Captive Portal
Renato.neves (Talk | contribs) |
Renato.neves (Talk | contribs) (→Configuration Guides) |
||
| Line 44: | Line 44: | ||
== Configuration Guides == | == Configuration Guides == | ||
| − | * Zebra Wing 5 WLAN | + | * [[Zebra Wing 5 WLAN]] |
== Walled Garden for the Social Login == | == Walled Garden for the Social Login == | ||
Revision as of 13:52, 9 October 2015
Contents |
Architecture
The captive portal and Social-ID platform integration are illustrated in the following diagram:
Once the user connects to a Wi-Fi network, the AP or controller redirects to the captive portal page. The user can logs in using a social network or traditional credentials and the social login callback posts the user credentials to the wireless AP or controller.
The AP or controller must be configured to authenticate the users through RADIUS authentication. A RADIUS server and a client secret are configured and queried when an authentication request arrives. The Social Login RADIUS server authenticates the user and replies to the wireless AP or controller, which opens the Internet to the user and redirects back to some welcome or portal page. From this point the user can enjoy a free Internet.
Configuration Parameters
To configure the Captive Portal on almost all vendors you will need these basic parameters:
- RADIUS server host or IP address: the hostname or IP address of the Social-ID RADIUS server responsible to authenticate users.
- RADIUS client secret: the secret shared between the RADIUS client and server.
- Captive portal URL: the URL of the external login page where the users will be redirected to.
RADIUS Server
The RADIUS server can be configured by hostname or IP address. We recommend to use hostname instead of IP address.
We have the following servers by environment:
| Environment | Hostname | IP |
|---|---|---|
| production | radius.socialidnow.com | 54.94.140.247 |
| staging | radius-staging.socialidnow.com | 107.170.154.155 |
RADIUS Client Secret and Captive Portal URL
These parameters are specific for each customer. Contact us to get more details.
Configuration Guides
Walled Garden for the Social Login
In order to enable social and traditional logins you need to configure a list of URLs that the users can access without being authenticated in the Wi-Fi network.
The list of URLs are:
Social-ID NOW Platform
socialidnow.com
Facebook Login
akamaihd.net facebook.com fbcdn.net
Google+ Login
gstatic.com googleusercontent.com google.com googleapis.com
Twitter Login
twimg.com twitter.com
LinkedIn Login
licdn.com linkedin.com
Google Analytics
google-analytics.com
Bypass Apple CNA
Sometimes you want to bypass the Apple CNA portal. Add the following urls to disable it:
apple.com appleiphonecell.com ibook.info itools.info thinkdifferent.us
