Tut Systems SMS2000 manual Automatic Redirection URLs, Deleting an Allow-Net, Set authok url

Page 51

Authentication

Deleting an Allow-Net

To remove allow-net entries, use this command:

delete allow-net[ip_address netmask ip_address/masklen dns-name dns- name/masklen ]

For example, to delete an allow-net starting at 192.168.254.128 with a 32-bit network mask, type:

sms2000% delete allow-net 192.168.254.128/32

For example, to delete an allow-net for a dns name, type:

sms2000% delete allow-net notarealserver.com

Automatic Redirection URLs

Setting the Automatic Redirection URL

The command set authok specifies the URL to which a subscriber is automatically redirected when authentication completes, or to which the subscriber connects if authentication is off. The page specified here is also the forcedweb page specified when authentication is off.

Note: The authok URL can include replaceable parameters such as the port id, subscriber MAC address, and VLAN ID. It can include a sequence number and be optionally signed using the sig parameter and either the secret on this command or the secret used previously when adding the OCS.

Note: When using RADIUS authentication with an authok page, the authok server should also be added to your allow-nets.

For example, when tutsys.com is 123.123.123.123, type:

sms2000% set authok http://www.tutsys.com sms2000% set allow-net 123.123.123.123

To set the URL used for network access after successful authentication, use this command:

set authok url

For example, to redirect subscribers to the Tut Systems home page after successful authentication or when subscribers use theirWeb browser for the first time if authentication

is off, type:

sms2000% set authok http://www.tutsys.com

TUT Systems, Inc

Page 51 of 104

P/N 220-06288-20

Page 50 Page 52
Image 51
Page 50 Page 52
Contents TUT Systems SMS2000 User Guide SMS2000 User’s Guide SMSUser’s Guide Contents Connectivity and Testing Configuring SmtpConfiguring NTP Configuring Snmp PollingAuthorization Authentication Configuring the Command ServerAuthentication Authentication with RadiusSMS2000 Rules Using Rule PrioritiesConfiguring Radius GroupsSMS2000 Status Attributes and Statistics Using Both Radius and OCS AuthenticationWeb Proxy Settings SMS2000 Troubleshooting ProceduresRadius Attributes in Access-Accept Packets List of TablesList of Figures Related Documentation PrefaceAudience Documentation available for this ReleaseIntroduction Subscriber Management FeaturesIntroduction Subscriber Management Components Subscriber Management ComponentsOCS SMS2000Introduction User Interface Getting StartedStyle Conventions Accessing Help for CommandsFor example restore config web original-confi g Ifconfig portnumber ipaddress /masklenCursor Motion Keystrokes Cursor MovementEstablishing a Connection Via a Serial Interface Initial ConfigurationClick Configure Establishing a Connection with the SMS2000Establishing a Connection Via Telnet Initial Configuration Initial Configuration Changing Your PasswordSetting the Quick Configuration Setting the Hostname Disabling AuthenticationSaving the Configuration Rebooting the System Verifying the ConfigurationReboot Set config-mailrecipient@SMTPserver SMTPserver System AdministrationConfiguration E-Mail Settings Setting the Default Configuration E-mailCommitting Configuration Changes Configuration and System File ToolsMailing the Current Configuration Deleting the Configuration E-mailCommit noauto Automatically Committing Configuration ChangesDisabling Automatic Configuration Changes Commit autoSaving a Configuration Loading a Configuration FileRestoring a Previous Configuration Deleting the Smtp Server Configuring SmtpRestoring the Default Configuration Setting the Smtp ServerSet smtpid on off Configuring NTPSetting the Smtp ID Setting the TimezoneEnabling Snmp Polling Configuring Snmp PollingConfiguring the NTP server Setting the TimeTesting to See if Snmp Polling will Work Disabling Snmp PollingSnmp-pollmacaddress System Tools Connectivity and TestingTesting Connectivity Setting Specialized System OptionsPort-definition mixed tut vlan Setting and Deleting Static PortsDefining Ports Leftrighthelp ?Displaying Log Messages Disconnecting a Session on a PortSetting the Syslog Server Event TrackingSystem Administration Tools Displaying Version InformationExiting the Management Session Keys Changing a PasswordDisplaying Control Keys PasswdSnmp System Location Snmp ManagementSnmp Agent Snmp System ContactSnmp Trap Recipient Snmp CommunityShow snmp trap-recipient Troubleshooting ToolsSystem Information Tools SMS2000% snmp delete trap-recipientSetting the ARP Polling Period Subscriber Connectivity CommandsUpgrades Setting the ARP Failure LimitArchiving SMS2000 Firmware and distributing it from a Server Upgrading from Tut Systems’ WebsiteVerifying a Successful Upgrade Returning to an Older Firmware VersionLoading Another Image System Administration Authentication AuthenticationAdding the OCS as the Authentication Server Configuring the Command ServerSetting the Command Server for OCS Interaction Deleting the Command ServerAuth on Deleting an Authentication ServerTesting Authentication Auth add web url secret secret cmd-servAuth interval minutes off Setting the Authentication IntervalBypassing Authentication Auth off forcedweb authokurl blockallDeleting the Http Request Throttle Setting the Http Request ThrottleHttp Request Throttle Allow-NetsSet allow-netipaddress netmask dns-name Setting an Allow-NetSet authok url Setting the Automatic Redirection URLAutomatic Redirection URLs Deleting an Allow-NetDelete authok Authentication with RadiusDeleting the authok Adding a Radius ServerSyntax Description CommandDefault Default retrans-primary-only isUsage Guidelines Example Set NAS port type parameter Set nas-port-type integerSet nas-port-type Show status radius Example Testing Authentication on the Radius ServerConfiguring a Radius SSL Back Channel Show status radiusServer Functionality AuthorizationAuthorization AuthorizationAccounting AccountingSending Accounting Messages to a Syslog Server Deleting a Radius Accounting Server Radius Accounting ConfigurationConfiguring Accounting Parameters Sending Accounting Messages to a Radius ServerProvisioning ProvisioningBilling BillingGroup add groupname noinherit inherit groupname Service Creation Using Groups and RulesGroups Adding a GroupDeleting a Group Setting the Active Group ContextSubscribers that Cannot Support Authentication Setting Maximum Users Per PortSet rule rulename groupname priority rulestring SMS2000 RulesAdding a Rule Deleting a RuleIp=ipaddress ,netmask Rule Expression ComponentsIP Address MAC AddressNot Operator Vlan=vlanida-vlanidbTut=ipaddress-linenum*-portnum Expression and expression OperatorOr Operator ParenthesisUsing Rule Priorities IP Addressing IP AddressingPlug and Play With NAT Dhcp Pools Static Routable AddressesIP Multicasting Static Non-Routable AddressesConfiguring IP Types Iptype default NAT static Dhcp 1to1 1to1UniqueUnderstanding 1to1 and 1to1 Unique IP Types Set source-netstartaddress endaddress subnet-mask Setting a Source-NetDeleting a Configured Source-Net Source-NetsDhcp-server release macaddress Setting the DNS Server AddressCreating Dhcp Pools Removing a Dhcp AssignmentSet dns add ipaddress Static RoutesDeleting the DNS Server Address Adding RoutesSetting up the LPR Host PrintingSet lpr hostname off queuename maxpages maxbytes Using SMS2000 with a Radius Server Configuring RadiusObtaining the Radius Server Software Configuring Service Parameters Adding the SMS2000 as a Client on the Radius ServerAdding Users to the Radius Server Radius Ports Using Real IP AddressesSMS2000 Status Attributes and Statistics SMS2000 NAS FileRadius Attributes Sent in Accounting Messages Using Both Radius and OCS Authentication Radius Attributes Sent In Access Request PacketsRadius Attributes Received in Access- Accept Packets Shape xbps/rbps delete Setting Traffic ShapingDeleting Traffic Shaping Shape xbps/rbpsSMS2000 and Property Management Systems PMS Setting the PMS ServerTTY ACK-NAK ENQ-ACK-NAK Protocol ModesENQ-ACK-NAK Mode Loading Web Pages or Files Customizing SMS2000 Web Authentication with RadiusLoading and Deleting Customized Web Pages Files For GroupsLoad web url defaults Path ComponentsImage Links Preserving the Web Form Customizing Web PagesUpgrading Deleting Web Pages or FilesWeb Page Redirection Size For Web Pages and External LinksActive Page Components Viewing CustomizationsReference Setting the Wpad Timeout Configuring Web Proxy SettingsWeb Proxy Settings Setting the Wpad CurlWeb Proxy Server Set proxy-ports port Delete proxy-ports portShow proxy-ports SMS2000 Troubleshooting Procedures SMS2000 TroubleshootingUnable to do credit card Snmp PollingMultiple frames opened BrowserLine Verify OCS screens offRadius Attributes in Access-Accept Packets Appendix a Radius Access-Accept Dictionary FileAppendix Appendix TUT Systems, Inc 100 Equipment Return and Repair Appendix B Technical Assistance and Customer SupportTechnical Support Internet TelephoneExclusive Remedies Appendix C SMS2000 Limited WarrantyHardware Limited Warranty Limitations of WarrantyFCC Radio Frequency Interference Statement Electrical Safety AdvisoryTut Systems, Inc., Customer Service Department AssistanceTUT Systems, Inc 104
Top Page Image Contents