Wifilan 1 1 Adminguide

8/19/2019 Wifilan 1 1 Adminguide

1/181

WIFIWIFIWIFIWIFI----SOFT SOLUTIONSSOFT SOLUTIONSSOFT SOLUTIONSSOFT SOLUTIONS

WiFiLAN – A complete Wi-Fimanagement solution

Administrator’s GuideVersion 1.1


2/181

WiFiLAN Admin Guide Copyright © 2005 – Wifi-soft Solutions Pvt. Ltd.2/16/2006

2

Copyright Notice

Copyright © 2005, Wifi-soft Solutions Pvt. Ltd. All rights reserved.

No part of this document may be copied, reproduced, or transmitted by any means, for anypurpose without prior written permission of the company.

Disclaimer

We shall not be liable for any technical or editorial errors or omissions contained herein; nor forincidental or consequential damages resulting from furnishing this material, or the performance oruse of this product. We reserve the right to change the product specifications and implementationwithout notice. Information in this document may also change without notice.

Trademarks

All brand and product names mentioned herein may be registered trademarks of their respective

owners. Customers should ensure that their use of this product does not infringe upon any patentrights. Trademarks mentioned in this publication are used for identification purposes only and areproperties of their respective companies.


3/181


3

Table of contents

INTRODUCTION............................................................................................................. 8

I NTRODUCING WIFILAN ................................................................................................. 8

FEATURE SUMMARY ........................................................................................................ 9

RADIUS Features ..................................................................................................... 10 Network management and monitoring features........................................................ 10

Content Filter............................................................................................................ 10 Install management................................................................................................... 10

Customer relationship management ......................................................................... 11

Billing management .................................................................................................. 11 Provisioning Features............................................................................................... 11

Security Features ...................................................................................................... 12

Portal Design and Advertisement ............................................................................. 12

General Features ...................................................................................................... 12 TECHNICAL SUPPORT ..................................................................................................... 12

NOTATIONS AND CONVENTIONS .................................................................................... 12IMPORTANT CONCEPTS........................................................................................... 13

WIFILAN OVERVIEW................................................................................................. 16

ARCHITECTURE.............................................................................................................. 16MENU SUMMARY........................................................................................................... 18

RADIUS MANAGEMENT............................................................................................ 18

CONCEPTS...................................................................................................................... 19

RADIUS MENU............................................................................................................. 20

R ADIUS USERS ............................................................................................................... 20

User Summary........................................................................................................... 21 New User................................................................................................................... 21

List Users .................................................................................................................. 22 User Details .............................................................................................................. 23

Edit User ................................................................................................................... 25

User Accounting........................................................................................................ 25 Edit RADIUS Attributes ............................................................................................ 26

Suspend User ............................................................................................................ 28

Unsuspend User ........................................................................................................ 29

Delete User ............................................................................................................... 29 R ADIUS GROUPS ............................................................................................................ 30

New Group................................................................................................................ 30 List Groups................................................................................................................ 30 Edit Group ................................................................................................................ 31

Edit RADIUS Attributes ............................................................................................ 31

Delete Group............................................................................................................. 32 GATEWAY ...................................................................................................................... 32

List Gateways............................................................................................................ 32

New Gateway ............................................................................................................ 33


4/181


4

Edit Gateway............................................................................................................. 34

Edit Radius Attributes............................................................................................... 35

Delete Gateway......................................................................................................... 35 AUTOLOGIN................................................................................................................... 36

List AutoLogins ......................................................................................................... 36

New AutoLogin.......................................................................................................... 36 Edit AutoLogin.......................................................................................................... 37

Edit Radius Attributes............................................................................................... 37

Accounting ................................................................................................................ 38

Delete AutoLogin ...................................................................................................... 38 LOCATIONS .................................................................................................................... 39

New Location ............................................................................................................ 39

List Locations............................................................................................................ 40 Edit Location............................................................................................................. 40

Delete Location......................................................................................................... 41 HOW LOCATION ID IS USED? ................................................................................................. 41

USER

APPROVALS

.......................................................................................................... 41USER IMPORT AND EXPORT............................................................................................ 43

Importing Users ........................................................................................................ 43 Exporting Users ........................................................................................................ 44

NETWORK MANAGEMENT AND MONITORING................................................ 45

ADMIN ........................................................................................................................... 45

Administer Monitoring.............................................................................................. 45

Manage Alerts........................................................................................................... 46 Device Defaults......................................................................................................... 47

DEVICE MANAGEMENT .................................................................................................. 48

New Device ............................................................................................................... 49 List Devices............................................................................................................... 54

Edit Device................................................................................................................ 54

Add Sub-Device......................................................................................................... 56 EDIT SUBDEVICE ............................................................................................................. 57DELETING SUBDEVICE ..................................................................................................... 58

Network Status .......................................................................................................... 58

Monitoring Details.................................................................................................... 59 Status Change History .............................................................................................. 60

Network Alerts .......................................................................................................... 61

IP change management............................................................................................. 61 I NSTALL MANAGEMENT................................................................................................. 62

Collecting Install Data.............................................................................................. 62 List Install Info.......................................................................................................... 63

SITE MANAGEMENT ....................................................................................................... 64 List Sites.................................................................................................................... 65

Edit Site Details ........................................................................................................ 65

I NVENTORY MANAGEMENT ........................................................................................... 66 Adding Inventory Item............................................................................................... 67

List Inventory Items................................................................................................... 68


5/181


5

Editing Inventory Item .............................................................................................. 68

CONTENT FILTERING...................................................................................................... 68

Adding Domains........................................................................................................ 69 Managing Sites.......................................................................................................... 70

CUSTOMER RELATIONSHIP MANAGEMENT..................................................... 72

PROBLEM TICKETS......................................................................................................... 72

Ticket Configuration ................................................................................................. 72

New Ticket................................................................................................................. 73 List Tickets ................................................................................................................ 74

Ticket Summary......................................................................................................... 75

Ticket Details ............................................................................................................ 75 Ticket Response......................................................................................................... 76

Edit Ticket ................................................................................................................. 77

Delete Ticket ............................................................................................................. 77 View Notes ................................................................................................................ 78

Edit Note ................................................................................................................... 78

CUSTOMER CARE ........................................................................................................... 78

Send Customer Emails .............................................................................................. 78 Email Templates........................................................................................................ 79

FAQ MANAGEMENT ...................................................................................................... 81

New FAQ................................................................................................................... 81 List FAQs .................................................................................................................. 82

Edit FAQ................................................................................................................... 82

K NOWLEDGEBASE.......................................................................................................... 83Creating New Entry .................................................................................................. 83

Search Knowledgebase ............................................................................................. 84

Entry Description...................................................................................................... 85 Edit Knowledgebase Entry........................................................................................ 85

BILLING ADMINISTRATION ............................................................................................ 87

Configure Billing ...................................................................................................... 87

Configure Gateway ................................................................................................... 89 Configure Payment ................................................................................................... 89

BILLING USERS .............................................................................................................. 90

Billing User Summary............................................................................................... 90 List Billing Users ...................................................................................................... 91

Edit Billing User ....................................................................................................... 91

New Billing User....................................................................................................... 92 BILLING PLANS .............................................................................................................. 94

List Plans .................................................................................................................. 94 New Plan................................................................................................................... 95

Edit Plan ................................................................................................................... 96 Delete Plan................................................................................................................ 96

BILLING TAXES .............................................................................................................. 97

LIST TAXES .................................................................................................................... 97 New Tax .................................................................................................................... 98

Edit Tax..................................................................................................................... 98


6/181


6

PREPAID CARDS ............................................................................................................. 99

List Prepaid Cards.................................................................................................. 100

New Prepaid Cards................................................................................................. 101 Prepaid Usage ........................................................................................................ 102

Export Prepaid Coupon codes ................................................................................ 103

BILLING TRANSACTIONS.............................................................................................. 104 List Transactions..................................................................................................... 104

Transaction Details................................................................................................. 105

New Debit Transaction ........................................................................................... 106

New Credit Transaction.......................................................................................... 108 PROMOTIONS ............................................................................................................... 108

New Promotion ....................................................................................................... 109

List Promotions....................................................................................................... 109 View Promotion History ......................................................................................... 110

GENERAL ADMINISTRATION ............................................................................... 111

ADMINISTRATOR ACCOUNT ......................................................................................... 111

New Admin Account................................................................................................ 111

List Accounts........................................................................................................... 113 VIEWER ACCOUNTS ..................................................................................................... 113

List Viewer .............................................................................................................. 114

USAGE HISTORY .......................................................................................................... 115 Account Login History ............................................................................................ 115

Database Change History....................................................................................... 115

EXTENDED USER ATTRIBUTES..................................................................................... 116 New User Attribute ................................................................................................. 116

List User Attributes................................................................................................. 116

EXTENDED DEVICE ATTRIBUTES ................................................................................. 116 New Device Attribute .............................................................................................. 116

List Extended Device Attributes.............................................................................. 117

EDIT PROFILE............................................................................................................... 118

CHANGING PASSWORD................................................................................................. 118

PORTAL MANAGEMENT......................................................................................... 119

PORTAL MENU.............................................................................................................. 119

Menu ......................................................................................................................... 119 Description................................................................................................................. 119

ADMIN ......................................................................................................................... 119

AUTHENTICATION........................................................................................................ 120

Login Portals .......................................................................................................... 120 Landing Portals ...................................................................................................... 125

FREE LINKS.................................................................................................................. 128

PROVISIONING.............................................................................................................. 130

Sign Up Portals....................................................................................................... 130 Account Management Portals................................................................................. 134

Change Password Portals....................................................................................... 138

Report Problem Portals .......................................................................................... 142


7/181


7

ADVERTISEMENTS........................................................................................................ 145

REPORTING ................................................................................................................ 148

R ADIUS R EPORTS ......................................................................................................... 148

Online RADIUS Users ............................................................................................ 148 Device Usage Reports............................................................................................. 149

Accounting Report .................................................................................................. 151

Authentication Report ............................................................................................. 153

NETWORK R EPORTS..................................................................................................... 154PROBLEM TICKETS R EPORTS........................................................................................ 156

SUMMARY R EPORTS ...................................................................................................... 156

Ticket Vs Time Reports ........................................................................................... 158 BILLING R EPORTS ........................................................................................................ 159

Revenue Reports...................................................................................................... 159

Declined Cards Report ........................................................................................... 161 Payment Receivable Report .................................................................................... 161

Amount Credited Report (Refund Report) .............................................................. 162

Expense Report ....................................................................................................... 163

Promotion Usage Reports....................................................................................... 164 Prepaid Usage Reports ........................................................................................... 165

WEB-BASED INTEGRATION................................................................................... 168

USER R EGISTRATION ................................................................................................... 168

PROBLEM TICKET R EPORTING ..................................................................................... 173

COMMON TASKS....................................................................................................... 175

ADDING NEW DEVICE ................................................................................................... 175ADDING AN ATTACHED DEVICE FOR MONITORING........................................................ 177

COLLECTING AND RECONCILING INSTALLATION DATA................................................. 177SENDING CUSTOMER EMAILS........................................................................................ 178ADDING EXTENDED USER /DEVICE INFORMATION ......................................................... 178

REPORTING BUGS .................................................................................................... 179

GLOSSARY................................................................................................................... 180


8/181


8

Introduction

This chapter presents an overview of WiFiLAN and explains high-level concepts required tounderstand the working of WiFiLAN.

Introducing WiFiLAN

WiFiLAN is a web-based, hosted solution for managing and maintaining Wi-Fi networks remotely.It integrates all key features required for managing, installing, configuring and maintaining Wi-Finetworks in a single intuitive online application. It works seamlessly with WiFiLAN backendservers to provide round-the-clock, reliable service to the customers.

WiFiLAN is hosted on a Linux-based platform in a state-of-the-art data center and can beaccessed from any where in the world with the help of an SSL-capable web browser. The solutionis device-agnostic i.e. it is not designed for a specific hardware vendor and supports wide rangeof wireless gateways from vendors like Cisco, Zyxel, Gemtek, Colubris, DLink and others. Itprovides a range of services including RADIUS authentication, gateway management, monitoring,CRM, billing, user management and provisioning, reporting and content filtering. Customers don’thave to install any software or hardware on their premises to use WiFiLAN. The above services

can be access securely and remotely from Wifi-Soft’s servers.

Some of the key attributes of WiFiLAN are as follows:

• Comprehensive

WiFiLAN integrates all WLAN management features into one single application. It avoidsthe task of juggling disparate applications and instead provides a simple, unified view ofthe operational data. WiFiLAN offers array of backend services including RADIUSauthentication and accounting, network monitoring and management, CRM, billing,automated user provisioning and security. Having an integrated solution also makes iteasier to train support staff and keeps the operational cost down.

•Scalable Architecture

WiFiLAN is built on a scalable architecture to handle high-load environments. Multipleinstances of servers run on separate servers to handle load balancing and trafficdistribution. Each server is fully capable of handling all backend services and newservers can be easily added to handle increased load.

• Redundancy

All WiFiLAN services have redundancy built into their design.

Each process has a backup instance running on a separate server, which takes over theoperation in case the primary one goes down. This provides a highly reliable operatingenvironment to the customers. Remote gateways can be configured to automaticallyswitch to secondary authentication server when the primary one goes down. WiFiLANmanagement application is also hosted on separate servers to that customers can usethe backup instance in case the primary one is not accessible. All the services aremonitored round-the-clock to ensure they are operating within specified parameters.

• Fault Tolerance


9/181


9

All the servers are hosted in a state-of-the-art data center on a commercial-gradehardware platform. This minimizes the risk of hardware and communication faults andprovides top quality service to the customers.

• Security

To ensure the security of the data, all servers are protected by a firewall. Only authorizedclients are allowed access to our services through configured ports. WiFiLAN applicationcan be accessed only through an SSL-capable browser to ensure that the data betweencustomer’s browser and the server is protected from hackers and malicious users.

• Ease-of-use

Managing Wi-Fi networks can be technically challenging. WiFiLAN provides a simple andintuitive management interface that makes the task of managing Wi-Fi networks easy andtrouble-free. The application is very easy to learn and extensive documentation isavailable for each feature. Each data entry screen displays helpful notes to reduce errorswhile entering data.

Feature Summary

WiFiLAN provides range of features required to operate large-scale, distributed Wi-Fi networks.These features run on a common WiFiLAN management platform, which in turn makes use ofWiFiLAN servers. At high-level, these features can be categorized into:

1. RADIUS management2. Network management and monitoring3. CRM Services4. Billing and Customer Management5. Reporting6. Provisioning7. Portal Design and advertising

The data needed for running WiFiLAN resides in the WiFiLAN database.


10/181


10

RADIUS Features

1. Robust, reliable, redundant and professionally management RADIUS server2. Support for Radius users, groups and gateway management

3. Support for standard and vendor-specific Radius attributes4. Auto-login feature (allows users to login without username and password)5. Location data management.6. Tracks dynamic IP changes7. Approval based user provisioning8. Email Verification9. Detailed Radius reporting

a. Snapshot of online users categorized by locationsb. Device usage summary and graphs (number of session, bandwidth usage,

sessions against day of the week, hour of day, unique sessions, etc)c. Accounting historyd. Authentication history

Network management and monitoring features

1. Device agnostic network management and monitoring2. Centralized repository for storing all network data3. Supports management and monitoring of gateways and attached devices4. Provides a real-time network status with easy to follow color schemes5. Uses different protocols for monitoring – ICMP, SNMP, HTTP based on network

requirements6. Tracks device status change history7. Creates network reliability report based on the past monitoring history for all devices8. Centralized management of remote devices using SNMP9. Ability to manage and track remote users10. Displays history of traps (alerts) from devices11. Sends email/SMS notifications to concerned party. Notifications can be configured

globally or on per-device basis12. Automatically detects new devices on network and tracks device restarts, failures and

configuration changes using SNMP13. Perform centralized network audits

Content Filter

1. Ability to block unwanted or malicious content on your Wi-Fi networks2. Provides management interface to dynamically configure the content filter server3. Blocked list is always current. The list is automatically updated twice a week4. Allows content filter based on IP address thus allowing users to specify the sites that

need content filtering and the site that don’t

Install management

1. Provides interface for network installers to capture installation data2. Consolidates all installation data into a central repository3. Ability to upload site layouts and map, and view them along with network data4. Capture all relevant data for a installation site5. Ability to track and manage hardware inventory


11/181


11

Customer relationship management

1. Provides web-based interface to capture problem tickets in WiFiLAN from a reportingpage

2. Ability to track and manage problem tickets3. Allows customer service reps to send email response for problem tickets

4. Comprehensive reports on problem tickets based ona. By agentsb. By categoryc. By severityd. By locatione. By Resolution

5. Graphical view of ticket history6. Provides interface to send announcements and system messages to all or specific set of

customers7. Ability to create and manage custom email templates8. Create hierarchical FAQs for customer service reps9. Provides ability to search and add entries to knowledgebase. Knowledgebase can

contain install notes, how-to, articles or any other document relevant to the customer.

Billing management

1. Provide interface to seamlessly integrate web-based registration with the billing system2. Provides credit-card clearing and authorization3. Architecture support wide range of merchant gateways.4. Allows administrators to create customized billing plans with validity periods5. Comprehensive prepaid card management6. Supports simple and cumulative tax structure7. Provides support for promotions and discounts8. Allows administrators to export and print prepaid coupons9. Detailed billing reports

a. Revenue by site, location and plansb. User transactions

c. Time-based reportsd. Promotion effectivenesse. Prepaid usagef. Declined card reportsg. Account receivableh. Daily, weekly, monthly, yearly revenue reportsi. Credit report j. Expense reportk. Plan fraud report

10. Sends automated (template) reminders and receipts11. Supports automatic suspension of user accounts when credit card fails. Releases the

user when the card transaction succeeds

Provisioning Features

1. Web-based integration interface for developers2. Create custom portal pages for user registration, account management and trouble ticket

reporting3. Location-aware user registration4. Real-time credit card checking and clearing


12/181


12

Security Features

1. Supports WPA and WEP authentication mechanisms2. All traffic is encrypted and digitally signed while traveling in the public domain3. Secure firewall to prevent unauthorized users from accessing backend services4. Servers are hosted in state-of-the-art data centers that have round-the-clock intruder

detection and monitoring5. Sensitive data like card numbers, passwords, etc is encrypted while displaying inWiFiLAN

Portal Design and Advertisement

1. Create custom designs for login, landing, signup and account management portal pages2. Customize images, text, links, advertisements and layout of the portal pages3. Choose from different readymade templates4. Simple intuitive interface for portal design along with instant preview option5. Upload any custom advertisements on login and landing pages.

General Features

1. Supports any currency and date formats2. Automatically adjusts reports and user data to local time zone3. Provides reporting-only interface for partners, consultants and other external entities4. Tracks login and database history5. Allows administrators to store extra user and device information in extended attributes6. Supports location-based view i.e. view of data only for a specific location

Technical Support

If you need technical support while using WiFiLAN, please refer to the online documentation onour website: http://www.wifi-soft.com or send us an email at [email protected].

WiFiLAN provides a ‘Report problem’ feature that you can use to submit a bug or feature request. Additionally, comprehensive help is available for each WiFiLAN screen by selecting the Helpmenu.

Notations and Conventions

This document assumes several different actors. The role and responsibility for each actor ishighlighted in the table below:

Actor Description

Customers The set of people who will be customer of WiFiLAN.

Usually WISP or Wi-Fi network operators. Administrators The set of people in an organization (WISP) who will useWiFiLAN for managing and operating their Wi-Fi networks

End Users The users who will use the Wi-Fi services provided byWISP or Wi-Fi operators.

Installers The field technicians who go into the fields to do Wi-Fiinstallations

Customer ServiceRepresentatives

The staff that handles customer problems and questions.


13/181


13

Important Concepts

• Network Operating Center (NOC)

NOC is the centralized location where backend servers like RADIUS, Web, Mail, DNS andMonitoring servers are hosted. Additionally, it also host management consoles to manage

remote network elements from a centralized location.

Wifi-Soft provides a hosted NOC solution to Wi-Fi service providers and hotspot operators.This frees the operators from maintaining their own NOC and employing people to manage it.Moreover, they don’t have to worry about performing software upgrades, maintainingbackups, doing regular maintenance and fine-tuning their servers. Wifi-Soft handles all thesetasks for them thus allowing them to focus on the core business. Hosted solution offersoperators considerable cost saving and enhanced productivity.

• RADIUS Services

RADIUS server provides AAA (Authentication, Authorization and Accounting) services to thenetwork operators. These services ensure that only valid and authenticated customers get

access to the network resources and the session information gets tracked and archived forbilling purpose.

o Authentication

Authentication is the process in which the RADIUS server verifies the username andpassword supplied by the user. The username and password are sent to the RADIUSserver in the Auth-Request packet. Typically, the RADIUS server maintains list ofusernames and passwords in a flat file or database. When the request is received itdoes the comparison and returns back success or failure.

o Authorization

Authorization is the process in which the RADIUS authorizes the end user client anddetermines the scheme to use for authentication.

o Accounting

Accounting is another service provided by the RADIUS server. This service isresponsible for maintaining the user session information, also called accounting, inthe RADIUS server. Accounting information can be stored in files or database.

• Security

Security is an important aspect in any service provided to the customer, especially whensensitive customer information is collected and stored. Information like passwords, credit card

data, personal details like phone number, passwords, etc need to be protected so thatmalicious users don’t get access to them.

To ensure security, various encoding and encryption schemes are adopted in applications.RADIUS server uses various encoding schemes like CHAP, MSCHAP, PAP, EAP to encodethe sensitive information passed between the gateway and RADIUS server. Many gatewayssupport 802.1X recommended security methods like WPA. Since WEP has limitations, manyvendors are making WPA (Wireless Protected Access) as their standard security scheme forWiFi. Good implementation of WPA requires support from the RADIUS server.


14/181


14

Similarly, the data transmitted over public Internet is vulnerable to hackers and malicioususers who can intercept the data and gather sensitive information. To secure this information,it is necessary to encrypt the transmitted data using strong SSL encryption mechanism.

• Network Monitoring

Unlike wired networks, wireless networks are more prone to failures. Misaligned radio,channel interference, lightening strikes and improper wiring are some of the common causesfor failure in Wi-Fi networks. So, it is important that these network are monitored continuouslyand any outages be notified to the concerned parties to minimize the downtime.

WiFiLAN not only supports round-the-clock monitoring of the remote gateways, but alsomonitors access points installed on the internal wireless or wired network. Network statusinformation is consolidated on the server and presented to the network administrator in atabular format. This feature is especially important for service providers who have outdoorWi-Fi network and want to ensure high reliability of their network.

• Billing

Billing feature allows service providers to charge their customers over the Internet using apayment gateway. Since minimum human intervention is required for Internet billing, itprovides a cost effective way of collecting recurring or one-time payments from theircustomers.

Billing gateway (e.g. Authorize.net, Verisign, PayPal, OpenEcho, etc) are third-partyapplication service providers that function as a broker between the customer and thevendor’s merchant bank. They convert the Internet transaction data into proprietary formatrequired by the merchant bank. All billing gateways publish an external application-programming interface (API) that developers use to integrate their applications with the billingbackend systems.

WiFiLAN provides integration to various payment gateways such as Authorize.Net and

OpenEcho. It handles all the interactions with the payment gateways including credit cardauthorization, recurring billing, debit and credit transactions, billing reports and fraudprevention. WiFiLAN also provides integration with RADIUS accounting data to allowadministrators to charge customers based on their usage.

• Portal Design

Portal design allows administrators to create custom portal pages for user login andregistration. Most hotspots, free or paid, have a login page where the user enters his/herauthorization information before getting access to Internet service. For paid access, the userneeds to enter his/her username and password or a prepaid coupon code. For free access,service provider usually has a click-through login page that displays usage terms andconditions.

For self-signup hotspots, these login pages also provide a link to a registration page. Theregistration page accepts user’s billing and personal information to create an account in theuser database. Many wireless ISPs also need to provide an account management page sothat their subscribers can view and change their account information online.

WiFiLAN portal section makes the design and implementation of such pages easy andtrouble free. It allows administrators to create highly customized login and registration pagesfor each hotspot location. They can apply a particular design template to these pages andthen further customize the template by uploading images and inserting appropriate text.


15/181


15

The login and landing pages also provide support for adding advertisements. This powerfulfeature allows service providers to host commercial advertisements on their login pages thusallowing them to generate extra revenues from their hotspots.

• Content Filtering

Content filtering is an important function for hotspots serving public places like cafes,restaurants, libraries and parks. It prevents users from accessing undesirable Internet contentlike pornography, adult entertainment, violence, etc.

Unlike other content filtering solutions, WiFiLAN’s content filtering solution doesn’t requireproxy server or a dedicated hardware. Administrators just need to point their DNS servers toWifi-Soft’s DNS servers to enable content filtering at their locations.

It is also important that the content filtering database is kept up-to-date with the ever-changing landscape of the Internet. WiFiLAN updates its database twice a week from a third-party source, which is solely responsible for constantly updating the list of blacklisted sites.

• IP Change Management

Since RADIUS protocol is an UDP-based protocol, any remote device can send RADIUSpackets to the server for authentication. However, RADIUS server only handlesauthentication packets that are received from a legitimate source. It determines the legitimatesource by verifying the IP address of the device with the one configured in its database. Onlygateways/devices with pre-configured IP address are allowed to use AA services on theRADIUS server.

However, the above restriction enforces that all gateway should use static (non-changing) IPaddress to authenticate itself with the gateway. Or else, there should be some mechanism inplace that will automatically detect the IP address change and will update the RADIUSinformation accordingly.

WiFiLAN provides this service for selected gateways thereby allowing services providers touse dynamic IP addresses for their gateways. Since dynamic IP addresses are cheaper thanstatic ones, this feature helps service providers to cut down their cost of operations.

• Data Replication and Redundancy

Computer systems are prone to failures. To circumvent outages and loss of data during thesefailures, it is important to maintain redundancy within the system. This mechanism will ensurethat the end users will not get affected and will continue to get desirable services when theprimary server goes down.

WiFiLAN is designed with a built-in redundancy. It maintains dual server architecture in whichone server acts as a primary and other one as secondary. All data from the primary server

gets replicated on the secondary server. In case of failure of the primary server, the users aretransparently redirected to the secondary server. Since WiFiLAN maintains real-timereplication of data no data loss occurs during this transition. This ensures all services areoperational on the secondary server.


16/181


16

• Email Verification

Email is widely used medium of communication in the interconnected world. With the increase inpopularity of email, its misuse has also increased. Spam is a common example. Many people arereluctant to enter their correct email address when they signup online. However, wireless serviceproviders need correct email address to send electronic invoices and receipts.

WiFiLAN provides a feature that allows service providers to enforce an extra email verificationstep during the online signup process. The system automatically sends a verification email tocustomer’s email address that contains instructions to activate the account. Only customers whohave entered valid email addresses are able to activate their account. This ensures that thecustomer database contains only valid email addresses and the service provider can be assuredthat their billing and announcement emails will reach the intended parties.

WiFiLAN Overview

Architecture


17/181


17

The diagram below provides a high-level architectural overview on the WiFiLAN system. TheWiFiLAN management platform is the central component of the architecture. The end-usersinteract with this component to manage the functioning of the backend servers. WiFiLAN providesrange of features including AAA services, network management and monitoring, CRM, billing,reporting and user provisioning.

Network administrators, customer service representatives and managers are primary users ofWiFiLAN. The network administrators are generally concerned with the network and RADIUSsections where they specify different parameters to control the functioning of their Wi-Fi networks.The CSRs usually work on the CRM section and use data provided by other sections to solvecustomer problems. Finally, the managers view different types of reports, billing data andconstantly review information stored in WiFiLAN.

WiFiLAN management platform uses several different servers to provide various functions to itsusers. The billing server is responsible for communicating with the external payment gateway toperform credit card billing and clearance. The RADIUS server provides authentication,authorization and accounting services to the end users. The Network Monitoring serverperiodically scans all the remote gateways and attached devices to determine whether they areoperating properly. It sends notifications to the administrators in an event of failure. The TrapManager listens for traps and heartbeats (periodic pulse) from the remote devices and notifies

administrators of undesirable events. Finally, the content filter allows administrators to filterunwanted content from reaching the end users on their networks.

WiFiLAN application runs on a web server so it can be access from anywhere on the Internetusing a compatible browser. It uses SSL to ensure that the data transmitted between the browserand the web server is encrypted and secure. All the data resides in WiFiLAN database where itgets replicated and backed up periodically. This ensures that the data remains safe and secure.


18/181


18

Menu Summary

• Home

• RADIUSo Userso Groupso Gatewayso AutoLoginso Locationso Approvalso Reports

• Networko Admino Deviceso Statuso Installo

Inventoryo Content Filtero Reports

• CRMo Admino Ticketso Emailso FAQo K-Baseo Reports

• Billingo Admino Userso Planso Prepaido Transactionso Promotionso Reports

• Admino Accountso Historyo User Attrso Device Attrso Edit Profile

• Helpo Online Helpo Documentation

• Logout

RADIUS Management

Wifi-soft hosts dual, redundant RADIUS server to provide Authentication, Authorization and Accounting services to its customers. The RADIUS management section allows administrators tomanage users and groups, configure gateways, define autologins, approve users and viewaccounting information of all users. In this section, we will learn more about following concepts:


19/181


19

• RADIUS Users• Groups• Gateways• AutoLogins or MAC Addresses• Locations

• Approvals

Concepts

• RADIUS users and groups

Users having common RADIUS attributes are grouped together in a RADIUS groups. Thisallows the administrators to specify common RADIUS attributes once for the group and all theusers belonging to that group will automatically inherit these attributes. This structure greatlyreduces the task of defining RADIUS attributes for users since the common attributes will bedefined once and used for each user.

There are two types of groups – device and user. The device group consists of RADIUS

gateways or NAS (Network Access Server), while the user group consists of RADIUS users.Many advanced wireless gateways like Colubris have a separate authentication mechanismfor the gateways. This allows the administrators to fetch the gateway initialization parametersfrom the RADIUS server where they can be managed dynamically. Only the gatewayssuccessfully authenticated are allowed to send user authentication and accounting request tothe RADIUS server. Besides allowing dynamic gateway configurations, this mechanism alsoprevents an unauthorized gateway from using any RADIUS services.

• AutoLogin

Some gateways support MAC address-based authentication. In this authenticationmechanism, the user’s MAC address is verified with a predefined list of MAC addresses. Ifthe user’s MAC address matches one of the listed ones, then the user is automaticallyauthenticated. The user is not required to use username and password to login. This featureprovides seamless authentication to the user and can be offered as a premium service to theusers.

• Gateways

Gateways are devices that function as gatekeepers in a wireless network. Depending on thevendor, gateway is responsible for number of functions. Most common functions of a Wi-Figateway are redirecting unauthenticated users to a login page and providing access to onlyauthenticated users. It is also responsible for managing user sessions, running networkservices like firewall, DHCP, NAT, VPN, etc. Gateways also have a RADIUS client that isresponsible for communicating with the RADIUS server to authenticate users.


20/181


20

• Locations

Location information is important for hotspot operators who have installed Wi-Fi hotspots indifferent places and need a way to track their operational data based on the location of thesehotspots. For examples, a wireless ISP needs to find the correct location of the user whens/he calls the customer service center and provides username or phone number. Location

also helps managers to generate reports and manage data systematically.

• Approvals

Some places like universities may need to provide free access to its students but paid accessto its visitors. In such scenarios, the administrator can configure the user provisioningprocess with an extra approval step. All newly created user accounts will be sent for approvalto the administrator, who can allow free access to students and discard the dummy orillegitimate ones. The approval section provides an interface to approve or deny the newlysigned up users and purge the ones that are denied registration.

RADIUS Menu

The RADIUS management menu is shown below.

Each sub-menu will open multiple tabs in the right browser frame. The functions of each menuare as follows:

Menu Function

Users Manage and configure RADIUS user settings

Groups Manage RADIUS groups

Gateways Define user profiles for gateways and configure RADIUS settings

AutoLogins Manage MAC address authentication

Locations Manage locations of Wi-Fi networks

Approvals Manage approvals process for new user accounts

Reports View reports and statistics related to RADIUS data

Radius Users


21/181


21

User Summary

The User Summary page provides summarized information of all the users in the system. Theusers are categorized by the location where they belong. The summary table displays active,suspended and online users per location.

You can do a quick search for a particular user(s) based on the login name or the full name of theuser. The search fields accept even partial search entries. For example, you can search for allusers whose first name is John. You can click on the username in the result list to get moreinformation about the user.

New User

To create a new RADIUS user, click on the ‘New User’ tab. A form is displayed that accept allrelevant information. The description of each form element is given on the right side.

The user information can be entered in different sub-sections. The Authentication subsectiongathers all the information required for authenticating the user in the RADIUS server. The realm(e.g. @wifi-soft.com) is automatically appended to the username. The password should be atleast 6 characters in length and should not be same as the username. Since user group is a


22/181


22

required field, administrators need to create user group entry before creating users in that group.Similarly, the location has to be defined beforehand. The expiry date captures the date until whichthe user’s account is valid. The account will be automatically deactivated after the expiry date isreached.

If there is a data validation error, then an error message will be displayed next to the respectivefield.

Note: All the fields marked with * are required fields

Additionally, the administrators can define extended attributes for the user. These extendedattributes are helpful in capturing extra information about the user. The extended attributes will bedisplayed along with the standard information on the user details page.

In the above example, administrator wants to capture the apartment number and building numberfor this user.

List Users

The List Users tab displays a list of all users in the system sorted by their full names. The Statuscolumn indicates whether the user is active or suspended. The RADIUS server will denyauthentication to all suspended users. Thus by suspending users, the administrators cantemporarily restrict users from using their services. For example, the administrator can suspendthe user’s account if his/her credit card is expired. The account can be activated once the userhas updated the credit card information and the necessary amount is charged.

The search section provides different options to search for specific users. To search using one ofthe standard field (address, city, phone numbers), select the appropriate field from the drop-downlist and enter the search value. The search results are displayed in tabular format.

The list can be sorted by clicking on the underlined columns. Clicking on column will sort the listin ascending order. Second click will resort the list in descending order.


23/181


23

The user list can be exported in a CSV (Comma Separate Values) format. To export the user list,click on the Export button on the top right corner of the screen. User will be prompted for aconfirmation and an option to save/open the save file as shown.

Note: The exported file can be viewed and modified using Microsoft Excel.

User Details

To view the details for a particular user, click on the username in the user list. All the informationrelated to the user is displayed in a tabular format. The first table displays the personalinformation such as address, phone numbers, etc for the user. If extended attributes are defined,then the table also contains the extended attribute information for the user.


24/181


24

The various buttons on the top of the page are used for viewing or modifying the user information.To edit the user information, click on the Edit button. The Accounting button displays all theaccounting history for the user. The Radius button allows administrators to change the RADIUSattributes for the user, and finally, the Suspend button is used for suspending the user. If the user

is in suspended state, then Unsuspended and Delete buttons are displayed. The unsuspendedbutton will allow administrators to activate the user’s account and the Delete button will delete theaccount.

The session information for this user is displayed below the personal user information section. Ifthe user is currently online, then a message is displayed indicating that the user is online.

The Session information also displays the last five sessions for the user. If the user is online,then it displays a “Logout” button next to the session that is currently open. The administratorscan logout the user by pressing the logout button.1

Finally, the Accounting Details section displays the summary of the accounting information overthe past seven days for the user. The table displays the total session, usage time and bandwidthusage for the users for each day of the week.

1 The gateway needs to support this feature.


25/181


25

The information listed on the User Details page helps customer services reps to diagnose userproblems and analyze the overall usage patterns for the users.

Edit User

To edit user’s information, click the Edit button on the User Details page. The administrators arenot allowed to change the username for the user.

Note: If the administrator’s account is configured to view passwords, then all passwords will bedisplayed in plain text.

User Accounting

Clicking on the Accounting button displays the accounting history for that user. Each entry in thetable indicates a user session with session start time, duration, MAC address, Location, Uploadbandwidth, Download bandwidth and reason for session termination. The MAC address listed isthe MAC address of the user’s machine, while the Location column displays the location fromwhere the user initiated the session.


26/181


26

The table below provides the explanation for the End Reason column:

End Reason Description

Lost Carrier The user’s machine was shutdown or takenaway from the Wi-Fi zone without explicitlylogging out

User Logout The user logged out using logout buttonForce Terminate The gateway forcibly terminated user’s session

after the threshold for a particular parameter wasexceeded. For example: Session-Timeout

Idle-Timeout User session was idle for time longer than thethreshold configured

NAS Reboot The gateway was rebooted

Edit RADIUS Attributes

The RADIUS attributes define the characteristics for a user session. The RADIUS server passesthese attributes along with the response to the gateway after processing the authenticationrequest from the user. The gateway uses the attributes to define the parameters for the session.For example, the Session-Timeout parameter is used to restrict the length of the session for theuser. The gateway will automatically terminate the user’s session once the threshold for Session-Timeout is exceeded.

The attributes are divided into two sections – General RADIUS attributes and Vendor-specific

attributes. The general attributes are common across all the gateways and are part of theRADIUS specifications. The vendor-specific attributes are generally defined by the vendors toextend the functionality of their gateway. More information on these attributes can be found byreading the documentation or manual for the specific gateway.


27/181


27

Adding Standard RADIUS Attributes

To configure standard RADIUS attributes for a specific user, click on the RADIUS button on theuser details page and then on the top “Add New” button. A popup window will appear thatdisplays a list of all RADIUS attributes in a drop-down list. Select the appropriate attribute andenter its value in the textbox. Administrators can also select appropriate operator for the attribute.To add another attribute, simply select another entry from the drop-down list and enter itscorresponding value. Click on the Close button once you are done adding the attributes.

Adding Vendor-specific RADIUS Attributes

To add vendor-specific attributes, first select the appropriate vendor by clicking on the SelectVendor button. The vendor attributes are appended along with standard RADIUS attributes and

passed to the gateway. The gateway uses them to customize the session for the particular user.


28/181


28

Next, click on the bottom “Add New” button. A popup window will appear with all the vendor-specific attributes listed in the drop-down list. Select the appropriate attributes and enter its valuein the text field. To add another attribute value, select a new entry from the drop-down list andenter the appropriate value. Click on the Close button once you are done entering values. TheRADIUS page will update automatically and will display the newly added attributes.

Note: All the common user attributes should be moved to users group. Only user-specific attributevalues should be defined here.

Suspend User

Administrators have the option to discontinue service for a particular user by suspending heraccount. WiFiLAN preserves all the information (including accounting records) of the user duringthe suspension. Thus the user’s state is restored back once the user account is unsuspended.

Administrators can suspend RADIUS accounts for variety of reasons. For example, if theadministrator detects that a particular user is misusing the network resources or using his accountfor fraudulent activity, the administrator can prevent the user from using the network by

suspending the account. In some cases, the account may be suspended automatically. Forexample, if the billing engine detects that the user’s credit card is expired and it is unable tocharge the user for the monthly dues, then the billing engine may suspend the accounttemporarily until a valid credit card become available. The administrator can control the automaticsuspension by configuring the billing cycle appropriately.


29/181


29

Unsuspend User

The administrator can unsuspend the user by clicking the Unsuspend button on the User Detailspage. The Unsuspend button is only displayed for suspended users. WiFiLAN restores back theuser’s state and moves the user into active state. Once active, the RADIUS server can processthe authentication request from the user and thus allow access to network resources.

Delete User

If a particular user account is no longer needed, then administrators can chose to purge the userfrom the system. All the user’s data (including the accounting records) will be lost after thedeletion. Please note that only suspended users can be deleted.

Note: WiFiLAN won’t be able to restore any user information once the user is deleted.


30/181


30

Radius Groups

Radius group is a logical entity to represent a collection of users or devices (gateways) that havecommon characteristics. The users or gateways defined within a particular group share theRADIUS attributes of that group. This minimizes the task of defining attributes for each individualuser or device, instead the administrator can define attributes for the group and all users or

devices within that group will automatically inherit those attributes. Administrators can also definethe authentication protocol that the RADIUS server will use for authenticating users or deviceswithin a group.

New Group

To define a new group, click on the New Group tab. The Group Name field is required and shouldbe unique. The group name should also not have any spaces. Select the type of the group andthe location (if any) associated with the group.

Note: Avoid using white spaces in the group name. Instead use ‘_’ to separate two words in thegroup name.

List Groups

To view all the groups defined in the system, click on List Groups tab. The groups are listed inalphabetical order with the device groups on the top. The table also displays the list of active andsuspended users within the group.

To sort the list based on particular field, click on the underlined column. First click will sort the listin ascending order; the following click will sort the list in descending order.


31/181


31

Note: If a group is associated with a location, then it is a good idea to have some namingconvention for the group name. This helps in easily identifying the group while selecting it onother screens.So, instead of using just the site name (eastcondo), we can use state_sitename orstate_city_sitename to easily identify the group

Edit Group

To edit the group, click on the group name is the List Group table and make appropriate changes.

Edit RADIUS Attributes

As mentioned previously, you can define common RADIUS attributes for users or devices bydefining them in the group configuration. This saves the effort of defining attributes for each andevery user. All users or devices defined within the group automatically inherit the attributes

defined for the group.

Like user attributes, the group attributes are also divided into General RADIUS attributes andvendor-specific RADIUS attributes. The general attributes are common to all gateways and aredefined in the RADIUS specifications, while the gateway vendors define vendor-specificattributes.


32/181


32

Delete Group

To delete a particular group, click the Delete button on the Edit Group tab. Please note that all theusers belonging to the group will become “groupless” or orphaned and the administrators willhave manually move these users from the orphaned group to the new group. It is generally notadvisable to delete a group once users or devices are assigned to it.

Gateway

The gateway submenu allows administrators to manage the RADIUS configuration for wirelessgateways installed in the Wi-Fi network. These gateways are responsible for controlling the trafficbetween internal machines and the Internet. Besides acting as a gatekeeper, these devices mayalso function as an access point, DHCP server and firewall. Most of these gateways haveredirection feature whereby unauthenticated clients are redirected to a login page. Typically,these gateways are linked with access points using RF links or wired connections to cover a largearea.

List Gateways

To list the configured gateways, click on the Gateway submenu and then on the List Gateway tab.The gateway devices are listed in alphabetical order along with its IP address and location. Youcan click on the gateway name to view the RADIUS configuration for that gateway.


33/181


33

To sort the list, click on the column header. The list will be sorted in ascending and descendingorder on successive clicks.

New Gateway

To configure the RADIUS parameters for a new gateway device, click on the New Gateway tab. It

displays a form that collects all the information required configuring and authenticating a remotegateway device.

The description of each attribute is as follows:

Attribute DescriptionDevice Name The short name for the gatewayDevice UserName * The username that should be used to authenticate the

gateway. The same username should be entered in thegateway configuration using its admin pages. Thisfeature is not available for all gateways. Please refer toyour gateway documentation for more information.

Device Password * The password that is used to authenticate the gateway.The same password should be entered in the gatewayconfiguration using its admin pages.


34/181


34

IP Address * The IP address of the gatewaySecret * The shared secret configured in the gateway admin

pageDevice Group The name of the device group. The gateway will inherit

the RADIUS attributes from this device groupDevice Type Type of the gateway. Select the type of gateway from

the list.MAC Address The MAC address of the WAN port of the gatewayDescription Short description about the gatewayLocation The location where the gateway is installed

* These parameters should match the ones specified in the gateway’s admin page.

Advanced gateways like Colubris, retrieve their initialization parameters from the RADIUS server.These gateways periodically send RADIUS authentication request to the server and RADIUSserver responds back with initialization parameters. You need to enter the Device UserName andPassword for such gateways.

WiFiLAN automatically creates a Network device entry when you add a new gateway. The

Network entry contains monitoring information along with other technical details of the device. Formore information on Network device, please refer to the Network section.

Edit Gateway

To edit the existing configuration for a gateway device, click on the gateway name in the ListGateway table. If your gateway is configured for RADIUS authentication, they you need to enterthe Device UserName and DevicePassword fields. Please note that the Device UserName shouldbe unique for each gateway. WiFiLAN will prompt an error if you enter a duplicate DeviceUserName.

Note: You can use the gateway serial number as the Device UserName.


35/181


35

Edit Radius Attributes

Like users and groups, you can also specify the RADIUS attributes for a gateway device. Theseattributes control the behavior of the gateway and are typically sent to the gateway when thedevice is authenticated. Please note that not all gateways support this feature.

The RADIUS attributes are divided into two sections – General and Vendor-specific. The generalattributes are common across all gateways and are defined in the RADIUS specifications. Onlythe most commonly used ones are displayed in this section. To enable display of other generalRADIUS attributes, please contact our technical support.

The vendor-specific attributes are different for each gateway. Administrators need to select theright vendor using the Change Vendor button. The list of commonly used vendor-specificattributes is displayed. Some attributes can be defined multiple times. The default operator (e.g.+=) is automatically selected for each attribute.

Delete Gateway

To delete a gateway configuration, click the Delete button and confirm the deletion.

Note: Deleting a gateway will also delete the network device entry. All the network device data(monitoring, network configuration, installation, etc) for the device will be deleted. Additionally, allthe data for attached devices (sub-devices) will be deleted too. Please exercise caution whiledeleting a gateway.


36/181


36

AutoLogin

AutoLogin section manages MAC address authentication for the RADIUS server. Normal loginmechanism requires the user to enter username and password in a login form to gain access tonetwork resources like Internet. In case of MAC address authentication, the wireless gatewaydetects when the user’s computer with a given MAC address is switched on and automaticallyperforms the authentication for the user. The user doesn’t have to remember username andpassword and normally gets a perception that his computer is always logged on.

Although many wireless gateway support MAC address authentication, not all of them supportRADIUS based MAC address authentication. Some of them allow administrators to specify MACaddresses within the gateway configuration. In such cases, AutoLogin feature may not be used.However, many advanced gateways do send a RADIUS authentication request when they detecta predefined MAC address and request RADIUS authentication.

List AutoLogins

To view all the AutoLogins defined in the system, click on the List AutoLogins tab. Each AutoLogin’s MAC address, a friendly name and the group name are listed in a tabular format. You

can also search for particular AutoLogin entry using the search section. The search fields canaccept partial MAC address entries, in which case all entries containing the partial address will bereturned.

New AutoLogin

To add a new AutoLogin entry, click the New AutoLogin tab and enter the details for the AutoLogin entry. Although the Friendly Name is not a required field, it is a good idea to enter afriendly name for the entry to easily search for it in the future.


37/181


37

Each AutoLogin entry can be associated with one or more gateway (devices). The MAC addressauthentication for an AutoLogin will only work on gateways that are associated with the AutoLoginentry. To enable free roaming for a particular MAC address, you need to associate its AutoLoginentry with all the devices.

Note: MAC address bytes must be separated by dash. Example: 00-03-CD-49-D8-A8

Edit AutoLogin

To edit an AutoLogin entry, click the MAC address in the AutoLogin list. Note that you can’tchange the MAC address once it is created. If you need to change the MAC address then you willhave to delete and add the entry again.

Edit Radius Attributes

Like users, it is possible to define RADIUS attributes for AutoLogin entries as well. Theseattributes will be sent to the gateway along with the authentication response for a MAC address.The gateway uses these attributes to control the behavior of the session for that MAC address.Please refer to Edit Radius Attributes section for users for more information.


38/181


38

Accounting

Since AutoLogins are treated just like normal RADIUS users, the RADIUS server collectsaccounting data for each MAC address session. To view the accounting history for a particularMAC address, click on the Accounting button on the Edit AutoLogin page.

The accounting records are displayed in reverse chronological order starting with the mostcurrent session. The table also displays the total duration, internal IP address, location,bandwidth usage and reason for session termination for each session. If they are more than 50entries, click on the ‘Next Page’ link to view the subsequent pages.

Delete AutoLogin

To delete an AutoLogin entry, click on the Delete button on Edit AutoLogin page. Confirm thedeletion.


39/181


39

Deleting AutoLogin entry will delete all accounting information for the particular MAC address.

Locations

Each Wi-Fi network or hotspot is installed at a particular location. WiFiLAN allows you to managethe list of locations. For hotspot providers having nationwide installations, location list help theiradministrators to keep track of their hotspots, users and network infrastructure. The location-

based reports and statistics help administrators and managers understand the customerdemographics and trends based on a geographical area.

New Location

To create a new location entry, click on the New Location tab. Fill or select the necessary fieldsand click Create Location. You can also enter the Latitude and Longitude for that location.

You need to select a city-state combination while create a new location. If a particular city-statecombination doesn’t exist in the list, you can click on the New button to create a new combination.


40/181


40

List Locations

To view all the locations defined in the system, click on the List Location tab. All the locations aredisplayed in alphabetical order. You can sort the list by clicking on the underlined table headers.

The export button allows administrators to export the list of locations in an Excel format. The listcan be easily uploaded into Wi-Fi finder websites such as Jwire.

Edit Location

Click on the name of the location to edit a given location.


41/181


41

The entries with * are compulsory.

Delete Location

To delete a location, click the Delete button on the Edit Location page. Click on the DeleteLocation button to confirm your action.

How location ID is used?

Location ID is important during user registration process. To associate the new user with aparticular location, it is necessary to pass the location ID along with the registration request.WiFiLAN registration module will use the location ID to associate the user to a proper user groupand location. Please refer to External Website Integration section for more information.

User Approvals

A typical user registration is a one-step process. The user visits a registration page, fills a formalong with his credit card information and submits it. If the registration succeeds, then the user’saccount is created in the RADIUS database and the user can begin using the Internet service.

However, sometime wireless ISPs or network operators may have to introduce a two-step userregistration process. For example, a university may decide to provide Internet service free to itsstudents but charge the visitors who visit the campus. Since student population is dynamic andevery student may not need access, the network operator can allow free registration for studentsand paid for visitors. The student registration has to be approved before the account becomes


42/181


42

active. The approval similar process can be used by wireless ISPs while signup bulk deals withapartment properties or hotels.

In approval process, the registration goes to the administrator for approval before the accountbecomes active. The administrator can approve or deny the registration. The denied users arepurged from the database using the Purge Denied feature.

List Approvals

All users submitted for approval are displayed under List Approval page. To view this page clickon RADIUS -> Approval menu. The table displays the list of all pending approvals. Each entryconsists of approve/deny actions radio buttons, Name of the user, location, apt number (ifapplicable) and signup date.

Administrators can select approve or deny action for each entry and then hit submit. All approvedusers will be activated in the system and denied users will be suspended. The administrator cannavigate to the Purge Denied tab to clean the denied users.

The search section allows administrators to search for a particular user based on user attributesor signup location.

To view the detail information about the user, click on the user’s name.

Purge Denied

Date post:	08-Jul-2018
Category:	Documents
Upload:	narendraonnet
View:	227 times
Download:	0 times

Wifilan 1 1 Adminguide

Documents