To complete this configuration, you must already have configured:
- Extreme ExtremeManagement
- Extreme Access Control
- A fully licensed controller with an Advanced Security license
Configuring the Wireless Controller to Authenticate with the SecureW2 RADIUS
- Configure the RADIUS settings to authenticate against the SecureW2 RADIUS
- Configure the Captive Portal on the wireless controller
- Configure the SSID for authentication against Access Control
Configuring the SecureW2 RADIUS
- Navigate to the Network tab under Configuration
- Select the AAA Policy section
- Click the Add button to create a new AAA policy
- Name the new policy and click Continue
- In the RADIUS Authentication tab, click the Add button to create a new RADIUS Server
- In the Authentication Server window, update the following settings in addition to populating the default values
- Host <SecureW2 RADIUS IP Address>
- Port <SecureW2 RADIUS Port>
- Secret <SecureW2 RADIUS Shared Secret>
- Request Proxy Mode Through Wireless Controller
Configuring the Captive Portal
- Navigate to Configuration > Services
- Select the Captive Portals section
- Click Add to create a new configuration
- In the new Captive Portal Policy, select Centralized Controller for the Captive Portal Server Mode
- In the Captive Portal Server Host field, specify a non-existent server host where the web request would typically be sent
- In the Access field, select No authentication required as the Access Type
- Click Ok to save the new policy
- While still in the newly created Captive Portal Policy, scroll down to the DNS Whitelist and click the Add button
- Create entries in the DNS Whitelist for both the IP address and hostname of the SecureW2 servers used on the network
- Click Ok > Exit
- In the Captive Portal Policy, select the newly created DNS Whitelist from the dropdown menu
- Click Ok and then click Commit
- The final step is to assign the new Captive Portal Policy to the Device Profiles in use
- Navigate to Configuration > Profiles, then navigate to the profile to be modified
- Select the Services tab of the profile, then select the checkbox next to the new Captive Portal Policy
- Click Ok > Commit
Extreme is either registered trademarks or trademarks of Extreme Networks in the United States and/or other countries. Other trademarks, logos and service marks used in this site are the property of SecureW2 or other third parties.