User Guide
OmniAccess SafeGuard OS Administration Guide
223
Chapter 6: Configuring Authentication and Role Derivation
Configuration command. The system uses both the specified port (for cleartext traffic)
and next port number (for SSL traffic).
aaa captive-portal redirect-port port number
For example, to change the redirect port from port 16978 to port 128:
(SafeGuardOS) #configure terminal
(SafeGuardOS)(config) #aaa captive-portal redirect-port 128
(SafeGuardOS)(config) #exit
(SafeGuardOS #
Configuring the Redirect Location
The location of the redirect is the server name to which the client is being redirected. By
default, the system redirects users to cp.Alcatel-Lucent.com. Because the traffic is
intercepted by the system, the actual value is irrelevant. It simply must resolve to an IP
address that the client tries to reach.
However when an address in the same broadcast domain is used, then the address must
actually exist, or must have a proxy-arp setup. To change the redirect location, use the aaa
captive-portal redirect-location Global Configuration command:
aaa captive-portal redirect-location dns-name
The system automatically supplies http://.
For example, this command resolves the redirection-location to the home page for
myCompany.com:
(SafeGuardOS) #configure terminal
(SafeGuardOS)(config) #aaa captive-portal redirect-location mycompany.com/home
(SafeGuardOS)(config) #exit
(SafeGuardOS) #
Setting the Refresh Interval Timer
Captive Portal contains a timer called the refresh interval. The refresh interval controls
how long (in minutes) before the client browser refreshes the connection with the system
through the heartbeat page. When the timer expires, the user is marked as idle. If the idle
Syntax Description port_number TCP port for redirected traffic. Valid port
range is from 1 to 65535
Syntax Description dns-name Host name to which clients are redirected
during capture. The default location is
cp.Alcatel-Lucent.com.