Download
Share
Print this page
  1. Manuals
  2. Brands
  3. AMIGOPOD Manuals
  4. Software
  5. PowerConnect W Clearpass 100 Software
  6. Integration manual

AMIGOPOD PowerConnect W Clearpass 100 Software Integration Manual

Bluesocket integration guide
Hide thumbs Also See for PowerConnect W Clearpass 100 Software:

Advertisement

Quick Links

Download this manual See also: Manual, Integration Manual
Revision 1.0
13 August 2009
United States of America
+1 (888) 590-0882
Europe, Middle East & Asia
+34 91 766 57 22
Australia & Pacific
+61 2 8669 1140
http://www.amigopod.com
Copyright © 2009 amigopod. All rights reserved.

Advertisement

loading

Related Manuals for AMIGOPOD PowerConnect W Clearpass 100 Software

Summary of Contents for AMIGOPOD PowerConnect W Clearpass 100 Software

  • Page 1 Revision 1.0 13 August 2009 United States of America +1 (888) 590-0882 Europe, Middle East & Asia +34 91 766 57 22 Australia & Pacific +61 2 8669 1140 http://www.amigopod.com Copyright © 2009 amigopod. All rights reserved.
  • Page 2 Contents Introduction ..........................3 Test Environment ........................4 Integration ..........................5 Bluesocket Configuration ....................... 6 Step 1 – Create New Wired and/or Wireless VLAN (Optional) ..........6 Step 2 – Create RADIUS Accounting Server ................7 Step 3 – Create RADIUS Authentication Server ..............8 Step 4 –...
  • Page 3 This document outlines the configuration process on both the Bluesocket’s BlueSecure wireless controller and the Amigopod appliance to create a fully integrated Visitor Management solution. The solution leverages the captive portal functionality built into the Bluesocket software image. The Captive portal functionality allows a wireless client to authenticate using a web-based portal.

  • Page 4: Amigopod Configuration

    The test environment referenced throughout this integration guide is based on BSC-1200 controller. Although BSC-1200 is only one of its many hardware platform, the testing and therefore this procedure is valid for all hardware variants from Bluesocket in its BlueSecure Controller platform.
  • Page 5 Although the Bluesocket supports both internal and external captive portal functionality, this integration guide will focus on the later as the internal captive portal dictates the use of the internal login page resident on the controller itself. The login page is very basic and doesn’t allow for significant customization as is possible with the Amigopod Web Logins feature.
  • Page 6 A new VLAN can to be created to bind to the new Wireless LAN that will be used for the guest users. From the Controller Interfaces screen, click on the create button and enter the new VLAN ID and name you wish to use and then click the save button. Note: This is creation of a Managed-side VLAN interface.
  • Page 7 In order for the Bluesocket to successfully send accounting data associated with traffic being generated by the guest users, accounting server must be created on the controller. From the User Authentication Accounting Servers Create External RADIUS Accounting Server menu option in the top right corner, please create a new accounting server. Enter the IP Address of your Amigopod deployment in the Server Address field.
  • Page 8 In order for the Bluesocket to successfully authenticate the guest users that will be provisioned on the Amigopod system, a RADIUS definition needs to be defined on the BlueSecure controller. From the User Authentication Authentication Servers Create External Radius Authentication menu option in the top right corner, please create a new RADIUS authentication server.
  • Page 9 CONFIDENTIAL...
  • Page 10 Although the default web login page on the BlueSecure controller can be used, this integration document will show steps required in creation of a new web login page. From the Web Logins Login Screens Create Login Screen menu option, create a new login form.
  • Page 11 From the Web Logins Login Screens menu option, edit (click on the pencil) the newly created login form. Click on the Redirection menu option and please fill in the Base URL field and please refer to the Bluesocket administration guide for details of completing rest of this form. Base URL: “https://192.168.160.5/weblogin.php/2”.
  • Page 12 Click the Save button to save the changes. Following is a screenshot of an optional Self Registration setup. This step is identical to the above steps in creating a web login page on the BlueSecure controller. The only difference is the Base URL. Base UR: “Https://192.168.160.5/guest_register_1.php”.
  • Page 13 Newly created Web Login screen must be selected under the Managed Interface. This integration guide uses the physical Managed Interface as its interface for the guest subnet. If VLAN interface is used, then the proper VLAN interface must be selected for this step. Note: If the Default login screen is used, then this step can be skipped.
  • Page 14 NOTE: Only follow this step if the initial step of redirection to the Amigopod’s login screen is unreachable. Step 5 “Creation of Customer Login Screen” is supposed to dynamically open the un-registered role to the specified base URL. However, during creation and testing of this document, it was found that manual edit of the un-registered role was required.
  • Page 15 In order for the Bluesocket to authenticate users it needs to be able to communicate with the Amigopod RADIUS instance. Back in Step 2 of the Bluesocket configuration, a RADIUS server definition was defined. This step configures the Amigopod NAS definition for the Bluesocket. The RADIUS key used in Step 2 needs to be configured exactly the same here for the RADIUS transactions to be successful.
  • Page 16 A restart of the RADIUS Service is required for the new NAS configuration to take affect. Click the Restart RADIUS Server button shown below and wait a few moments for the process to complete. CONFIDENTIAL...
  • Page 17 By default the Amigopod comes pre-configured with Web Login templates (RADIUS Services Web Logins) for all the major wireless manufactures. The Bluesocket template can be modified to suit the local deployment by adding custom HTML code or defined a unique Amigopod skin for each captive portal page hosted by the Amigopod install as shown below: From the RADIUS Services Web Logins page select the Bluesocket Login entry and Click the Edit button.
  • Page 18 From the RADIUS Web Login page select the Skin that you would like presented as the branding for the Captive Portal page. Modify the sample HTML in the Header HTML, Footer HTML and Login Message section to customize for your local environment. Click the Save Changes button to commit the changes. CONFIDENTIAL...
  • Page 19 The URL that needs to be configured in the Bluesocket External Captive Portal section covered in Step 4 of Bluesocket configuration can be confirmed by clicking on the test button shown on the screen below under the RADIUS Services Web Logins screen: Click on the Test button CONFIDENTIAL...
  • Page 20 A Test page will be presented and the URL can be copied from the address bar: Note: Make note of the URL presented in the web browser after the Test button has been clicked. This URL will be required in the configuration of the captive portal settings on the Bluesocket, Step 4 of Bluesocket configuration.
  • Page 21 Guest Self-Registration is also an option. Following are steps in setting up the Amigopod for Guest Self-Registration. Under the Guest Manager Customization Guest Self Registration screen, open the built-in Guest Self-Registration option and select the Duplicate. Click to Edit CONFIDENTIAL...
  • Page 22 Click the Edit under the newly created Guest Self-Registration to edit. CONFIDENTIAL...
  • Page 23 Click on the Master Enable and check the Enable guest self-registration option. Note: When using the duplicate feature, the name of the newly create login will be “Copy of XXX”. It is preferable (not required) to rename the field to meet your naming convention. Click Save Changes to save configuration.
  • Page 24 Click on the NAS Vendor Settings and check the Enable automatic guest login to a Network Access Server. Then, Select Bluesocket under Vendor Settings pull down menu and type in the IP address of the BlueSecure controller. Click Save Changes to save configuration. CONFIDENTIAL...
  • Page 25 The URL that needs to be configured in the Bluesocket External Captive Portal section covered in Step 4 of Bluesocket configuration can be confirmed by clicking on the Launch this guest registration page from the main Customize Guest Self-Registration page. Click on this link to open the self-registration page CONFIDENTIAL...
  • Page 26 A Test page will be presented and the URL can be copied from the address bar: Note: Make note of the URL presented in the web browser after the Test button has been clicked. This URL will be required in the configuration of the captive portal settings on the Bluesocket, Step 4 of Bluesocket configuration.
  • Page 27 Within the Amigopod RADIUS Server a test user account can be created using the Amigopod Guest Manager. From the Guest Manager menu, select the Create New Guest Account option. Enter the test user details as detailed on the form below and click the Create Account button to save the new test user account.
  • Page 28 Now that the configuration of both the Bluesocket and the Amigopod solution is complete, the following steps can be followed to verify the setup. Using the Authentication Test feature, BlueSecure controller can test the validity of the RADIUS Server configuration and connectivity. From the User Authentication Authentication Servers Authentication Test menu option, please test the newly created RADIUS authentication server.
  • Page 29 Using a test laptop, connect to the wired or wireless network. The screen capture below is an example that shows the interface used on a Windows XP SP2 based laptop. Although the process differs from laptop to laptop depending on the wired and wireless card drivers installed and different operating systems in use, the basic premise of connecting to the unsecured Guest network should be fundamentally the same.
  • Page 30 Using the Windows Command Prompt or equivalent in the chosen operating system, confirm that a valid IP Address has been received from the DHCP server defined on the Bluesocket. Issue the ipconfig command from the Windows Command Prompt to display the IP information received from the DHCP process.
  • Page 31 Following is a screenshot of the Bluesecure controller’s Active Connections list after the client connects and receives an IP address. CONFIDENTIAL...
  • Page 32 When the web browser on the test laptop is launched the Bluesocket will automatically capture the session and redirect the user to the Amigopod hosted login page as shown below: Enter the test user details entered and recorded in Step 5 of the Amigopod configuration procedure and click the Login button.
  • Page 33 Following is a screenshot of the Bluesecure controller’s Active Connections list after the client has successfully completed the login process. CONFIDENTIAL...
  • Page 34 Once the test laptop has successfully authenticated and now able to browse the Internet, an entry should appear in the RADIUS logs confirming the positive authentication of the test user – in this example, test@acme.com. Select the RADIUS Services Server Control menu option and the following screen should be displayed showing the status of the RADIUS server and a tail of the log file, including an entry for the positive authentication transaction.

This manual is also suitable for:

Amigopod