Bug #3352
closed
CaptivePortal: new device/different user getting an authorised already IP cannot be authenticated
0%
Description
When the DHCP lease time is shorter than the idle/hard timeout of the captive portal the following situation may happen:
- a device with IP 192.168.1.115 gets authorised and related CP entry is created
- the DHCP lease expires, the CP entry associated to 192.168.1.115 is still within its validity
- another device/user connects and gets IP 192.168.1.115
- the user tries to authenticate to the CP, login is successful but CP does not authorises the new MAC but rather refresh the existing CP entry associated to the previous user:
CONCURRENT LOGIN - REUSING IP 192.168.1.115 WITH DIFFERENT MAC ADDRESS 84.xx.xx.xx.xx.55:user1,84.xx.xx.xx.xx.55,192.168.1.115
- if that CP entry is manually deleted the second device/user is successfully associated with its MAC/username and CP authorises the device.
Attached a screenshot with the log entries for the specific example
Files
| 2013-12-05 12_12_47-Doc1.docx [Compatibility Mode] - Word.png (55.4 KB) 2013-12-05 12_12_47-Doc1.docx [Compatibility Mode] - Word.png | test case screenshot |
Updated by Jim Pingle almost 11 years ago
- Status changed from New to Rejected
"When the DHCP lease time is shorter than the idle/hard timeout of the captive portal the following situation may happen:"
Don't do that.
Duplicate of #2082
Updated by ![2013-12-05 12_12_47-Doc1.docx [Compatibility Mode] - Word.png](/attachments/download/907/2013-12-05%2012_12_47-Doc1.docx%20%5BCompatibility%20Mode%5D%20-%20Word.png){kind=link}