Captive portal logged out after inactivity
Posted: 04 Oct 2012 02:58
We use 802.1x with PEAP-TLS for our domain computers but we also want to provide Internet access to guests with Captive-portal (CP).
We have configured CP for none-supplicants and if 802.1x authentication fails (in case the guest has an 802.1x agent enabled).
However, when a guest is not using the Internet connection for a while (approx 1 hour), he has to log on to the Captive portal again, although the inactivity timer is disabled and the CP Session limit is set to 12 hours. This is due wether the client has the 802.1x agent running or not. Some of our ā€¯guests is here for a while and it would be great if the just had to log on when they arrive at the morning and then stays logged in until the end of the day (approx 8 hours) , even if they are away from the computer a few hours. Which settings should I adjust?
We also have problem with Mac OS-X, it simply will not get an DHCP address for CP. We have tried disabling 802.1x without luck. Is this a known issue? What could be the cause?
Firmware is version 6.4.4
Below is the 802.1x config.
We have configured CP for none-supplicants and if 802.1x authentication fails (in case the guest has an 802.1x agent enabled).
However, when a guest is not using the Internet connection for a while (approx 1 hour), he has to log on to the Captive portal again, although the inactivity timer is disabled and the CP Session limit is set to 12 hours. This is due wether the client has the 802.1x agent running or not. Some of our ā€¯guests is here for a while and it would be great if the just had to log on when they arrive at the morning and then stays logged in until the end of the day (approx 8 hours) , even if they are away from the computer a few hours. Which settings should I adjust?
We also have problem with Mac OS-X, it simply will not get an DHCP address for CP. We have tried disabling 802.1x without luck. Is this a known issue? What could be the cause?
Firmware is version 6.4.4
Below is the 802.1x config.
Code: Select all
802.1x configuration for slot 1 port 25:
direction = both,
operational directions = both,
port-control = auto,
quiet-period (seconds) = 60,
tx-period (seconds) = 30,
supp-timeout (seconds) = 30,
server-timeout (seconds) = 30,
max-req = 2,
re-authperiod (seconds) = 3600,
reauthentication = no,
Supplicant polling retry count = 2,
Captive Portal Session Limit (hrs) = 12,
Captive Portal Login Retry Count = 3,
Supplicant Bypass = disable,
Supplicant Bypass allow-eap Branch = none,
Captive Portal Inactivity Logout = Disabled
! 802.1x :
802.1x 1/25 direction both port-control auto quiet-period 60 tx-period 30 supp-timeout 30 server-timeout 30 max-req 2 re-authperiod 3600 no reauthentication
802.1x 1/25 captive-portal session-limit 12 retry-count 3
802.1x 1/25 captive-portal inactivity-logout disable
802.1x 1/25 supp-polling retry 2
802.1x 1/25 supplicant policy authentication pass block fail captive-portal
802.1x 1/25 non-supplicant policy captive-portal
802.1x 1/25 captive-portal policy authentication pass block fail block