Troubleshooting portal, Symptom, Analysis – H3C Technologies H3C S6300 Series Switches User Manual
Page 155: Solution, Cannot log out portal users on the access device, No portal authentication page is pushed for users
140
Portal server: newpt
IP : 192.168.0.111
VPN instance : Not configured
Port : 50100
Server Detection : Timeout 40s Action: log
User synchronization : Timeout 600s
Status : Up
The Up status of the portal authentication server indicates that the portal authentication server is
reachable. If the access device detects that the portal authentication server is unreachable, the Status
field in the command output displays Down. The access device generates a server unreachable log
"Portal server newpt turns down from up" and disables portal authentication on the access interface, so
the host can access the external network without authentication.
Troubleshooting portal
No portal authentication page is pushed for users
Symptom
When a user is redirected to the portal Web server for authentication, no portal authentication page or
error message is prompted for the user. The login page is blank.
Analysis
The key configured on the portal access device and that configured on the portal authentication server
are inconsistent. As a result, packet verification fails, and the portal authentication server refuses to push
the authentication page.
Solution
Use the display portal server command on the access device to check whether a key is configured for the
portal authentication server.
•
If no key is configured, configure the right key.
•
If a key is configured, use the ip or ipv6 command in the portal authentication server view to correct
the key, or correct the key configured for the access device on the portal authentication server.
Cannot log out portal users on the access device
Symptom
You cannot use the portal delete-user command on the access device to log out a portal user, but the
portal user can log out by clicking the Disconnect button on the portal authentication client.
Analysis
When you execute the portal delete-user command on the access device to log out a user, the access
device sends an unsolicited logout notification message to the portal authentication server. The
destination port number in the logout notification is the listening port number of the portal authentication
server configured on the access device. If this listening port number is not the actual listening port number
configured on the server, the server cannot receive the notification. As a result, the portal server does not
log out the user.