EWS Series User Manual

4.3 External Authentication

The WLAN controllers are equipped with a variety of external authentication options so as to support

account roaming and adapt to existing network. There are

 POP3

 LDAP

 RADIUS

 NT Domain

 SIP

 Social Media

POP3

POP3 is a common mail service protocol where e-mail is kept by a certain Internet server. The WLAN

controllers offer administrator a way of authentication in which users are granted the Internet service by

typing in their email addresses and passwords stored in the POP3 server.

Server 5

by default is configured to use POP3 authentication. Click on the

Server Name

and a detailed

configuration page will show up to inquire necessary settings including POP3 server address, secondary

POP3 server specification etc.

LDAP

The Lightweight Directory Access Protocol (LDAP) is an application protocol for accessing and maintaining

distributed directory information services over an IP network. If you wish to deploy LDAP server for user

authentication, proceed for a complete setup.

Server 4

by default is selected to use LDAP database for user credential check.

Click on the

Server Name

to enter the detailed setup page of LDAP (a secondary LDAP server can be

designated as a backup server). Furthermore, LDAP configuration page has an

Attribute-Group Mapping

page which maps LDAP attributes to different groups on the WLAN controller, enabling different accounts

to be incorporated into different Groups.

RADIUS

Remote Authentication Dial In User Service (RADIUS) is a networking protocol that provides centralized

Authentication, Authorization, and Accounting (AAA) management for clients to connect and use a

network service. It is also the most commonly used external authentication mechanism today. How to

deploy WLAN controller to different scenarios is described in session 4.5 RADIUS Authentication

Application