LogoLogo
🇬🇧 English
🇬🇧 English🇵🇱 Polski🇪🇸 Español🇹🇼 中華民國
🇬🇧 English
🇬🇧 English🇵🇱 Polski🇪🇸 Español🇹🇼 中華民國
  • 💡Using this Academy
  • Getting Started
    • Creating your first venue
  • Hardware & Installation
    • Installation Guides
      • MikroTik
        • Winbox
        • WebFig
        • MikroTik Script Generator
        • VLANs & Additional APs
          • Add VLAN on MikroTik
          • Add additional APs to MikroTik
          • Whitelist a device in the guest network
          • UniFi APs and MikroTik
        • Connection Guide
      • Ubiquiti
        • Ubiquiti UniFi
        • Installing remote access tunnel
        • Creating access credentials
        • Ubiquiti UniFi Legacy
          • Overview
          • Controller configuration
            • New interface version
            • Legacy interface version
          • File upload
            • Cloud Key
            • Dream Machine
            • Software Controller
      • Ruckus
        • Ruckus ZoneDirector
        • Ruckus Unleashed
        • Ruckus Virtual SmartZone
      • Cisco
        • Cisco Catalyst
        • Cisco Meraki
        • Cisco WLC
      • Juniper Mist
      • TP Link Omada
      • Ruijie
      • Zyxel Nebula
      • OpenMesh
      • Huawei AC / FAT AP
      • Extreme Networks
        • WiNG Controller
        • Extreme Cloud IQ
      • Aruba
        • Aruba Central
        • Aruba IAP
        • Aruba Instant On
      • Alcatel-Lucent
        • OmniVista Cirrus
        • Alcatel-Lucent Express
      • Fortinet
        • FortiGate / FortiWiFi
        • FortiAP
      • Grandstream
        • Direct access
        • GWN Cloud
      • Aerohive
      • Teltonika
      • TanazaOS
      • IgniteNet
      • Cambium Networks
        • cnPilot
        • cnMaestro
      • DrayTek Vigor
    • Hardware FAQs
      • Recommended devices
      • Set network limits
      • Why is Google login disabled for UniFi implementations?
      • How to set up session timeouts on MikroTik devices
      • Change MikroTik SSID
      • Why is there no Meraki GO integration?
      • Configure devices to make YouTube widget work
    • Setup FAQs
      • Login process
      • QR codes and Social WiFi
      • Troubleshooting
      • Setting up your first AnyDesk session
      • How to export configuration from a MikroTik device?
      • How to create HAR file on different internet browsers
      • What benefit is editable radius secret?
      • Can I charge customers for WiFi access?
      • Understanding Access Point statuses?
  • Dashboard Guides
    • Dashboard Guides
      • Location Management
        • How to add a new Project
        • How to add a new Venue
        • Duplicate a Venue design within a Project
        • What is the difference between a Project and a Venue?
        • How do I delete a Project or Venue
      • WiFi Splash Pages
        • How to add a Pre-Login Page
        • How to copy Login pages to other Venues in a Project
        • How to change the opt in slider to a button
        • Adding YouTube widget
        • Adding a countdown delay on the Pre-Login Page
        • Login button options
        • Embed Instagram posts on your Welcome Page
      • Online Reviews
        • Configuring the review system
        • Change the review redirection links
        • Where to find Google review redirection link?
        • Copy review settings to other Venues?
        • Change when a review request email is sent?
        • How to send a review reminder
        • Reply to user messages
        • Forward customer feedback to help desk systems
        • Turn off the review system?
        • TripAdvisor Review Express
        • How to change your review score style
        • Send a test review email
      • Email Marketing
        • Send an email after the first login
        • Send an email on login
        • Send an email after a visit
        • Send an email after X visits
        • Send an email if somebody hasn’t visited in so long
        • Copy emails to other Venues
        • Adding Email Attachments
        • Bulk email campaigns sending rules
        • Send emails using your own domain (address)
        • Setup your Gmail account as the email sender
        • How to set up your own SMTP server
        • Use Amazon SES to send your emails
        • Create a linked button in the email editor
      • Dashboard Users
        • Project and venue permissions
        • Adding an Admin User
      • SMS Marketing
        • Setup SMS Automation
        • USA Registration
      • How to export user data
      • Verified vs Unverified User Data
      • How to read device statistics
      • Dashboard statistics – what do they represent?
      • Adding Custom Fonts
      • How to remove a user from the Social WiFi database
      • Optional features – autologin, AP warnings and others
    • Dashboard FAQs
      • How do I delete content in the Media tab?
      • Why are the email and splash page editors different?
      • Can I import a database into Social WiFi?
      • How to ask a user for more feedback
      • How do I add more than one Pixel or Cookie to my Venue?
      • How to turn off New Feedback email notifications
      • Why do I get Access Point Warning emails?
      • How to turn off Access Point Warning email notifications
      • Can I move the "Connect to Internet" button?
      • Can I edit venue ID?
      • Can I add other review sites to my system?
      • Can I add a custom set of review emojis?
      • My data isn’t appearing in the User Data tab
      • Is the dashboard available in other languages?
      • Send a Project Report
      • Can I add other language versions?
      • My venue shows as Inactive
    • WiFi Login FAQs
      • Social Media Login
        • Can I authenticate for Facebook login via the app?
        • What data do you get from each login method?
        • Why Facebook widget is not enabled on MacBooks?
        • Can my guests like or check-in at my business?
        • Can I use Instagram login widget on my login page?
      • Email Login
        • Turn off verification emails
        • Why are activation emails recommended?
        • How to make the email verification link compulsory
        • Why there are multiple activation emails for one user?
        • How to ask for more information on email login
      • Login Codes
        • Pre-login Code vs Login Bypass Codes?
        • Add a password unlock button on the Pre Login Page
        • How to generate Pre Login codes
        • How to generate Login Bypass codes
      • Known Issues
        • Issues with hotspot networks on Apple devices
      • How Auto Login works
      • Ask additional questions on WiFi login
      • How to collect phone numbers
      • Redirect to a webpage after login
      • What is Force Gmail Login?
      • I didn’t receive an email after logging in
      • How to gather feedback during the login process
      • Google login doesn't work on mobile devices
  • Integrations
    • Connecting Social WiFi data
      • Integrate with Mailchimp
      • Integrate with Campaign Monitor
      • Integrate with Zapier
      • Integrate with HubSpot
      • Integrate with GetResponse
      • Integrate with Revinate
      • Integrate with Klaviyo
      • Integrate with Brevo
      • Integrate with SALESmanago
      • Integrate with Freshmail
      • Push historic data to your CRM
      • Copy Integrations to other Venues
    • Retargeting Pixels & Cookies
      • Pixels & Cookies Purpose
      • Add Facebook Pixel
      • Add TikTok Pixel
      • Add Snapchat Pixel
      • Add Google Ads Cookie
      • Copy Integrations to other Venues
  • Tips & Tricks
    • Sending surveys via WiFi with Google Forms
  • Billing
    • Invoicing & Payments
      • Can you automatically take my payments?
      • How do I cancel my service?
      • What are the payment terms?
      • How can I pay for my service?
      • When do Social WiFi send invoices?
  • Reseller Program
    • Brand Guidelines
    • White Label
      • White label configuration guide
      • White label hardware configuration guide
      • Account Management
      • Can Social WiFi be white labelled?
      • Can my company’s logo be placed in the dashboard?
Powered by GitBook
On this page
  • Compatibility
  • Accessing the device’s administrative panel
  • Device configuration
  • Adding the device to Social WiFi platform

Was this helpful?

  1. Hardware & Installation
  2. Installation Guides
  3. Cisco

Cisco WLC

PreviousCisco MerakiNextJuniper Mist

Last updated 5 months ago

Was this helpful?

Compatibility

The below instruction pertains to Cisco WLCs of 2504 and 5520 series with IOS 8.2.166.0

Social WiFi has been tested and is proven to work on the following configurations:

Cisco 2500 Series Wireless Controller

  • versions up to 8.5.131.0

Cisco AIR-CAP3702I-E-K9

  • versions compatibile with the Controller

Accessing the device’s administrative panel

Log in to the administrative panel with root permissions and press Advanced.

Device configuration

RADIUS configuration

Security → AAA → Radius → Authentication

Security → AAA → Radius → Authentication → New

Server Index (Priority)

Leave default (1)

Server IP Address

35.205.62.147

Shared Secret Format

ASCII

Shared Secret

Confirm Shared Secret

Key Wrap

Leave unchecked

Port Number

31812

Server Status

Enabled

Support for CoA

Disabled

Server Timeout

5 seconds

Network User

Unchecked

Management

Unchecked

Management Retransmit Timeout

Leave default (2)

IPSec

Leave unchecked

Press Apply.

Now, configure as follows:

Auth Called Station ID Type

AP MAC Address

Use AES Key Wrap

Leave unchecked

MAC Delimiter

Hyphen

Framed MTU

1300

Press Apply.

Now, in the menu on the left go to the AAA → Radius → Accounting tab and add new accounting server.

Server Index (Priority)

Leave default (1)

Server IP Address

35.205.62.147

Shared Secret Format

ASCII

Shared Secret

Radius Secret available in Access Points tab of the Social WiFi Panel

Confirm Shared Secret

Radius Secret available in Access Points tab of the Social WiFi Panel

Port Number

31813

Server Status

Enabled

Server Timeout

5 seconds

Network User

Leave unchecked

IPSec

Leave unchecked

Press Apply.

DNS Walled Garden Configuration

Now, go to the Access Control Lists → Access Control Lists in the same tab and press New... to add a new list.

Access Control List Name

sw_walledgarden

ACL Type

IPv4

Press Apply.

Hover the coursor over the blue icon on the right side of sw_walledgarden text and press “Add/Remove URL”.

Add these entries one by one:

socialwifi.com

sw-login.com

facebook.com

fbcdn.net

twitter.com

twimg.com

linkedin.com

licdn.com

accounts.google.com

accounts.google.*

ssl.gstatic.com

fonts.gstatic.com

fonts.google.com

accounts.youtube.com

googleapis.com

apis.google.com

connect.facebook.net

www.googletagmanager.com

www.googleadservices.com

googleads.g.doubleclick.net

Cisco WLC has a limit of 20 entries for URL ACL and the above list doesn’t include rules for a YouTube widget on the login splash page. If you want to use this widget, please contact us.

Captive Portal/Hotspot configuration

Now, go to the Security -> Web Auth → Web Login Page and configure as follows:

Web Authentication Type

External (Redirect to external server)

Redirect URL after login

[leave empty]

External Webauth URL

https://login.socialwifi.com/

Press Apply.

Go to Management → HTTP-HTTPS and disable WebAuth SecureWeb and HTTPS Redirection:

WebAuth SecureWeb

Disabled

HTTPS Redirection

Disabled

From now on you'll probably be prompted that you must reboot the device in order for the changes to take place. You can proceed with the guide and reboot the device after everything is configured.

Press Apply.

In the Controller → Interfaces section, make sure that the “virtual” interface’s address is not set to 1.1.1.1 (it used to be the default value). If it is, change it to 192.0.2.1.

Network settings configuration

Now, go to the WLANs → WLANs and create the WLAN network or edit if you already have one.

On the upper right press the Go button next to "Create New".

Press Apply.

Edit your WLAN and go to security Layer 2 tab. Set "Layer 2 Security" as None.

Next, go to the Layer 3 tab and configure as follows:

Layer 3 Security

Web Policy

*Check the box*

Authentication

Preauthentication ACL

IPv4 sw_walledgarden

IPv6

None

WebAuth FlexAcl

None

Sleeping Client

Leave unchecked

Over-ride Global Config

Leave unchecked

Go to AAA Servers tab and configure as follows:

Authentication Servers Enabled

Yes

Server 1

IP:35.205.62.147, Port:31812

Accounting Servers Enabled

Yes

Server 1

IP:35.205.62.147, Port:31813

Radius Server Accounting Interim Update

Yes

Radius Server Accounting Interim Interval

600

Press Apply.

After completing the authorization process you will see a "logout" tab open. It can be disabled using an CLI command:

"config custom-web logout-popup disable"

Adding the device to Social WiFi platform

Monitor → Access Points → Radios → 802.11a/n/ac or 802.11b/g/n

  • Copy the MAC addresses of the Access Points you would like to add to Social WiFi platform.

  • Go to the Social WiFi Panel.

  • Choose the place to which you would like to add the device.

  • In the “Access Points” tab, press “Add” (upper right corner), paste the MAC address you copied into the form (adding a name is optional) and click “Create”.

Thats the end of the configuration and you can test the service by logging in through your Access Point.

Radius Secret available in Access Points tab of the

Radius Secret available in Access Points tab of the

Social WiFi Panel
Social WiFi Panel