Captive Portal
      Back to home
      1. Help Center
      2. Access Point Instructions
      3. Captive Portal

      Avaya

      Access Point Instructions for Avaya

      This page explains the configuration of Avaya wireless access points for external Captive Portal and RADIUS server authentication.

      IronWiFi Console Configuration

      1. Log into the IronWiFi console or register for free
      2. Create a new network
      3. After that, create a new captive portal, with vendor Avaya

      Access Point Configuration

      IMPORTANT NOTICE: Your device must be running 7.0 firmware or above to continue.

      Open a web browser and log in to your Avaya AP web interface.

      Click on "Security" on the left menu and select "External Radius" on the sub menu.

      Under RADIUS Attribute Formatting:

      • Called-Station-Id Attribute Format: Ethernet-MAC
      • Station MAC Format: UC-hyphenated (XX-XX-XX-XX-XX-XX)
      • Accounting: On

      Under Accounting:

      • Accounting Interval: 300

      Click Save changes to flash at the top right of the page.

      Next, click on SSIDs on the left and then SSID Management on the sub menu.

      Underneath the current SSID's, enter Guest WiFi and click on Create

      This will create the new SSID. You now have access to the following settings. Please set the following:

      • SSID: Ticked
      • Brdcst: Ticked
      • Encryption: None/Open and untick the Global checkbox
      • WPR: Ticked

      Next, scroll down the page and under SSID Guest WiFi Web Page Redirection Configuration, set the following:

      • Landing Page URLget this value from the IronWiFi console
      • Server: External Login
      • Redirect URLget this value from the IronWiFi console
      • Redirect Secretget this value from the IronWiFi console

      Next, under SSID Guest WiFi WPR Whitelist Configuration:

      IMPORTANT: You will need to add the below entries one by one until you have them all listed.

      107.178.250.42

      If you need to load resources from external servers (SAML, social login), you will need to add other entries as well, instructions to configure the walled garden list in this case are available here.

      Next, under SSID Guest WiFi Authentication Service Configuration:

      Enter the following information:

      • Authentication Server: External Radius

      Under Primary:

      • Host / IP Addressget this value from the IronWiFi console
      • Portget this value from the IronWiFi console
      • Shared Secretget this value from the IronWiFi console
      • Verify Secretget this value from the IronWiFi console

      Under Secondary:

      • Host / IP Addressget this value from the IronWiFi console
      • Portget this value from the IronWiFi console
      • Shared Secretget this value from the IronWiFi console
      • Verify Secretget this value from the IronWiFi console
      • Accounting: ticked

      Under Primary:

      • Host / IP Addressget this value from the IronWiFi console
      • Portget this value from the IronWiFi console
      • Shared Secretget this value from the IronWiFi console
      • Verify Secretget this value from the IronWiFi console

      Under Secondary:

      • Host / IP Addressget this value from the IronWiFi console
      • Portget this value from the IronWiFi console
      • Shared Secretget this value from the IronWiFi console
      • Verify Secretget this value from the IronWiFi console

      Click Save changes to flash at the top right of the page.

      ! You must also install a valid SSL certificate on your controller/AP, in order to avoid authentication issues !