User's Manual
EnRoute50x/51x User’s Guide
TR0153 Rev. D2
110
the port on the server that the RADIUS server is listening on
the shared secret – must be a string of alphanumeric characters that is 32 characters or
less in length.
CLI
The „splash.auth.server.<intf>.host‟, „splash.auth.server.<intf>.port‟, and
„splash.auth.server.<intf>.secret‟ parameters in the „sys‟ interface, where <intf> is either
„wlan1‟, „wlan2‟, „wlan3‟, or „wlan4‟, specify the authentication server to use. The example
below shows how to configure the authentication server for interfaces „wlan1‟ and „wlan2‟.
> use sys
sys> set splash.auth.server.wlan1.host=auth1.yourserverhere.com
sys> set splash.auth.server.wlan1.port=1812
sys> set splash.auth.server.wlan1.secret=authsecret
sys> set splash.auth.server.wlan2.host=auth2.yourserverhere.com
sys> set splash.auth.server.wlan2.port=1812
sys> set splash.auth.server.wlan2.secret=authsecret
Web GUI
The authentication server parameters can be set on the “Splash Pages” sub-tab under the
“AAA” tab on the “System Parameters” page of the web interface (see Figure 49).
15.1.5 Trusted MAC Addresses
A list of trusted MAC addresses, which do not require splash page authentication, can be
defined. When a device with one of these MAC addresses connects to a node, it will
automatically have full access to the WAN.
CLI
The list of trusted MAC addresses is set with the „splash.trusted_macs‟ parameter in the „sys‟
interface. The MAC addresses are specified as a list of 48-bit addresses separated by
commas. An example of setting this parameter is shown below.
> use sys
sys> set splash.trusted_macs="aa:bb:cc:00:00:01,aa:bb:cc:00:00:02"
Web GUI
The authentication server parameters can be set on the “Advanced Splash Pages” sub-tab
under the “AAA” tab on the “System Parameters” page of the web interface (see Figure 52).
The list of trusted MAC addresses is displayed on this page. To delete a trusted MAC from the
list, click on the “Delete MAC” button next to the MAC address.