User manual
P a g e 1 9 o f 9 3
U A M
U A M ( U n i v e r s a l A c c e s s M e t h o d ) i s i n t e n d e d f o r u s e i n I n t e r n e t c a f e s , H o t S p o t s , a n d o t h e r s i t e s w h e r e t h e A c c e s s P o i n t
i s u s e d t o p r o v i d e I n t e r n e t A c c e s s .
I f e n a b l e d , t h e n H T T P ( T C P , p o r t 8 0 ) c o n n e c t i o n s a r e c h e c k e d . ( U A M o n l y w o r k s o n H T T P c o n n e c t i o n s ; a l l o t h e r t r a f f i c
i s i g n o r e d . ) I f t h e u s e r h a s n o t b e e n a u t h e n t i c a t e d , I n t e r n e t a c c e s s i s b l o c k e d , a n d t h e u s e r i s r e -d i r e c t e d t o a n o t h e r w e b
p a g e . T y p i c a l l y , t h i s w e b p a g e i s o n y o u r W e b s e r v e r , a n d e x p l a i n s h o w t o p a y f o r a n d o b t a i n I n t e r n e t a c c e s s .
T o u s e U A M , y o u n e e d a R a d i u s S e r v e r f o r A u t h e n t i c a t i o n . T h e " R a d i u s S e r v e r S e t u p " m u s t b e c o mp l e t e d b e f o r e y o u
c a n u s e U A M . T h e r e q u i r e d s e t u p d e p e n d s o n w h e t h e r y o u a r e u s i n g “ I n t e r n a l ” o r “ E x t e r n a l ” a u t h e n t i c a t i o n .
• Internal authentication uses the web page built into the Wireless Access Point.
• External authentication uses a web page on your Web server. Generally, you should use External
authentication, as this allows you to provide relevant and helpful information to users.
UAM authentication - Internal
31. Ensure the Wireless Access Point can login to your Radius Server.
• Add a RADIUS client on RADIUS server, using the IP address or name of the Wireless Access Point, and
the same shared key as entered on the Wireless Access Point.
• Ensure the Wireless Access Point has the correct address, port number, and shared key for login to your
Radius Server. These parameters are entered either on the Security page, or the UAM sub-screen,
depending on the security method used.
32. Add users on your RADIUS server as required, and allow access by these users.
33. Client PCs must have the correct Wireless settings in order to associate with the Wireles Access Point.
34. When an associated client tries to use HTTP (TCP, port 80) connections, they will be re-directed to a user
login page.
35. The client (user) must then enter the user name and password, as defined on the Radius Server. (You must
provide some system to let users know the correct name and password to use.)
36. If the user name and password is correct, Internet access is allowed.
Otherwise, the user remains on the login page.
• Clients which pass the authentication are listed as “xx:xx:xx:xx:xx:xx WEB authentication” in the log table,
and station status would show as “Authenticated” on the station list table.
• If a client fails authentication, “xx:xx:xx:xx:xx:xx WEB authentication failed” shown in the log, and station
status is shown as “Authenticating” on the station list table.
UAM authentication - External
37. Ensure the Wireless Access Point can login to your Radius Server.
• Add a RADIUS client on RADIUS server, using the IP address or name of the Wireless Access Point, and
the same shared key as entered on the Wireless Access Point.
• Ensure the Wireless Access Point has the correct address, port number, and shared key for login to your
Radius Server. These parameters are entered either on the Security page, or the UAM sub-screen,
depending on the security method used.
38. On your Web Server, create a suitable welcome page.
The welcome page must have a link or button to allow the user to input their user name and password
on the uamlogon.htm page on the Access Point.
39. On the Access Point’s UAM screen, select External Web-based Authentication, and enter the URL for the
welcome page on your Web server.
40. Add users on your RADIUS server as required, and allow access by these users.
41. Client PCs must have the correct Wireless settings in order to associate with the Wireless Access Point.
42. When an associated client tries to use HTTP (TCP, port 80) connections, they will be re-directed to the
welcome page on your Web Server. They must then click the link or button in order to reach the Access
Point’s login page.
43. The client (user) must then enter the user name and password, as defined on the Radius Server. (You must
provide some system to let users know the correct name and password to use.)
44. If the user name and password is correct, Internet access is allowed.
Otherwise, the user remains on the login page.