HP Cloud Network Manager Software manual Configuring WISPr authentication

Page 54

1.Select Wireless Configuration > Network, select an existing profile for which you want to enable MAC and 802.1X authentication and click Edit.

2.In Edit <profile-name>, ensure that all required WLAN and VLAN attributes are defined, and then click SECURITY tab.

3.Select SECURITY and ensure that the required parameters for MAC AUTHENTICATION and 802.1X authentication are configured.

4.Select Perform MAC authentication before 802.1X to use 802.1X authentication only when the MAC authentication is successful.

5.Select MAC authentication fail-thruto use 802.1X authentication even when the MAC authentication fails.

6.Click ACCESS tab to define access rules.

7.Click Save Settings.

Configuring MAC authentication with captive portal authentication

This authentication method has the following features:

If the captive portal splash page type is Internal-Authenticatedor External-RADIUS Server, MAC authentication reuses the server configurations.

If the captive portal splash page type is Internal-Acknowledgedor External-Authentication Text and MAC authentication is enabled, a server configuration page is displayed.

If the captive portal splash page type is none, MAC authentication is disabled.

MAC authentication only role — You can use the WLAN wizard to configure the mac-auth-onlyrole in the role- based access rule configuration section when MAC authentication is enabled with captive portal authentication.

To configure the MAC authentication with captive portal authentication for a network profile:

1.Select an existing wireless profile for which you want to enable MAC with captive portal authentication. Depending on the network profile selected, the Edit <WLAN-Profile>data pane is displayed.

2.In ACCESS, specify the following parameters for a network with Role Based rules:

a.Select ENFORCE MACHINE AUTHENTICATION when MAC authentication is enabled for captive portal. If the MAC authentication fails, the captive portal authentication role is assigned to the client.

b.For wireless network profile, select ENFORCE MAC AUTH ONLY ROLE when MAC authentication is enabled for captive portal. After successful MAC authentication, MAC auth only role is assigned to the client.

3.Click Next and then click Save Settings.

Configuring WISPr authentication

Cloud Network Manager supports the following smart clients:

niPass

nBoingo

These smart clients enable client authentication and roaming between hotspots by embedding iPass Generic Interface Specification (GIS) redirect, authentication, and logoff messages within HTML messages that are sent to the AP.

WISPr authentication is supported only for the Internal - Authenticated and External - RADIUS Server captive portal

authentication. Select the Internal – Authenticated or the External - RADIUS Server option from Splash page type list to

configure WISPr authentication for a WLAN profile.

To configure WISPr authentication:

HP Cloud Network Manager User Guide

Wireless configuration 54

Page 53 Page 55
Image 54
Page 53 Page 55
Contents HP Cloud Network Manager User Guide Document 5998-5742, edition 1 July AcknowledgmentsContents Wireless configuration Advanced configuration tasks Captive portal for guest access Reports Maintenance Related documents About this guideIntended audience ConventionsAbout Cloud Network Manager Cloud Network Manager overviewSupported APs Cloud Network Manager UI Cloud Network Manager user interface Activating your Cloud Network Manager subscriptionsActivating your HP Cloud Network Manager account User interface Search Tabs Notifications Help Data paneSearch TabsNotifications HelpData pane Support FeedbackMonitoring OverviewData pane item Description Access points AP detailsSection Description ClientsRemote Console System pane Data pane itemEvent log Setting notification alerts Wireless network profiles Wireless configurationInitial AP configuration Importing existing configuration from APUnderstanding wireless network profiles Configuring Wlan settingsNetwork types Voice Guest DMO Channel Content FilteDisable Ssid UtilizationWithout Uplink MAX Clients Configuring Vlan settings for a Wlan Ssid profileCan be Used Local ProbeConfiguring security settings for a Wlan Ssid profile KEYManagement KEY Management Termination AuthenticatioRoaming ServerConfiguring access rules for a Wlan Ssid profile General configuration tasks Editing a Wlan Ssid profileDeleting a Wlan Ssid profile Basic configuration tasks Modifying the AP nameConfiguring a preferred band Configuring VC IP addressConfiguring time zone Configuring an NTP serverConfiguring auto join mode Additional configuration tasksConfiguring VC Vlan Configuring LED displayPreventing local routing between clients Advanced configuration tasksDisabling inter-user bridging Enabling dynamic CPU managementConfiguring radio profiles manually for AP Configuring radio profiles for an APConfiguring Arrm assigned radio profiles for an AP Customizing AP parametersMode Description Configuring uplink Vlan for an APSelect Administrator assigned in 2.4 GHz and 5 GHz Band Obtaining IP addressAdvanced radio resource management Arrm overviewAirtime fairness mode HP MotionAwareAP control Configuring Arrm on an AP Monitoring the network with ArrmArrm metrics Calculating SLB ModeMotion Aware MA NeighborValid PowerCustomize ChannelsConfiguring radio settings for an AP Intrusion detection systemDetecting and classifying rogue APs OS fingerprintingOff Low Medium High Detection level Detection policySettings field Off Low HighProtection level Protection policy Authentication Understanding authentication methodsContainment methods Wireless configuration External Radius server Supported authentication serversRadius server authentication with VSA Internal Radius serverConfiguring authentication servers Authentication termination on APConfiguring an external server for authentication Retype Shared KEY TimeoutShared KEY Retry CountConfiguring dynamic Radius proxy parameters Click Save ServerConfiguring 802.1X authentication for a network profile Enabling dynamic Radius proxyConfiguring MAC authentication for a network profile Configuring MAC authentication with 802.1X authenticationConfiguring WISPr authentication Blacklisting clients Blacklisting clients manuallyBlacklisting users dynamically Understanding captive portal Captive portal for guest accessConfiguring blacklist duration Session firewall based blacklistingWalled garden Configuring a Wlan Ssid for guest accessTypes of captive portal Select the Primary Usage as GuestMulticast Transmission Content FilteringInactivity Timeout Dynamic MulticastCan be Used Without Uplink MAX Clients ThresholdLocal Probe Request Configuring internal captive portal for guest network External captive portal profiles Configuring external captive portal for a guest networkSelect any one of the following types of authentication Creating a captive portal profileCaptive Portal URLUSE Https FailureSplash Configuring captive portal roles for an SsidRule Type TypeConfiguring walled garden access InternalExternal Configuring Dhcp scopes Dhcp configurationDisabling captive portal authentication Configuring local and local, L3 Dhcp scopesNET Mask VlanNetwork Excluded AddressConfiguring Dhcp server for client IP assignment ServicesConfiguring an AP for Rtls support Select Wireless Configuration Services RtlsConfiguring OpenDNS credentials Bonjour support configurationBonjour support overview Bonjour support solution Bonjour support with Cloud Network ManagerBonjour support features Bonjour support servicesSelect Wireless Configuration Services Bonjour Support Configuring an AP for PAN integration Integrating an AP with Palo Alto Networks firewallIntegration with Cloud Network Manager Configuring a Wi-Fi uplink profile Uplink configurationWi-Fi uplink Uplink interfacesConfiguring PPPoE uplink profile Ethernet uplinkUplink preferences and switching Setting an uplink priorityEnforcing uplinks Mobility and client management Switching uplinks based on internet availabilityFrom PRE-EMPTION, select Enabled Layer-3 mobility overviewConfiguring L3-mobility Enterprise domain Configuring L3 mobility domainConfiguring enterprise domains Snmp and loggingSnmp parameters for AP Configuring SnmpConfiguring community string for Snmp Creating community strings for SNMPv1 and SNMPv2Configuring a syslog server Configuring Snmp trapsCreating community strings for SNMPv3 Configuring Tftp dump server Select Wireless Configuration System LoggingLogging level Description Reports Creating a reportDeleting a report Maintenance FirmwareSubscription keys Device management User managementTerminology Acronyms and abbreviationsAbbreviation Expansion Glossary TermDefinition Term Definition DSTEAP POE Through a wireless connection

Cloud Network Manager Software specifications

HP Cloud Network Manager is a robust software solution designed to simplify and enhance the management of network infrastructure in cloud environments. As organizations increasingly shift toward cloud computing, they require comprehensive tools to oversee complex network deployments. HP Cloud Network Manager rises to this challenge, offering a powerful suite of features aimed at optimizing performance, automating tasks, and ensuring reliable connectivity.

One of the main features of HP Cloud Network Manager is its intuitive dashboard, which provides users with real-time insights into network operations. This centralized interface allows administrators to monitor the status of various components, identify potential issues, and respond swiftly to anomalies. With advanced analytics capabilities, the software empowers users to make data-driven decisions that enhance network efficiency.

Another critical feature of this software is its automation capabilities. HP Cloud Network Manager simplifies routine network management tasks, such as configuration, provisioning, and software updates, allowing IT teams to focus on strategic initiatives rather than mundane maintenance. Automation reduces the risk of human error and accelerates deployment times, significantly increasing operational agility.

The software also supports multi-cloud environments, enabling organizations to manage their network resources across different cloud platforms seamlessly. This flexibility is essential for businesses that utilize various cloud providers and wish to maintain a unified network strategy. Coupled with its compatibility with open standards, HP Cloud Network Manager facilitates integration with existing IT ecosystems, ensuring a smooth transition to advanced cloud solutions.

Security is a top priority in today's digital landscape, and HP Cloud Network Manager includes integrated security features to protect network assets. It provides visibility into traffic patterns, helping to detect and mitigate potential threats before they become significant issues. Enhanced security protocols ensure that sensitive data remains protected during transit and at rest, aligning with compliance requirements.

Finally, HP Cloud Network Manager is built on cutting-edge technologies, including artificial intelligence and machine learning, which enable proactive network management. These technologies predict network behavior, assisting administrators in optimizing resources and anticipating potential challenges. As a result, organizations can achieve enhanced reliability and performance from their network infrastructure.

In summary, HP Cloud Network Manager is an essential tool for businesses looking to improve their cloud network management capabilities. With its powerful features, supportive technologies, and commitment to security, it stands out as a reliable solution for navigating the complexities of modern network environments.
Top Page Image Contents