. Disabled
    Mobility Anchor List
    WLAN ID     IP Address            Status
    4           10.241.15.5           Up                             
    802.11u........................................ Disabled
    MSAP Services.................................. Disabled
    Interface detailed virtual on Anchor controller:
    (Cisco Controller) >show interface detailed virtual
    Interface Name................................... virtual
    MAC Address...................................... 68:ef:bd:93:bd:00
    IP Address....................................... 1.1.1.1
    Virtual DNS Host Name............................ anchor.stjude.org
    AP Manager....................................... No
    Guest Interface.................................. No
    Interface detailed virtual on Foreign controller:
    (30-WiSM2-slot2-1) >show interface detailed virtual
    Interface Name................................... virtual
    MAC Address...................................... 2c:54:2d:3a:51:a0
    IP Address....................................... 1.1.1.1
    Virtual DNS Host Name............................ Disabled
    AP Manager....................................... No
    Guest Interface.................................. No

  • Guest Anchor with web auth using ISE guest portal

    Hello All,
    Before launching into my exact issues, could anyone confirm if they have completed a wireless Guest anchor setup using 2504 controllers on 7.4 as the anchor (5508 is the foreign) with webauth external redirection at ISE 1.1.3 using ISE Guest Services?
    I am attempting this for an internal POC and have hit a couple of issues. Firstly I am looking for correct configuration confirmation prior to going in depth with a couple of the issues. I've been using the TrustSec 2.1 how to guides to build the parts I am not strong on so if anyone has actual completed this setup, I'd love to go through it with you.
    massive thanks to anyone that can assist.
    JS.

    Thanks for the reply RikJonAtk.
    so to start with, based on the trust sec documents, of the guest WLAN on the anchor I need to configure mac filtering at the layer 2 security menu as well as enable RADIUS NAC under the Advanced tab. But when I do this, I get an error message that states that mac filitering and RADIUS NAC cannot be enable at the same time.
    Additionally, if I just enable the RADIUS NAC setting under the Advanced tab in the WLAN, I get another error message that states that the priority order for Web-Auth can only be set for radius, so I go to the AAA server tab and send local and LDAP to the not use column and hit apply. If I move to another menu then check the priority order again under the AAA servers tab, the local and LDAP have been moved back to the menu field to be used again.  So I initially though it might be a bug, but I was hoping to find someone here that has done this already and can look at my issues and maybe walk me through their configs, which I'll mirror and see how it goes.
    Thanks in Advanced,
    JS

  • ISE web auth for non-cisco switch(D-link 3528)

    Is it possible to use ISE(inline posture node) to redirect the wired users to ISE guest portal ?
    And the wired users will get full network access after they pass the web auth.

    you can use ISE ln-line posture node with 3rd part switches
    RADIUS access device must supply the following RADIUS attributes:
        Calling-Station-Id (for MAC_ADDRESS)
        User-Name
        NAS-Port-Type
        RADIUS accounting message must have the Framed-IP-Address attribute
    VLAN, DACL features can be used  but again it depends on switch models let us know  specific switch  models . Certain advanced use cases, such as those that involve posture assessment, profiling, and web authentication, are not consistently available with non-Cisco devices or may provide limited functionality,

  • Web-Auth with 802.1x

    Environment is WLC 2106 with 4 LWAPP access points. Currently running 2 WLANs: 1 using 802.1x authentication with a Windows IAS (RADIUS) server for Active Directory authentication; 1 using basic WEP for guest access that drops the user in it's own secure VLAN.
    I am trying create a 3rd WLAN that uses Web-Authentication using 802.1x RADIUS that passes the username/password to the Windows IAS server. I can see the request being passed to the IAS server, but it is being logged on the IAS server as:
    An Access-Request message was received from RADIUS client WLAN Controller without a message authenticator attribute when a messages authenticator attribute is required. Verify the configuration of the RADIUS client in the Internet Authentication Service snap-in (the "Client must always send the message authenticator attribute in the request" checkbox) and the configuration of the network access server.
    I already have the one WLAN using 802.1x where the RADIUS client on the IAS server has the "Request must contain the Message Authenticator attribute" checkbox checked and it works jsut fine. It is just the Web-Auth using 802.1x where it seem the authentication isn't being passed properly to the RADIUS server. I cannot figure out what I am doing wrong or missing.

    Hi,
    I don't know if you have resolved the problem or not, But I will propose my solution anyway,
    There are two ways to solve this problem, either to make the controller send the radius request with md5 or make the windows reply to the radius requests that does not contain a md5 hash
    Microsoft Solution:
    When you add the Radius Client using the wizard there are certain options that don't show; for instance the md5 attribute that is causing the IAS to drop the web auth requests. So what you need to do is after you use the wizard, you right click on the client that you added (in our case the WLC) and uncheck the box that says "Access-Request message must contain the Message-Authenticator attribute" (attached is a screenshot).
    That should make the IAS respond to the web auth requests.
    WLC Solution:
    I haven't tested this solution, but I think it will work. if you did test it, please let me know how it turned out.
    By default, the Web Radius Authentication is set to "PAP" (can be found in the Controller Tab @ the WLC GUI), you need to set it to MD5-CHAP. (attached is another screenshot).
    Hope that solves your problem, and please let me know how the problem was solved.

  • 5760 Central Web Auth with ISE

    Hi,
    I am having problems with getting central web auth to work on the 5760, I cant seem to find any documentation for the 5760-Central Web Auth.
    The setup is with a Cisco 5760 and Cisco ISE, for guest users to be re-directed to ISE guest portal to authenticate. Has anyone configured this or have any advice, that would be great.
    Thanks

    Hi Roger,
    I have gotten CWA running on the 5760 with ISE, below is the config for the guest SSID:
    wlan Guest 1 TEST-guest
    aaa-override
    ip dhcp required
    mac-filtering cwa_macfilter
    mobility anchor 10.1.1.100
    nac
    no security wpa
    no security wpa akm dot1x
    no security wpa wpa2
    no security wpa wpa2 ciphers aes
    security dot1x authentication-list ISE_Auth_Group
    session-timeout 14400
    no shutdown
    ! ***You will need the following commands as well:
    ip http server
    ip http authentication local
    ip http secure-server
    aaa authentication login ISE_Auth_Group group ISE
    aaa authorization network cwa_macfilter group ISE
    Hope it helps =)

  • How to generate CSR on switches for web auth with NGS

    Hello
    I am doing a dot1x solution with web auth on cisco 3750 switches.
    Once the wired client get put into web auth state (after dot1x and mab) and goes to a website, he gets a certificate warning. This is because the certificate of the cisco switch is selfsigned.
    I want to use a verisign certificate to solve this error, but I cannot find a way to generate a CSR on a switch. I only found a guide how to request a certificate from a CA on the local network, but this is also not a solution, because the clients using the web auth, will not know the internal CA.
    Is there any way to solve this?
    Greetings
    Steven

    Hi Steven,
    The below document is actually for IOS SSLVPN, but the certificate portion should be the same:
    http://www.cisco.com/en/US/prod/collateral/iosswrel/ps6537/ps6586/ps6657/white_paper_c07-372106_ps6657_Products_White_Paper.html
    Search for "Appendix B" and it goes into creating a trustpoint and then one section is for self-signed and another is for generating a certificate request to send to an external CA.
    Once a trustpoint is created the command to actually generate the CSR is "crypto pki enroll ".
    This document goes into a little more detail on all the indivual commands and what they do:
    http://www.cisco.com/en/US/docs/ios/sec_secure_connectivity/configuration/guide/sec_cert_enroll_pki.html
    Also you could use something external to the switch like OpenSSL to generate the CSR/private key and then use that to request a cert from your Verisign CA and then import the cert/keypair into the IOS device.
    Thanks,
    Nate

  • Redirection without web-auth

    Hi all,
    I came across a  setup which is bit different to what I have seen in the past.
    Basically the client gets redirected  to the NAC login page but there is no web-auth related configs under the WLAN on the WLC.
    Just to confirm I had look at the WLAN security but they only had a PSK no other security configs.
    Any ideas on how this could be achived? I have experience with the web-auth but this approach seems much simpler.
    Thanks,
    janesh

    For ISE you can follow the TrustSec Guide Here
    http://www.cisco.com/en/US/solutions/collateral/ns340/ns414/ns742/ns744/docs/howto_40_webauthentication_dg.pdf
    or this general CWA with ISE and WLC guide here
    http://www.cisco.com/en/US/products/ps11640/products_configuration_example09186a0080bead09.shtml
    It involves using Mac Filtering in order to hit ISE for MAB authentication and the use of CoA for changing session states as you go through the authentication Flow.
    This requires WLC versio 7.2.110.0 at a minimum along with ISE 1.1.1 for full feature set.

  • "Auth type not supported by External DB" error for web-auth SSIDs

    Hello
    We're having a problem with web-authentication on our 4404/WisM controllers since we moved to software rev 5.x (currently running 5.1.151.0).
    With software rev 4.x our web-auth SSIDs would send the authentication requests to a Cisco ACS4.0 which would then authenticate the users against MS Active directory.
    Now (with rev 5.x) the same SSIDs cannot authenticate users against AD, the error in the ACS is:
    Auth type not supported by External DB
    Found the following Cisco Doc regarding the problem: Cisco Secure ACS and Windows AD EAP/802.1x port authentication fails with the Auth type not supported by External DB error message - Case Number K24308566. Done a packet capture on ACS to see authentications coming in and the ones that fail with above error are using CHAP - from the Cisco documentation, MS AD doesn't support CHAP.
    Any ideas on how I can get the web-auth working again with software rev 5.x ?
    Thanks
    Andy

    my apologies - theres a setting under Controller - General for Web Radius Authentication. changed this from CHAP to PAP and its now working ok.

  • Migrating a webi report from one environment to another using import wizard

    Hi Everyone,
    Can anyone please tell me what all access should I have on my ID to be able to migrate a webi report from one environment to another environment(e.g. from development to quality).
    Regards,
    Neeraj Sharma

    Hi,
    To use the Import Wizard utility, you basically need Administrator, Full Control to Top-level folder, and "Add objects to the folder" and "Edit objects" for this user on the root folder.
    You need the least restrictive role, because you require absolute control for content promotion between 2 entitlement systems.
    the webi document is the cherry on-top,  you;ll have universes, connections, folders to bring over too. 
    Regards,
    H
    p.s. check Note 1450708 - How to restrict access to the Import Wizard from a Business Objects Enterprise system
    and
    Note 1297121 - What rights needed to use Biar File Extraction for a normal user while using Import Wizard ?

  • Multiple Web Auth Pages

    I have looked through the forum and think that I have found the answer to my question but I just need confirmation of my thoughts.
    We are using a 5508 WLAN controller running software ver 7.2.110.0 and LAP 1142n AP's.
    What I would like to do is to configure multiple guest WLANS for each of our regional offices. Each of these WLANS needs to be configured with a Web Auth page relevant to the office location. My question is this, can I have a Web Auth page for each location or just 2, the default internal page and 1 customised page?
    Thanks for any help.
    Murray

    Here is a link that explains it also
    https://supportforums.cisco.com/docs/DOC-13954#Lets_go_for_custom_
    Sent from Cisco Technical Support iPhone App

  • Web Auth Type: Customized(downloaded) Redirect URL after login not working.

             5508WLC as anchor controller with WLC1 and WLC2 with WCS. I have 2 public ssids set up to go directly to the internet.
    Everything is working as it should.  I downloaded the web auth bundle from Cisco and  will just use a disclaimer page and then if the user clicks on the accept button they will be redirected to our company web page, and then they can get out to the internet.
    I have edited the aup.html and login.html to say what I want it to.  I have 2 different login.html pages and bundle to a .tar file like the documentation says.  I download it via tftp to the controller and it is successful. The disclaimer page opens up when I connect and it looks as it should.  The problem is I cannot seem to get the accept button to work. It redirects to a web page but it is undefined. 
       I must be missing some setting somewhere, but I just can not seem to find it.  Is there any line I need to edit in the login.html files that will redirect the page.    The config on the Web Login Page  Redirect URL after login is http://www.mccg.org which is our home page.
    Any help will be appreciated.  I cannot seem to fine very good documentation, or I am just overlooking something.
    Thanks
    John   

    Your HTML code is wrong. Attach your code if your okay with it and I can check.
    Sent from Cisco Technical Support iPhone App

  • Is there a web-only database development environment?

    I have a database solution to create that only needs to be accessible via web browsers. I do not have an existing database, so it is not a matter of connecting an existing database to the web.
    Is there a web-only database development environment that would allow me to create the entire database without some non-web database environment like Oracle, Access, 4D, FileMaker etc.
    I guess what I want is a web-native database, I don't want to construct it in some environment that has to be "interpreted" in order for it to be presented to a web browser.

    Databases are databases. I'm not aware of any products that are specialized for web-only access. And I can't see such a product succeeding, since the existing products are already accessible via web programming.
    I don't know what the remarks about "interpreted" mean so I can't help you there.

  • WLC Custom Web Auth Bundle sample .tar file is not on WCS

    The WLC documentation would make it appear (or maybe previously) you should download a sample web auth bundle code from the WCS Templates. I was never able to find a sample .tar file on the WCS 7.0.172.0 templates.
    However I found on Cisco.com under Support > Downloads > Products >Wireless> Wireless LAN Controller Standalone Controllers> Cisco 5500 Series Wireless Controllers > Cisco 5508 Wireless Controller > Wireless Lan Controller Web Authentication Bundle-1.0.2  > webauth_bundle-1.0.2.zip
    It was updated in June 2011, some pretty good sample html code.
    The readme.html in the sample webauth_bundle-1.0.2.zip file has been very helpful , almost as good as the suppport community web page on custom web auth.
    https://supportforums.cisco.com/docs/DOC-13954

    WCS config guide 7.0.172 is correct
    http://www.cisco.com/en/US/docs/wireless/wcs/7.0MR1/configuration/guide/temp.html#wp1129979
    The bundle in WCS is downloaded through :
    configure->controller
    "select a command"-> download customized webauth bundle.
    Just tested it and it was there.
    The one on cisco.com is better though

Maybe you are looking for

  • Firefox keeps preventing important pages (webmail) from loading fresh contents. How do I quit this function?

    Firefox prevents the refreshing of my webmail site. Very annoying, as there may be new information or mail - or even not. But I want to know it of course. It mustn't be up to Firefox!

  • How to compare data from 2 different time periods

    Hi folks, I have a question on approach to a problem. I want to be able to compare data from a common db, but for 2 different time periods. For example I want to see the number of occurences of an instance in my data for today and compare it against

  • ERR_EMPTY_RESPONSE

    Since yesterday neither Safari or Chrome works for me. They refuse to load any websites (yesterday Facebook and Gmail worked, but today nothing works at all). Safari is just blank and Chrome shows the message "ERR_EMPTY_RESPONSE". I don't know what t

  • Exporting a project into an external HD as a file

    I do not use the vault in Aperture mainly because I could never get back into it to retrieve my pictures. (Apple has made this way to difficult) I would like to use an external harddrive and just export my projects monthly into a folder. I have tried

  • ITunes crashes when trying to play certain songs

    Every time I try to navigate to a certain artist iTunes crashes and gives me a panic report. It doesn't happen with all the media in my library, only this one particular artist. I am happy to include any information that is useful to you guys from th