Logging in
Open a web browser and log in to your NXC web interface.
RADIUS Configuration
Click Configuration > Object > AAA Server on the left menu and select the RADIUS tab. Add a new server profile and configure with:
| Name | guest |
Under Authentication Server Settings
| Server Address | *insert radius_server here* |
| Authentication Port | 1812 |
| Backup Server Address | *insert radius_server2 here* |
| Backup Authentication Port | 1812 |
| Key | *insert radius_secret here* |
Under Accounting Server Settings
| Server Address | *insert radius_server here* |
| Authentication Port | 1813 |
| Backup Server Address | *insert radius_server2 here* |
| Backup Authentication Port | 1813 |
| Key | *insert radius_secret here* |
| Accounting Interim Update | Enabled |
| Interim Interval | 2 minutes |
Click OK to Save. Next, click Auth Method on the left row menu. Click Add and configure with:
| Name | guest_aaa |
| Server Profile | guest / RADIUS (select from the list) |
Click OK to Save.
Captive Portal Settings
Click Network > Captive Portal on the left side menu options layout. Configure with:
| Enable Captive Portal | Enabled |
| Logout IP | 10.10.10.10 |
Click Apply to Save. Next, select the Redirect on Controller tab, click Add, and deploy with the following rule profile parameters:
| Enable Policy | Enabled |
| Source Address | Choose your WiFi user subnet |
| Destination Address | any |
| Schedule | None |
| Authentication | force |
| Authentication Method | guest_aaa |
| External Web Portal Login URL | *insert access_url here* |
| Welcome URL | *insert redirect_url here*& |
| Error URL | *insert access_url here*?res=failed& |
Click OK to Save.
SSID Profile
Click Object > AP Profile and select the SSID tab. Edit an existing target SSID block dedicated to your Guest WiFi architecture, or click Add to declare a new one:
| Profile Name | guest |
| SSID | Guest WiFi (or whatever you wish) |
| Security Profile | default |
Click OK to Save.
Walled Garden Configuration
At present there is no way to configure the walled garden via the system web interface. We must upload a configuration profile document to the hardware controller directly to enable destination path mapping.
Copy and paste the required landing domains into a standard local text editor and save the resulting document file as apple_fqdn.conf on your desktop space. Please refer explicitly to this list for precise mapping requirements.
You need to push this file mapping package onto the active path loops of your controller via FTP. To execute the push, open a command prompt or terminal shell window and enter:
| FTP Console Commands | ftp controller_ip [Enter your admin username and password when prompted] cd /tmp put C:\Users\my.username\Desktop\apple_fqdn.conf |
Configuration Complete
The configuration is now complete.
Free Guest WiFi
Purple App
SecurePass
Splash Access