Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
409
Views
5
Helpful
4
Replies

looking for solution: Enterprise wlan users portal or dot1x authentication

istvan.kelemen1
Level 1
Level 1

‎03-03-2015 03:52 PM - edited ‎03-10-2019 10:31 PM

Hello,

 

I am looking for a solution for a hotel guest WLAN access management, the requrements are the following:

 

- The application has to be as simple as possible.

- It shall have a built in Radius server.

- It shall have a built in web server with a pre-definied (preferably customisable login page)

- It has to be an end host, with only one interface, NAT routing or any advanced feature shall not happen there (unlike most of the firewall linux distros do)

- It shall have an easy interface to create random usernames and passwords with the corresponding user propeties (how long be able to access the network) advanced accouting is not necessary

 

Long story short: what I need is a simple server application which is able to authenticate users before they can access the internet via the  WLAN network. A browser shall pop up (right after a user had conencted) on the phone/laptop and the browser has to be redirected to the portal page, after the login the user should be able to surf. Also very important: create random usernames and passwords via an user friendly web interface.

 

I have seen this list already https://supportforums.cisco.com/discussion/11856996/web-auth-captive-portal-external-web-server

I'm trying packetfence now, having issue with boken packages on debian... next gonnabe ubuntu I have tried FirstSpot, did not work, i might try again later...

Utangle and Pfsense also gonna be tried... but these are FW's requres 2NIC

 

Thanks in advance!

Labels:
0 Helpful
4 Replies 4

nspasov
Cisco Employee
Cisco Employee

‎03-04-2015 12:09 AM

Sounds like the perfect candidate for Cisco ISE :)

http://www.cisco.com/c/en/us/products/security/identity-services-engine/index.html

 

Thank you for rating helpful posts! 

Thank you for rating helpful posts!

istvan.kelemen1
Level 1
Level 1
In response to nspasov

‎03-04-2015 07:23 AM

Thank you for your very helpful post.

 

Does it work with other vendors?

0 Helpful

nspasov
Cisco Employee
Cisco Employee
In response to istvan.kelemen1

‎03-05-2015 08:49 AM

Yes and No :) Depends on the vendor and the features that you are trying to use. Basic 802.1x and MAB should work just fine. The web auth (Central Web Authentication) will only work on devices that support Radius CoA (Chang of Authorization)

https://tools.ietf.org/html/rfc5176

So I would recommend that you check with the vendor that you are using and confirm interoperability. 

 

Thank you for rating helpful posts! 

Thank you for rating helpful posts!
0 Helpful

Venkatesh Attuluri
Cisco Employee
Cisco Employee

‎03-04-2015 05:10 AM

Cisco Identity Services Engine (ISE) guest services enable you to provide secure network access to guests such as visitors, contractors, consultants, and customers. Cisco ISE provides web-based and mobile portals to provide on-boarding for guests  to your  network and resources and services.

 you can create and edit guest and sponsor portals, configure guest access privileges by defining their guest type, and assign sponsor privileges for creating and managing guest accounts.

0 Helpful
Customers Also Viewed These Support Documents