--> The Webauth Sleeping Client is a feature on Cisco Wireless LAN Controller which allows successfully authenticated devices to stay logged in for a configured period without re-authentication.
--> The MAC address of the device and the username or password is mapped. Once an entry is added to sleeping-client cache, all users of the device get the same policies that are stored in the cache.
--> To use different policies on the same device, a user can force normal authentication by logging out from Web Authentication.
--> If a device sleeps, wakes up, and gets associated with a different controller, the device undergoes normal authentication on the different controller.
--> Once a user authenticates successfully on Wireless LAN Controller for the first time, an entry is added to the sleeping client cache and the sleeping client timer starts.
--> If the authenticated device goes to sleep and wakes up, the service manager uses the web authentication method to check if there is an entry in the sleeping client cache for the mapped MAC address.
--> If the entry is found in the sleeping Cache, the authentication is run in the background using the stored credentials.
--> If the authentication is successful, the sleeping client cache is updated and a logout access control list (ACL) is added.
--> The logout ACL helps the client force normal authentication by logging out. In case the authentication fails with the stored credentials, the entry is deleted from the sleeping client cache.
--> If the service manager does not find any entry in the sleeping client cache for the mapped MAC address, normal authentication is performed.
--> After successful authentication, an entry is added to the sleeping client cache and the sleeping client timer starts.
Ref: Cisco.com
--> The MAC address of the device and the username or password is mapped. Once an entry is added to sleeping-client cache, all users of the device get the same policies that are stored in the cache.
--> To use different policies on the same device, a user can force normal authentication by logging out from Web Authentication.
--> If a device sleeps, wakes up, and gets associated with a different controller, the device undergoes normal authentication on the different controller.
--> Once a user authenticates successfully on Wireless LAN Controller for the first time, an entry is added to the sleeping client cache and the sleeping client timer starts.
--> If the authenticated device goes to sleep and wakes up, the service manager uses the web authentication method to check if there is an entry in the sleeping client cache for the mapped MAC address.
--> If the entry is found in the sleeping Cache, the authentication is run in the background using the stored credentials.
--> If the authentication is successful, the sleeping client cache is updated and a logout access control list (ACL) is added.
--> The logout ACL helps the client force normal authentication by logging out. In case the authentication fails with the stored credentials, the entry is deleted from the sleeping client cache.
--> If the service manager does not find any entry in the sleeping client cache for the mapped MAC address, normal authentication is performed.
--> After successful authentication, an entry is added to the sleeping client cache and the sleeping client timer starts.
Ref: Cisco.com
0 Comments