Netgear WC7520 - ProSafe 20-AP Wireless Controller 参照マニュアル
Configuring Network Access and Security
126
ProSafe 20-AP Wireless Controller WC7520
Manage Guest Network Access
Users with management (admin) credentials—for example, receptionists or hotel clerks—can
provision guests. Guests need to provide their email address, or both their email address and
a password. These latter guests are referred to as captive portal users, for which you need to
set up a captive portal and captive portal user credentials.
provision guests. Guests need to provide their email address, or both their email address and
a password. These latter guests are referred to as captive portal users, for which you need to
set up a captive portal and captive portal user credentials.
Configure Captive Portal Settings
Captive portal authentication is typically used for hotspot users and paying guests such as
hotel guests who purchase access time for an Internet connection. You can configure a single
captive portal only per wireless controller.
hotel guests who purchase access time for an Internet connection. You can configure a single
captive portal only per wireless controller.
When you configure a captive portal, you can use either the wireless controller as a local
authentication server for the captive portal clients, or you can configure an external RADIUS
server for authentication. There are two types of portal settings:
authentication server for the captive portal clients, or you can configure an external RADIUS
server for authentication. There are two types of portal settings:
•
Guest portal. Use this portal if all wireless users are allowed to access the network by
supplying only their email address. You do not need to define user names and passwords
for these users.
for these users.
•
Captive portal. Use this portal type if wireless users need to supply their login name and
password before being allowing access the network. You need to define user names and
passwords for these users (see
passwords for these users (see
Note:
You cannot configure captive portal authentication if the network
authentication uses an external RADIUS server. That is, if you
configure an external RADIUS server with WPA, WPA2, or WPA &
WPA2 (or if you use legacy 802.1X), you cannot configure captive
portal authentication; the network authentication needs to be Open
System, Shared Key, WPA-PSK, WPA2-PSK, or WPA-PSK &
WPA2-PSK (see
configure an external RADIUS server with WPA, WPA2, or WPA &
WPA2 (or if you use legacy 802.1X), you cannot configure captive
portal authentication; the network authentication needs to be Open
System, Shared Key, WPA-PSK, WPA2-PSK, or WPA-PSK &
WPA2-PSK (see
Note these guidelines for captive portal user authentication and accounting through an
external RADIUS server:
external RADIUS server:
•
You can use either the basic-Auth RADIUS server or a RADIUS server of an advanced
authentication group. You cannot use the external LDAP server.
•
The wireless controller uses CHAP or MS-CHAP as the authentication protocol with the
authentication server.
•
The following RADIUS authentication variables are supported on the wireless controller:
-
User-Name
-
User-Password