Table of Contents
Advertisement
Chapter 1: An Overview of the BlueSecure Controller
Web-based User Logins
When leveraging the BSC's native authentication directory, or an external RADIUS or
LDAP server, a user typically authenticates via an SSL login page returned to the user
when he or she launches a web browser. The following figure shows a sample user login
page.
Customizing the
You can customize the BSC user login page using standard HTML to create the look, feel,
User Login Page
or branding desired. Many BSC administrators also include instructions, usage/policy
statements and tech support information on the login page.
Typically, the login page provides a username and password text box for "registered
users" and possibly a "guest login" text box. Bluesocket provides default user login
prompts in fourteen languages: Catalan, Chinese (Simplified), Chinese (Traditional),
Czech, Dutch, English, French, German, Italian, Japanese, Korean, Portuguese, Spanish,
and Swedish. You can also supply your own login prompt translations in other languages
including Asian languages requiring multi-byte character sets.
You can create multiple custom user login pages to display for each possible user location
(i.e., physical interface, VLAN, or remote subnet) in your network.
The Un-
To enable use of web-based user logins, the BlueSecure Controller provides a default "un-
Registered Role
registered" role. The un-registered role is a special role into which users/devices are
placed after they get their IP address. The un-registered role only allows DNS outgoing
(from the wireless-to-wired direction in the stateful firewall). DNS is allowed so that users
can launch their browsers and make HTTP requests. The BlueSecure Controller intercepts
this web page request and returns the customized user login page. Until a user logs in, he
or she will not be granted any access to the network. Once the user authenticates, he or
she is placed into a role.
Guest or Visitor
You may require the ability to allow guests or visitors to your school/workplace to be able
Access
to access the Internet or other network resources. For example, guest access may be
required for customers, partners, or consultants who visit your facility.
The BlueSecure Controller provides an optional "guest" role that you can enable to meet
this requirement. If you enable the guest role, a "guest login" box appears on the user
login page. To login as a guest, a user need only provide his or her e-mail address.
The guest role is a role like any other, so it determines bandwidth, encryption and
restricted access for the user. But the guest role is unique in that the user need not exist as
1-6
Figure 1-3: A Sample BSC User Login Page
Advertisement
Table of Contents
