User's Manual

ManualsBrandsNetgear ManualsSwitchNetgear ProSafe WFS709TP Smart Wireless Controller WFS709TP-100NAS

131

132

133

134

135

136

137

138

139

140

Table Of Contents

WFS709TP ProSafe Smart Wireless Switch Software Administration Manual
Contents
About This Manual
- Conventions, Formats, and Scope
- How to Use This Manual
- How to Print this Manual
- Revision History
Chapter 1 Overview of the WFS709TP
- WFS709TP System Components
- Basic WLAN Configuration
- Wireless Client Access to the WLAN
- Configuring and Managing the WFS709TP
  - Tools
Chapter 2 Deploying a Basic WFS709TP System
- Configuration Overview
- Configuring the WFS709TP
- Deploying APs
- Additional Configuration
Chapter 3 Configuring Network Parameters
- Configuring VLANs
  - Assigning a Static Address to a VLAN
  - Configuring a VLAN to Receive a Dynamic Address
- Configuring Static Routes
- Configuring the Loopback IP Address
Chapter 4 RF Plan
- RF Plan Overview
- Before You Begin
  - Task Overview
  - Planning Requirements
- Using RF Plan
- RF Plan Example
Chapter 5 Configuring WLANS
- Before You Begin
  - Determine the Authentication Method
  - Determine the Default VLAN
- Basic WLAN Configuration in the Browser Interface
  - Example Configuration
- Advanced WLAN Configuration in the Browser Interface
- IntelliFi RF Management
Chapter 6 Configuring AAA Servers
- Configuring an External RADIUS Server
- Adding Users to the Internal Database
- Configuring Authentication Timers
Chapter 7 Configuring 802.1x Authentication
- 802.1x Authentication
  - Authentication with a RADIUS Server
  - Authentication Terminated on WFS709TP
- Configuring 802.1x Authentication
  - 802.1x Authentication Page
- Advanced Configuration Options for 802.1x
Chapter 8 Configuring the Captive Portal
- Overview of Captive Portal Functions
- Configuring Captive Portal
- Configuring Advanced Captive Portal Options
- Configuring the AAA Server for Captive Portal
  - Changing the Protocol to HTTP
- Personalizing the Captive Portal Page
Chapter 9 Configuring MAC-Based Authentication
- Configuring the WFS709TP
- Configuring Users
Chapter 10 Adding Local WFS709TPs
- Moving to a Multi-Switch Environment
- Configuring Local WFS709TPs
Chapter 11 Configuring Redundancy
- Virtual Router Redundancy Protocol
- Redundancy Configuration
Chapter 12 Configuring Wireless Intrusion Protection
- Rogue/Interfering AP Detection
- Misconfigured AP Detection
  - Configuring Misconfigured AP Protection
Chapter 13 Configuring Management Utilities
- Configuring Management Users
- Configuring SNMP
- Creating Guest Accounts
- Managing Files on the WFS709TP
- Installing a Server Certificate
Chapter 14 Configuring WFS709TP for Voice
- Voice over IP Proxy ARP
- Battery Boost
- Limiting the Number of Active Voice Calls
- WPA Fast Handover
Appendix A Configuring DHCP with Vendor-Specific Options
- Overview
- Windows-Based DHCP Servers
  - Configuring Option 60
  - Configuring Option 43
- Linux DHCP Servers
Appendix B Windows Client Example Configuration for 802.1x
- Window XP Wireless Client Example Configuration
Appendix C Internal Captive Portal
- Creating a New Internal Web Page
  - Basic HTML Example
- Installing a New Captive Portal Page
- Displaying Authentication Error Message
- Language Customization
- Customizing the Welcome Page
- Customizing the Pop-Up Box
- Customizing the Logged Out Box
Appendix D Related Documents
Index

8-1

v1.0, June 2007

Chapter 8

Configuring the Captive Portal

One of the methods of authentication supported by the WFS709TP ProSafe Smart Wireless Switch

is Captive Portal. A Captive Portal presents a web page that requires action on the part of the

wireless user before network access is granted. The required action can be simply viewing and

agreeing to an acceptable use policy, or entering a user ID and password that must be validated

against a database of authorized users.

This chapter describes the following topics:

• “Overview of Captive Portal Functions” on page 8-1

• “Configuring Captive Portal” on page 8-2

• “Configuring Advanced Captive Portal Options” on page 8-3

• “Configuring the AAA Server for Captive Portal” on page 8-5

• “Personalizing the Captive Portal Page” on page 8-6

Overview of Captive Portal Functions

There are two forms of Captive Portal you can configure for the WFS709TP.

• Registration Web Page requires no authentication; users typically enter an email address as an

identification.

• Captive Portal requires users to be authenticated to an external authentication server or to the

internal database on the WFS709TP.

You can use one or both forms of Captive Portal at the same time. The default Captive Portal web

page provided with the WFS709TP displays login prompts for both registered users and guests.

(You can customize the default Captive Portal page, as described in “Personalizing the Captive

Portal Page” on page 8-6.)

Note: While you can use Captive Portal to authenticate users, it does not provide for

encryption of user data and should not be used in networks where data security is

required. Captive Portal is most often used for guest access, access to open systems

(such as public hot spots), or as a way to connect to a VPN.