Configuring WISPr Authentication

The WISPr Wireless Internet Service Provider Roaming. The WISPr framework enables the client devices to roam between the wireless hotspots using different ISPs. authentication profile includes parameters to define RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources.  attributes, default roles for authenticated WISPr Wireless Internet Service Provider Roaming. The WISPr framework enables the client devices to roam between the wireless hotspots using different ISPs. users, the maximum number of authentication failures, and login wait times. The WISPr Wireless Internet Service Provider Roaming. The WISPr framework enables the client devices to roam between the wireless hotspots using different ISPs.-Location-ID, sent from Mobility Master to the WISPr Wireless Internet Service Provider Roaming. The WISPr framework enables the client devices to roam between the wireless hotspots using different ISPs. RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources.  server, is the concatenation of the International Organization for Standardization Country Code, E.164 Country Code, E.164 Area Code, and SSID Service Set Identifier. SSID is a name given to a WLAN and is used by the client to access a WLAN network. or Zone parameters configured in this profile.

The parameters used to define WISPr Wireless Internet Service Provider Roaming. The WISPr framework enables the client devices to roam between the wireless hotspots using different ISPs. RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources.  attributes are specific to the RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources.  server your ISP Internet Service Provider. An ISP is an organization that provides services for accessing and using the Internet. uses for WISPr Wireless Internet Service Provider Roaming. The WISPr framework enables the client devices to roam between the wireless hotspots using different ISPs. authentication; contact your ISP Internet Service Provider. An ISP is an organization that provides services for accessing and using the Internet. to determine these values. You can find a list of International Organization for Standardization and International Telecommunication Union country and area codes at the International Organization for Standardization and International Telecommunication Union websites (www.iso.org) and http://www.itu.int.)

The following procedure describes how to configure a WISPr Wireless Internet Service Provider Roaming. The WISPr framework enables the client devices to roam between the wireless hotspots using different ISPs. authentication profile:

  1. In the Managed Network node hierarchy, navigate to the Configuration > Authentication page.
  2. Select WISPr Authentication from the L3 Authentication tab.
  3. Under WISPr Authentication Profile: New Profile, click the + to add a new profile entry.

    To modify an existing WISPr Wireless Internet Service Provider Roaming. The WISPr framework enables the client devices to roam between the wireless hotspots using different ISPs. authentication profile, select a profile entry below WISPr Authentication in the All Profiles list.

  4. Enter a Profile name.
  5. Define values for the following parameters:

Table 1: WISPr Authentication Profile Parameters

Parameter

Description

Default Role

Default role assigned to users that complete WISPr Wireless Internet Service Provider Roaming. The WISPr framework enables the client devices to roam between the wireless hotspots using different ISPs. authentication.

Max Authentication failures

Maximum number of failed WISPr Wireless Internet Service Provider Roaming. The WISPr framework enables the client devices to roam between the wireless hotspots using different ISPs. authentication attempts permitted for each user.

User Agent String

User agent that identifies and provides details on the browser used during an HTTP Hypertext Transfer Protocol. The HTTP is an application protocol to transfer data over the web. The HTTP protocol defines how messages are formatted and transmitted, and the actions that the w servers and browsers should take in response to various commands. request

Logon wait minimum wait

If the controller’s CPU Central Processing Unit. A CPU is an electronic circuitry in a computer for processing instructions. utilization has surpassed the Login wait CPU utilization threshold value, the Logon wait minimum wait parameter defines the minimum number of seconds a user has to wait to retry a login attempt. Range: 1–10 seconds. Default: 5 seconds.

Logon wait maximum wait

If the controller’s CPU Central Processing Unit. A CPU is an electronic circuitry in a computer for processing instructions. utilization has surpassed the Login wait CPU utilization threshold value, the Logon wait maximum wait parameter defines the maximum number of seconds a user has to wait to retry a login attempt. Range: 1–10 seconds. Default: 10 seconds.

Logon wait CPU utilization threshold

Percentage of CPU Central Processing Unit. A CPU is an electronic circuitry in a computer for processing instructions. utilization at which the maximum and minimum login wait times are enforced. Range: 1–100%. Default: 60%.

WISPr Location-ID ISO Country Code

The International Organization for Standardization Country Code section of the WISPr Wireless Internet Service Provider Roaming. The WISPr framework enables the client devices to roam between the wireless hotspots using different ISPs. Location ID.

WISPr Location-ID E.164 Country Code

The E.164 Country Code section of the WISPr Wireless Internet Service Provider Roaming. The WISPr framework enables the client devices to roam between the wireless hotspots using different ISPs. Location ID.

WISPr Location-ID E.164 Area Code

The E.164 Area Code section of the WISPr Wireless Internet Service Provider Roaming. The WISPr framework enables the client devices to roam between the wireless hotspots using different ISPs. Location ID.

WISPr Location-ID SSID/Zone

The SSID Service Set Identifier. SSID is a name given to a WLAN and is used by the client to access a WLAN network. or Zone section of the WISPr Wireless Internet Service Provider Roaming. The WISPr framework enables the client devices to roam between the wireless hotspots using different ISPs. Location ID.

WISPr Operator Name

Name identifying the hotspot Hotspot refers to a WLAN node that provides Internet connection and virtual private network (VPN) access from a given location. A business traveler, for example, with a laptop equipped for Wi-Fi can look up a local hotspot, contact it, and get connected through its network to reach the Internet. operator.

WISPr Location Name

Name identifying the hotspot Hotspot refers to a WLAN node that provides Internet connection and virtual private network (VPN) access from a given location. A business traveler, for example, with a laptop equipped for Wi-Fi can look up a local hotspot, contact it, and get connected through its network to reach the Internet. location. If no name is defined, the parameter uses the name of the associated AP.

  1. Click Submit.
  2. In the All Profiles list, select the Server Group entry below the WISPR authentication profile.
  3. Select the group of RADIUS servers to be used for WISPr authentication from the Server Group drop-down list.
  4. To enable authentication fail through and load balancing, select the check boxes for Fail Through and Load Balance.
  5. Click Submit.
  6. Select Pending Changes.
  7. In the Pending Changes window, select the check box and click Deploy changes.

The following CLI Command-Line Interface. A console interface with a command line shell that allows users to execute text input as commands and convert these commands to appropriate functions. commands configure WISPr Wireless Internet Service Provider Roaming. The WISPr framework enables the client devices to roam between the wireless hotspots using different ISPs. authentication. The first set of commands defines the RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources.  server used for WISPr Wireless Internet Service Provider Roaming. The WISPr framework enables the client devices to roam between the wireless hotspots using different ISPs. authentication, and the second set adds that server to a server group. The third set of commands associates that server group with the WISPr Wireless Internet Service Provider Roaming. The WISPr framework enables the client devices to roam between the wireless hotspots using different ISPs. authentication profile, then defines the profile settings.

(host) [md] (config) #aaa authentication-server radius <rad-server-name>

acctport <acctport>

authport <authport>

clone <source>

enable

enable-ipv6

enable-radsec

host <host>

key <key>

nas-identifier <nas-identifier>

nas-ip <nas-ip>

retransmit <retransmit>

timeout <timeout>

use-ip-for-calling-station

use-md5

(host) [md] (config) #aaa server-group <sg_name>

allow-fail-through

auth-server <name> [match-authstring {contains <sub_string>|equals <sub_string>|starts-with <sub_string>][match-fqdn {all|<fqdn>}][position <prio>][trim-fqdn]

clone <source>

load-balance

set {role|vlan} condition <attribute> [contains <operand>|ends-with <operand>|equals <operand>|not-equals <operand>|starts-with <operand>][value-of][set-value <set-value-str>][position <number>]

(host) [md] (config) #aaa authentication wispr <profile-name>

agent_string <agent_string>

clone <source>

default-role <default-role>

logon-wait {cpu-threshold <cpu-threshold>|maximum-delay <maximum-delay>|minimum-delay <minimum-delay>}

max-authentication-failures <max-authentication-failures>

server-group <server-group>

wispr-location-id-ac <wispr-location-id-ac>

wispr-location-id-cc <wispr-location-id-cc>

wispr-location-id-isocc <wispr-location-id-isocc>

wispr-location-id-network <wispr-location-id-network>

wispr-location-name-location <wispr-location-name-location>

wispr-location-name-operator-name <wispr-location-name-operator-name>

The following CLI Command-Line Interface. A console interface with a command line shell that allows users to execute text input as commands and convert these commands to appropriate functions. commands display the servers and profiles configured for WISPr Wireless Internet Service Provider Roaming. The WISPr framework enables the client devices to roam between the wireless hotspots using different ISPs. authentication:

(host) [md] #show aaa authentication-server radius

(host) [md] #show aaa server-group

(host) [md] #show aaa authentication wispr