User's Manual

ManualsBrandsSiemens Communications ManualsElectronicsHiPath Wireless AP, Altitude 450, Altitude 451

151

152

153

154

155

156

157

158

159

160

Virtual Network Services

hwc_vnsintro.fm

RF assignment for a VNS

A31003-W1050-U100-2-7619

, March 2008

152 HiPath Wireless Controller, Access Points and Convergence Software V5 R1 , C20/C2400 User Guide

5.4 RF assignment for a VNS

The second step in setting up a VNS is to configure the RF assignment for the

VNS. From the RF tab you assign APs to a VNS and SSID definitions.

5.5 Authentication for a VNS

The third step in setting up a VNS is to configure the authentication mechanism

for the VNS. The authentication mechanism depends on the network assignment.

In addition, all VNS definitions can include authentication by Media Access

Control (MAC) address. Authentication by MAC address provides a method of

access control for a user as it associates with the AP based on the device's MAC

address.

5.5.1 Authentication with SSID network assignment

If network assignment is SSID, there are two authentication options:

•None – This authentication method is the default for a new SSID assignment

VNS. Authentication VNS, unless MAC-based authorization is used, the

default filter is applied, not the non-authentication filter. For more information,

see Section 5.6, “Filtering for a VNS”, on page 154.

• Captive Portal – This authentication method employs a Web redirection

which directs a user's Web session to an authentication server. Typically, the

user must provide their credentials (userID, password) to be authenticated.

The Captive Portal redirection operation will redirect any Web page requests

corresponding to targets not explicitly allowed by the non-authenticated filter.

The redirection will instruct the user's Web page to contact the defined

authentication Web server. You must ensure that the authentication Web

server is explicitly listed as an allow destination in order for traffic to access it.

The HiPath Wireless Controller supports two modes of Captive Portal

authentication:

• Internal Captive Portal – The controller's own Captive Portal

authentication page (configured as an editable form) is used to request

user credentials.

• External Captive Portal – An entity outside of the HiPath Wireless

Controller is responsible for handling the user authentication process,

presenting the credentials request forms and performing user

authentication procedures. The controller is then informed of the

authentication results via its Business Echosystem's interfaces.

Four authentication types are supported for Captive Portal authentication: