ACCESS GATEWAY
System Administration 83
9. Enable or disable the 802.1x Authentication Support feature, as required.
10. Enable or disable the Origin Server (OS) parameter encoding for Portal Page and EWS
feature, as required.
11. You can choose to Enable failover to Internal Web Server Authentication if Portal
Page/External Web Server is not reachable
by placing a check in that box.
12. Enable or disable Port Based Billing Policies.
The Port Location capabilities on the NSE have been enhanced. It is now possible to
define a policy on a port. The billing methods (RADIUS, Credit Card, PMS, L2TP
Tunneling) and the billing plans available on each port can now be individually
configured.
This ability allows for having different billing methods and billing plans on different ports
identified by VLANs or SNMP Port Query of the concentrator. A practical application of
this feature is to have a normal hotel room with a plan A that is $9.99 for a day with PMS
billing and have a meeting room with a plan of $14.99 an hour with Credit Card billing.
In order for the port-based policies to work, you must enable Port Based Billing Policies.
See also “Adding and Updating Port-Location Assignments {Add}” on page 192.
13. Enable or disable HTTPS Redirection.
The NSE responds to regular HTTP requests from pending subscribers with a redirection
to the login screen. The NSE does not respond to HTTPS requests from pending
subscribers (HTTP requests with a destination port = 443) with a redirect; this will result
in a timeout or invalid certificate warning.
Enabling
HTTPS Redirection adds a security exception to the user’s browser to allow the
certificate received from the NSE to be always “valid.”
14. Enable or disable Facebook Login. If you enable Facebook login, you must provide a
Facebook App ID and Facebook App secret code. Instructions for creating these are
available from Facebook.
15. Depending on which authorization mode you choose, go to the following sub-sections in
this procedure:
Enabling AAA Services with the Internal Web Server – The IWS is “flashed” into the
system’s memory and the subscriber’s login page is served directly from the Access
Gateway.
Enabling AAA Services with an External Web Server – In the EWS mode, the Access
Gateway redirects the subscriber’s login request to an external server (transparent to
Both AAA and RADIUS Authentication must be enabled for 802.1x
Authentication support.
To Next Page
Loading...
