Configuring Cisco WLC using CLI

Configuring RADIUS server

radius server <RADIUS-Profile-Name>

address ipv4 <RADIUS-Server-IP> auth-port <auth-port> acct-port <acct-port>

key <RADIUS-Shared-Secret>

Configuring server group

aaa group server radius <Server-group-name>

server name <RADIUS-Server-name>

Configuring AAA method lists

aaa authentication login <authentication-list-name> group <Server-group-name>

aaa authorization network <authorization-list-name> group <Server-group-name>

aaa accounting network <accounting-list-name>action-type start-stop group <Server-group-name>

Configuring Webauth Parameter-map

parameter-map type webauth <Webauth-name>

type webauth

redirect for-login <IPS-guest-URL>

redirect portal ipv4 <IPS-IP>

Configuring IPv4 extended ACL

ip access-list extended <ACL-Name>

permit ip any host <IPS-IP>

permit ip host <IPS-IP> any

permit udp any eq domain any

deny ip any any

Configuring WLAN profile

wlan <wlan-profile-name> <wlan-id> <ssid-name>

aaa-override

accounting-list <accountung-list-name>

client vlan <vlan-id>

ip access-group web <ipv4-acl>

no security wpa

security web-auth

security web-auth authentication-list <authentication-list-name>

security web-auth parameter-map <parameter-map name>

no shutdown