WESM zl Management and Configuration Guide WT.01.28 and greater
5-8
Web Authentication for Mobile Users
Overview
Table 5-1 shows the location of these pages in the Wireless Edge Services zl Module’s
file system. When you enable Web-Auth and choose to use these pages, the OS copies
them to a directory for that WLAN. For example, if you use Web-Auth on WLAN
1, the login page is saved as flash:/hotspot/wlan1/login.html. In Table 5-1, X indicates
the WLAN’s index number.
Table 5-1. Internal Web-Auth Pages
Note When you configure Web-Auth, make sure that your Wireless Edge Services zl
Module’s flash memory has sufficient space to store the Web pages.
If you prefer, you can create your own Web pages and use them instead of the default
pages. You can store these pages:
■ on an external server, such as your company’s Web server
■ in the Wireless Edge Services zl Module’s flash memory (advanced
configuration)
When you build these Web pages, you must include certain Common Gateway
Interface (CGI) commands:
■ code that returns the necessary login credentials to the module
■ code that issues the disconnect command to the module
See “Configuring Custom Web-Auth Pages” on page 5-35 for instructions on pro-
gramming the CGI code.
Allow List
When a user associates with a WLAN that is configured for Web-Auth, the user’s
station cannot, by default, access any device until the user authenticates to the
RADIUS server. When you add a device’s IP address to the Allow list, that device is
available to any user. Only allow devices that offer services that should be available
to anyone who comes within range of your RPs at anytime.
Web Page Name Description Location
Login Web page to which unauthenticated users are
redirected in order to log in
flash:/hotspot/wlanX/login.html
Welcome Web page that users see after they successfully
authenticate
flash:/hotspot/wlanX/welcome.html
Failed Web page that users see if they fail authentication flash:/hotspot/wlanX/fail.html