Table of Contents
Advertisement
Step-by-Step
Procedure
Results
Copyright © 2010, Juniper Networks, Inc.
To configure captive portal on the switch:
To create a secure channel for Web access to the switch, configure captive portal
1.
for HTTPS:
Associate the security certificate with the Web server and enable HTTPS on the
a.
switch:
[edit]
user@switch# set system services web-management https local-certificate
my-signed-cert
NOTE: You can enable HTTP instead of HTTPS, but we recommend
HTTPS for security purposes.
Configure captive portal to use HTTPS:
b.
[edit]
user@switch# set services captive-portal secure-authentication https
Enable an interface for captive portal:
2.
[edit]
user@switch# set services captive-portal interface ge-0/0/10
(Optional) Allow specific clients to bypass captive portal authentication:
3.
[edit]
user@switch# set ethernet-switching-options authentication-whitelist 00:10:12:e0:28:22
NOTE: Optionally, you can use set
authentication-whitelist 00:10:12:e0:28:22 interface ge-0/0/10.0
the scope to the interface.
If the MAC address has already been learned on the interface, you must clear it
using the
clear captive-portal interface interface-name
whitelist. Otherwise the new entry for the MAC address will not be added to the
ethernet switching table and the authentication bypass will not be allowed.
(Optional) To redirect clients to a specified page rather than the page they originally
4.
requested, configure the post-authentication URL:
[edit services captive-portal]
user@switch# set custom-options post-authentication-url
http://www.my-home-page.com
Display the results of the configuration:
[edit]
user@switch# show
Chapter 88: Examples: Access Control Configuration
ethernet-switching-options
) before adding it to the
to limit
2823
Advertisement
Chapters
Table of Contents
Troubleshooting
