Describes how to configure your Cisco Mobility Express to activate the Cloudi-Fi splash page feature.
This setup consists of below main parts:
-
Get Cloudi-Fi required information
-
Radius configuration
-
ACL rule
-
SSID Configuration
1) Get Cloudi-Fi required URL and Radius Secret
Go to your Cloudi-Fi administration interface and get the URL for external authentication.
Go to Locations Menu
Click on the menu button of the location and select "Copy Splash page URI."
-
Copy the URI.
Note: Make sure that the URL contains the following attribute:spentityid=spcisco.com
Go to the chat interface and ask for your Radius secret
-
Copy the secret as well
2) Radius configuration
Log in to your Mobility Express web interface and enable the "Switch to Expert View" at the top right.
On the left side menu, go to Management Admin Radius and configure as follows:
-
Authentication Call Station ID Type: AP MAC Address:SSID
-
Authentication MAC Delimiter: Hyphen
-
Accounting Call Station ID Type: AP MAC Address:SSID
-
Accounting MAC Delimiter: Hyphen
Click Apply and add Radius Authentication Server:
-
State: Enabled
-
COA: Disabled
-
Server IP Address: Provided by Cloudi-Fi Support
-
Shared Secret: Provided by Cloudi-Fi Support
-
Confirm Shared Secret: as above
-
Port Number: 1812
Click Apply and add the secondary Radius Authentication Server.
3) ACL Rule
4) SSID Configuration
Go to Wireless Settings WLANs. Click Add new and configure with :
On the General tab :
-
Profile Name: Guest Wi-Fi
-
SSID: Your SSID name
-
Admin State: Enabled
-
Radio Policy: ALL
-
Broadcast SSID: Enabled
On the WLAN Security tab:
-
Guest Network: Enabled
-
Captive Network Assistant: Enabled
-
Radius Compatibility: Cisco ACS
-
Captive Portal: External Splash page
-
Captive Portal URL: Splash page URI copied from the Cloudi-Fi interface
-
Access Type: RADIUS
Under ACL Name(IPV4), select the Pre-auth profile you've created in step 3.
Under Radius Server, select the Radius Authentication Servers.
On the Advanced tab:
-
Allow AAA Override: Enabled