User's Guide
Table Of Contents
- Table of Contents
- Preface
- Welcome to Extreme Campus Controller
- Dashboard
- Monitor
- Sites List
- Device List
- Access Points List
- Smart RF Widgets
- Switches List
- Networks List
- Clients
- Policy
- Configure
- Network Configuration Steps
- Sites
- Add a Site
- Modifying Site Configuration
- Site Location
- Adding Device Groups to a Site
- Add or Edit a Configuration Profile
- Associated Profiles
- Associated Networks
- Mesh Point Profile Configuration
- Configure Client Bridge
- Understand Radio Mode
- Radio as a Sensor
- Advanced AP Radio Settings
- VLAN Profile Settings
- AirDefense Profile Settings
- ExtremeLocation Profile Settings
- IoT Profile Settings
- Positioning Profile Settings
- Analytics Profile Settings
- RTLS Settings
- Advanced Configuration Profile Settings
- Configuring RF Management
- Configuring a Floor Plan
- Advanced Tab
- Devices
- Networks
- Policy
- Automatic Adoption
- ExtremeGuest Integration
- AAA RADIUS Authentication
- Onboard
- Onboard AAA Authentication
- Manage Captive Portal
- Manage Access Control Groups
- Access Control Rules
- Tools
- Administration
- System Configuration
- Manage Administrator Accounts
- Extreme Campus Controller Applications
- Product License
- Glossary
- Index
Authenticated Portal: Authenticated Registration Settings on page 310
Look and Feel Settings on page 312
Default Rules for Captive Portal on page 323
Authentication with Third-party Credentials
Guest Registration using a third-party application has the following advantages:
• It provides Extreme Campus Controller with a higher level of user information by obtaining
information from the end user's third-party application account instead of relying on information
entered by the end-user.
• It provides an easier registration process for the end user. Extreme Campus Controller retrieves the
public information from the end user's third-party account and uses that information to populate the
name and email registration fields.
After you have configured a third-party application for registration, this is how the authentication
process works:
• The end user attempts to access an external Web site. Their HTTP trac is redirected to the captive
portal.
• In the Guest Registration Portal, the end user selects the option to register using credentials from a
third-party (Facebook, Yahoo, etc.)
• The end user is redirected to the third-party login screen.
• If an Acceptable Use Policy option is configured, the captive portal verifies that the AUP has been
acknowledged before redirecting the user to the third-party application.
• After logging in, the end user is presented with the information that Extreme Campus Controller
receives from the third-party application.
• The end user grants Extreme Campus Controller access to the third-party information and is
redirected back to the captive portal where they see a "Registration in Progress" message.
• The third-party application provides the requested information to Extreme Campus Controller,
which uses it to populate the user registration fields.
• The registration process completes and network access is granted.
Third-party Registration Requirements
Third-party captive portal registration requires the following:
• The Extreme Campus Controller Access Control engine must have Internet access in order to retrieve
user information from the third-party application.
• The Extreme Campus Controller Access Control Unregistered access policy must allow access to the
third-party application site (either allow all SSL or make allowances for application servers).
• The Extreme Campus Controller Access Control Unregistered access policy must allow access to
HTTPS trac to the third-party application OpenID servers.
• A Unique third-party application must be created on the third-party application Developers page.
• The Portal Configuration must have the third-party application enabled and must include the third-
party application's Application ID and Shared Secret.
Onboard
Portal Website Configuration
Extreme Campus Controller User Guide for version 5.46.03 309