The captive portal and Social-ID platform integration are illustrated in the following diagram:
Once the user connects to a Wi-Fi network, the AP or controller redirects to the captive portal page. The user can log in using a social network or traditional credentials and the social login callback posts the user credentials to the wireless AP or controller.
The AP or controller must be configured to authenticate the users through RADIUS authentication. A RADIUS server and a client secret are configured and queried when an authentication request arrives. The Social Login RADIUS server authenticates the user and replies to the wireless AP or controller, which opens the Internet to the user and redirects back to some welcome or portal page. From this point the user can enjoy a free Internet.
To configure the Captive Portal on almost all vendors you will need these basic parameters:
- RADIUS server host or IP address: the hostname or IP address of the Social-ID RADIUS server responsible to authenticate users.
- RADIUS client secret: the secret shared between the RADIUS client and server.
- Captive portal URL: the URL of the external login page where the users will be redirected to.
The RADIUS server can be configured by hostname or IP address. We recommend to use hostname instead of IP address.
We have the following servers by environment:
|Environment||Region||Hostname||IP||Authentication port||Accounting port|
RADIUS Client Secret and Captive Portal URL
These parameters are specific for each customer. Contact us to get more details.
- Aruba Controller
- Aruba IAP
- Cisco Meraki
- Mikrotik RouterOS
- Ruckus Virtual SmartZone
- Ruckus ZoneDirector
- Zebra Wing 5 WLAN
- Zyxel Nebula
- Zyxel NXC Series
Walled Garden for the Social Login
In order to enable social and traditional logins you need to configure a list of URLs that the users can access without being authenticated in the Wi-Fi network.
Captive Portal Customizations
Available customization options can be found here: Captive Portal Customizations