Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
832
Views
0
Helpful
5
Replies

User Agreement Page for WLAN

daniel.keith
Level 1
Level 1

‎03-01-2006 01:59 PM - edited ‎07-04-2021 11:43 AM

I'm about ready to rollout open access for http only traffic. Using a VLAN and access lists, but I would like for the user to have accept a user agreement page before continuing. Is there a Cisco product or another I can use for this?

Labels:
0 Helpful
5 Replies 5

vault_dweller
Level 1
Level 1

‎03-05-2006 01:04 AM

If you want something like Hot-Spot try "Authentication Proxy" http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fsecur_c/ftrafwl/scfauthp.htm feauture... Mabe it works on Cisco AP's... I don't try it, but i think this is interesting future, i plan to try and use it in my LAN if this give me hot-spot like things...

P.S. sorry 4 my english...

0 Helpful

ericgarnel
Level 7
Level 7

‎03-06-2006 10:35 AM

it depends...

do you want to have user accounts that the users enter a name and password? or just a splash page that has 'acceptable usage' policy & some info?

We use monowall http://m0n0.ch/wall/ for this, works like a charm. You can combine it with acls on the routers, etc. For example, we have an open wireless network that is bound to a vlan with m0n0wall as the gateway. The router, or l3 switch in our case, can apply ACLs to the subnet for the wireless. We use time-based ACLs to control when the network is available. Another product which is based on m0n0wall is pfsense http://www.pfsense.com. It is similar but it allows for redundancy.

0 Helpful

vault_dweller
Level 1
Level 1
In response to ericgarnel

‎03-06-2006 11:57 PM

> you want to have user accounts that the users enter a name and password?

yep... All users on my LAN goes to internet through PPTP server because my ISP don't sell unlimited accounts, he sell only "pay for traffic" like accounts and in this case i must count my LAN users traffic. Because many users can forget to establish PPTP session (but don't forget to aks "where my internet?" :-E ) i want create something what don't shows "Page cannot be found/opened" like messages but "if you forget about PPTP - enter your login and password" etc. Can "Authentication Proxy" used for it or can you recommend something for it?

What is "captive portal" in m0n0wall or pfsense? Documentation keep silence about it :(

0 Helpful

ericgarnel
Level 7
Level 7
In response to vault_dweller

‎03-07-2006 06:06 AM

the 4400 series controllers support splash pages, but you will need to create the user accounts for them to auth on the splash page. I believe it supports both local users & radius servers.

the captive portal page in both m0n0wall and pfsense can be configured with either not auth or auth (based on either local users or radius users on a seperate radius server)

Either way, it sounds like you may be infringing on your ISPs rules.

There are other ways to do this, but it depends on your configuration & hardware, ie: radius auth on http/https outbound

0 Helpful

daniel.keith
Level 1
Level 1

‎03-08-2006 09:00 AM

Thanks for all the replies. Since this is an open hot spot, for an educational institute, there will be no user authentication per se. However, a user agreement screen with a simple "agree/disagree" type logon. A proxy logon might be all that's needed, the SESM might be overkill. The PIX could be another good candidate to try out. I'll definitely need to research this more.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card