Cloudi-Fi Policies allow administrators to control user access and session behaviors using flexible, criteria-based logic. Whether you're managing employees or guests, policies let you define who can connect, when, and under what conditions.
Policies are context-aware and can be applied based on criteria such as location, user profile, country, template, and datetime, using AND logic for precise access control.
Cloudi-Fi policies are grouped into three major categories:
1. Access control
Access Control policies allow or deny user authentication based on defined criteria such as:
- Location
- User profile
- Country
- Template
- Datetime
2. Privilege policies
Privilege Sets define what users can do after authentication and how long they can stay connected. They include:
- Session duration
- Maximum devices allowed
- VLAN ID assignment (for 802.1X or RADIUS-based IoT)
Each privilege set is applied using the same criteria (Location, Profile, etc.) and applies at a user level — except device-specific constraints like maximum simultaneous devices.
3. Registration policies
Registration policies enforce domain restrictions and profile assignments during user registration. They’re essential for securing guest access and sponsor accountability.
You can define:
- Blocked/Allowed domains for Employees, Guests, and Sponsors
- Default and selectable profiles for Guests, Sponsors, and Lobby Admins
- Guest account duration
These rules are enforced strictly at registration time using criteria such as registration type, template, location, country...