Guest

Preview Tool

Cisco Bug: CSCvv73570 - WLC Anchor doesn't send called-station-id in the external web-auth access request

Last Modified

Oct 08, 2020

Products (1)

  • Cisco IOS

Known Affected Releases

17.3.1

Description (partial)

Symptom:
WLC Foreign not processing L2 mac filtering for clients in some cases for anchored WLAN, allows client traffic through the mobility tunnel for Anchor WLC. This issue is seen when using Aruba clear pass as external web auth server with redirect upon mac failure enabled on WLAN. First client is filtered at Foreign WLC as expected, upon mac registration (web-auth login) the anchor sends radius request to Aruba without required called station ID field.

Conditions:
This is seen when both foreign + anchor WLC/WLAN are configured for redirection upon mac failure or regular web-auth
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.