Users Guide

38 | aaa authentication captive-portal Dell Networking W-Series ArubaOS 6.4.x| User Guide

Parameter Description Range Default

welcome-page <url>

URL of the page that appears after

logon and before redirection to the

web URL. This can be set to any

URL.

— /auth/welcome

.html

white-list <white-list>

Name of an existing white list on an

IPv4 or IPv6 network destination.

The white list contains

authenticated websites that a guest

can access. If you have not yet

defined a netdestination, use the

CLI command netdestination to

define a destination host or subnet

before you add it to the whitelist.

— —

Usage Guidelines

You can configure the Captive Portal authentication profile in the base operating system or with the Next

Generation Policy Enforcement Firewall (PEFNG) license installed. When you configure the profile in the base

operating system, the name of the profile must be entered for the initial role in the AAA profile. Also, when you

configure the profile in the base operating system, you cannot define the default-role.

Example

The following example configures a Captive Portal authentication profile that authenticates users against the

controller’s internal database. Users who are successfully authenticated are assigned the auth-guest role.

To create the auth-guest user role shown in this example, the PEFNG license must be installed in the controller.

aaa authentication captive-portal guestnet

default-role auth-guest

user-logon

no guest-logon

server-group internal

Command History

Version Description

ArubaOS 3.0 Command introduced.

ArubaOS 6.0 The max-authentication-failures parameter no longer requires a

license.

ArubaOS 6.1 The sygate-on-demand, black-list and white-list parameters were

added.

ArubaOS 6.2 the auth-protocol parameter was added, and the user-chap parameter

was deprecated.

ArubaOS 6.3 The user-idle-timeout parameter was introduced.

ArubaOS 6.4 The url-hash-key parameter was introduced.