CWP Page not showing up after successful authentication (RADIUS)

  • 1
  • Question
  • Updated 5 years ago
  • Answered
Hi,

I have created an SSID for our domain users to use to connect through wifi. There's no firewall setup on the user profile.

Client browsing goes through Scansafe proxy set with a wpad file configured through option 252 on our DHCP server.

Removing CWP enables clients to get DHCP and browse normally. But when I enable it and set with "Use default network settings" "Use external DHCP and DNS servers on the network", I get the proper IP address from the DHCP but when I open the browser for CWP page to show, it fails to load "Internet Explorer cannot display the webpage"
Photo of ITDS Admin

ITDS Admin

  • 11 Posts
  • 0 Reply Likes

Posted 5 years ago

  • 1
Photo of Chris B

Chris B, Official Rep

  • 93 Posts
  • 10 Reply Likes
Hi

What type of CWP are you configuring? When you get your IP address, do you get correct DNS info also? Can you ping the DNS server?

Have you tried it using the internal IP of the Aerohive AP?
Photo of Crowdie

Crowdie, Champ

  • 972 Posts
  • 272 Reply Likes
Are you running the 6.0r2 HiveManager/HiveOS? I had a site where wireless clients experienced strange events post association to any SSID where a CWP had been enabled. If I removed the CWP (a User Acceptance Policy) the wireless client associated correctly and could access the Internet. Aerohive Support advised to upgrade to 6.1r1 and this has resolved the issue.
Photo of ITDS Admin

ITDS Admin

  • 11 Posts
  • 0 Reply Likes
@Chris,
I'm running just the "Use-Policy-Acceptance" CWP Page. Only modified the bg image and the User acceptance text.

IP information is complete with the correct DNS info and I am able to ping both primary and secondary DNS.

Have you tried it using the internal IP of the Aerohive AP?
- Do you mean change the default IP of the CWP page to an specific AP? or Ping the IP of the AP?

@Crowdie
We are already running HM 6.1r1 and AP HiveOS 6.1r1.1247. If I remove the CWP the wireless client has no problems accessing the internet.
Photo of ITDS Admin

ITDS Admin

  • 11 Posts
  • 0 Reply Likes
Below is our CWP Optional Advanced config



I tried setting to "Use internal DHCP and DNS servers on the Aerohive device"

Client gets

IP 1.1.1.2
GW 1.1.1.1
DNS 1.1.1.1

CWP Page loads up URL http://1.1.1.1/reg.php?....

I Accept and says I am successful. Then it tries redirect but it says page cannot be displayed. IP address of client changes to the wireless IP network.

I refresh the page multiple times then internet goes through. We are able to browse.

It seems to work but we dont want users to think that the connection failed because of the page cannot be displayed.
Photo of Chris B

Chris B, Official Rep

  • 93 Posts
  • 10 Reply Likes
Can you try displaying the default text and image, and are you attempting to display the success page after logon? Or just redirect the user to the requested page?
Photo of ITDS Admin

ITDS Admin

  • 11 Posts
  • 0 Reply Likes
Hi Chris,

Can you try displaying the default text and image, and are you attempting to display the success page after logon?

- I have set the CWP to default. Yes I set it to display the success page.

setting to "Use internal DHCP and DNS servers on the Aerohive device"

The default CWP Page loads up, after accepting I get to the success page. Which should automatically direct me to the requested page. But it doesnt.

The User acceptance page loads again, this happens 2 to 3 times eventually reaching to a page cannot be displayed page.
Photo of Chris B

Chris B, Official Rep

  • 93 Posts
  • 10 Reply Likes
If you remove the success page from the configuration and redirect immediately to the users requested page, using external DHCP servers in your network, does this redirect correctly?
Photo of ITDS Admin

ITDS Admin

  • 11 Posts
  • 0 Reply Likes
Hi Chris,

We get the correct network IP after successfull user acceptance page.

I was on a call with the aerohive engineer earlier the issue miraculously seem to have been fixed after restarting the AP's after setting the CWP configuration. It seemed to have fixed the issue of the "Page cannot be displayed" after accepting the User Acceptance Page.

But there was still a problem of the CWP page continue to re-load after selecting Yes on the User acceptance page. Excluding the site site http://www.msftncsi.com from the proxy seem to have have solved that problem as well as the annoying
"Additional Log on information may be required" balloon keeps popping up.

I am still monitoring and testing il post an update next week.

Thanks.