ACCESS GATEWAY
System Administration 87
Enabling HTTPS Redirection adds a security exception to the user’s browser to allow the
certificate received from the NSE to be always “valid.”
14. Depending on which authorization mode you choose, go to the following sub-sections in
this procedure:
Enabling AAA Services with the Internal Web Server – The IWS is “flashed” into the
system’s memory and the subscriber’s login page is served directly from the Access
Gateway.
Enabling AAA Services with an External Web Server – In the EWS mode, the Access
Gateway redirects the subscriber’s login request to an external server (transparent to
the subscriber). The login page served by the EWS reflects the “look and feel” of the
solution provider’s network and presents more login options.
Enabling AAA Services with the Internal Web Server
You are here because you want to enable the AAA Services with the Access Gateway’s Internal
Web Server. The Access Gateway maintains an internal database of authorized subscribers,
based on their MAC (hardware address) and user name (if enabled). By referring to its
database record, also known as an authorization table, the Access Gateway instantly
recognizes new subscribers on the network.
You can configure the Access Gateway to handle new subscribers in various ways (see the
table on this page). With the IWS, you also have the option of enabling SSL support.
After selecting the Internal Web Server authorization mode, you have the option of enabling or
disabling the Usernames and New Subscribers features. These features work in conjunction
with each other to determine how new subscribers are handled. Refer to the following table:
1. Select the Internal Web Server.
Usernames New Subscribers System Response
Disabled Enabled Allows new subscribers to enter the system without
giving a user name and password.
Enabled
(optional)
Enabled Allows new subscribers or authentication by their
user name and password.
Enabled Disabled New subscribers are not allowed. Only existing
subscribers are allowed after authenticating their
user name and password.
Disabled Disabled You will not use this combination unless you want to
lock out all subscribers.
To Next Page
Loading...
