Dell PowerConnect W Clearpass 100 Software 3.7 Deployment Guide
Dell PowerConnect W Clearpass 100 Software Manual
View all Dell PowerConnect W Clearpass 100 Software manuals
Add to My Manuals
Save this manual to your list of manuals |
Dell PowerConnect W Clearpass 100 Software manual content summary:
- Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 1
Amigopod 3.7 Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 2
products include Open Source software code developed by third parties, including software code subject to the Aruba Networks, Inc. switching platforms and software, by all individuals or corporations, more information, refer to the ARUBACARE SERVICE AND SUPPORT TERMS AND CONDITIONS. Altering this - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 3
Amigopod Visitor Management Appliance 17 About this Manual 17 Documentation Conventions 17 Documentation Overview 18 Getting Support 19 Field Help ...19 Quick Help Network Provisioning 28 Site Preparation Checklist 29 Setup Guide 31 Hardware Appliance Setup 31 Default Network Configuration - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 4
Updates 43 Setup Complete 44 RADIUS Services 45 Accessing RADIUS Services 45 Server Control...45 RADIUS Log Snapshot Conditions 52 Example: Time-Based Authorization 53 Example: Accounting-Based Authorization 53 Attribute Value Expressions 54 Example: Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 5
| Deployment Guide EAP and 802.1X Authentication 77 Specifying Supported EAP Types Services 88 Joining an Active Directory Domain 88 Testing List 122 LDAP Operator Server Troubleshooting 123 LDAP Translation Rules 125 Account 135 Creating a Guest Account Receipt 136 Creating Multiple Guest - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 6
191 Login Page Properties 192 Self-Service Portal Properties 193 Resetting Passwords with the Self-Service Portal 195 Customizing Print Templates 196 Creating Print Template 201 Customize the Guest Accounts Form 202 Create Access Code Guest Accounts 202 6| Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 7
Deployment Guide MAC Authentication on Amigopod 204 MAC Address Formats 204 Managing Devices 205 MAC Creation Modes 210 Accounting-Based SMS Guest Account Receipts 229 SMS Receipt Options 230 Customize SMS Receipt 232 SMS Receipt Fields 233 SMTP Services 234 Configuring SMTP Services 234 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 8
277 Report Troubleshooting 279 Report Preview with Debugging 279 Troubleshooting Tips 280 Proxy Configuration 297 SNMP Configuration 297 Supported MIBs 299 SMTP Configuration 300 SSL Certificate Content Manager 309 Uploading Content 310 Downloading Content 310 Additional Content Actions - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 9
313 OS Updates ...314 Manual Operating System Updates 314 Reviewing Captive Portal Integration 339 Look and Feel 339 SMS Services 339 Hotspot Plans ...339 Modifying an Existing Plan 346 View Hotspot User Interface 346 High Availability Services 347 Accessing High Availability 347 About High - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 10
359 Updating Plugins 360 Destroying a Cluster 360 Cluster Troubleshooting 360 Reference 363 Basic HTML Syntax 363 Standard HTML 367 Modifiers ...367 Predefined Template Functions 368 Advanced Developer Reference 372 Date/Time Format Syntax 376 nwadateformat | Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 11
Guide NwaParseXml 382 NwaPasswordByComplexity 382 NwaSmsIsValidPhoneNumber 382 NwaStrongPassword 382 NwaVLookup 383 NwaWordsPassword 383 Field, Form and View Reference 384 GuestManager Standard Fields 384 Hotspot Standard Fields 391 SMS Services Standard Fields 392 SMTP Services - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 12
List of Standard Radius Attributes 423 Authentication Attributes 423 RADIUS Server Internal Attributes 425 LDAP Standard Attributes for User Class 425 Regular Expressions 425 Chapter 12 Glossary 427 Index ...429 12 | Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 13
39 Figure 40 Figure 41 Figure 42 Figure 43 Amigopod 3.7 | Deployment Guide Visitor access using the Amigopod Visitor Management Appliance 21 Reference network diagram for Modify fields ...213 RADIUS Role Editor 216 Configure SMS Services Plugin 231 Customize SMS Receipt page 233 Customize Email - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 14
14 | Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 15
Table 44 Amigopod 3.7 | Deployment Guide Quick Links ...18 List of supported in filters 140 Operators supported in filters 143 Account Expiration Types 155 Visitor Management Forms and Views 156 Operators supported in filters 206 Operators supported Services Standard Fields 392 SMPT Services - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 16
Settings 416 Optional EAP Module Options 416 LDAP Module Settings 419 Rewrite Module Configuration Settings 422 Regular Expressions for Pattern Matching 425 16 | Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 17
which can pose problems for network security receipt with account details or they can be delivered wirelessly using the integrated SMS services. Companies . About this Manual This deployment manual is intended for software. Amigopod 3.7 | Deployment Guide Amigopod Visitor Management Appliance | 17 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 18
3576 Dynamic Authorization" "SMS Services" "SMTP Services" "Administrator Tasks" A brief outline of this deployment guide includes: Chapter 2, explains how to create new reports to summarize visitor account information and network usage accounting data. Chapter 8, "Administrator Tasks" describes - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 19
services that may be used to deploy a cluster of appliances in a fault-tolerant configuration. Chapter 11, "Reference" contains technical reference information about many of the built-in features of the appliance. Getting Support of this deployment guide. Searching Help The deployment guide may be - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 20
usually provide you with the answer or obtain a solution to your problem. Failing this, it may be possible to find a solution using the Web Resources command available under Support Services in the Amigopod user interface. 20 | Amigopod Visitor Management Appliance Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 21
you to become familiar with the terminology used in this guide and understand how the Amigopod Visitor Management Appliance can be network is restricted, visitors must first obtain a username and password. A guest account may be provisioned by a corporate operator such as a receptionist, who can - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 22
interactions between the Amigopod Visitor Management Appliance and the other people and components involved in providing guest access. See Figure 3. 22 | Management Overview Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 23
summary form to the Amigopod Visitor Management Appliance using RADIUS accounting, which allows administrators to generate network usage reports. standard AAA framework, which consists of authentication, authorization and accounting components. The following figure shows how the different components - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 24
Accounting-Request [8] Accounting-Response Web login Authentication Authorization Accounting Session timeout [9] Accounting-Request [10] Accounting-Response Accounting name and password of their guest account. The NAS authenticates the user Appliance using RADIUS accounting messages [8]. After - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 25
-reference to the relevant section of this deployment guide. Table 2 List of Key features Feature Refer to... Visitor Access RADIUS server providing authentication, authorization, and accounting (AAA) "RADIUS Services" features Support for 802.1X authentication "EAP and 802.1X Authentication - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 26
survey forms Create print templates for visitor account receipts Create new Web login pages for service (Web service) Perform a security audit of the system Synchronize server time automatically with NTP Syslog support SNMP support " "Dictionary" Documentation Overview Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 27
Visitor Management Terminology The following tables describes the common terms used in this guide. See Table 3. Table 3 Common Terms Term Explanation Accounting Authentication Authorization Captive Portal Field Form Network Access Server Operator Profile Operator/Operator Login Print Template - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 28
traffic on the network to differentiate quality of service for guest accounts and non-guest accounts? What will be the password format for guest accounts? Will you be changing this format on a Security infrastructure - SSL certificate 28 | Management Overview Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 29
Checklist Policy Decision Security Policy Segregated guest accounts? Type of network access? Time of day ? Operational Concerns Who will manage guest accounts? Guest account self provisioning? What privileges will the Policy Password format for guest accounts? Shared secret format? Operator - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 30
30 | Management Overview Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 31
Management Appliance in a virtual machine, See "Virtual Appliance Setup" in this chapter. Hardware Appliance Setup Refer to the Hardware Setup Guide sheet included in the box with the appliance for detailed installation information for the chassis and rack assembly. Default Network Configuration The - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 32
version 3.5 of VMware ESXi, the management console is called VMware Infrastructure Client. In this software, use the File > Virtual Appliance > Import command to create a new virtual machine configuration Item Network Adapter Configuration Method DHCP 32 | Setup Guide Amigopod 3.7 | Deployment - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 33
1 stop bit. Flow control is not required. Both hardware and virtual appliances support command-line access directly at the console and remotely via SSH. The following 's network settings. 2. Restart services - Restarts major system services. Amigopod 3.7 | Deployment Guide Setup Guide | 33 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 34
and resets to the factory default state. All guest accounts, operator logins, RADIUS accounting records, application configuration, and customization will be lost. the graphical user interface, you will be guided through an initial configuration process, which is explained in more detail below. 34 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 35
when logging in for the first time. Amigopod License Agreement Review and accept the software license agreement. If you have any questions about the license agreement, contact Aruba support using the Web site http:// support.arubanetworks.com. Amigopod 3.7 | Deployment Guide Setup Guide | 35 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 36
for details on resetting the appliance's root password. Changing the username of the administrative account does not change the username for logging in to the console user interface. You must , choose Administrator > Network Setup > System Hostname. 36 | Setup Guide Amigopod 3.7 | Deployment - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 37
Network Setup > Network Interfaces. The results of an automated network diagnostic test are displayed at the top of the page. For more details about the be configured for automatic settings using DHCP or BOOTP, or can be manually configured for an IP address. When you choose one of these settings - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 38
username and password in the URL as indicated. For details on HTTP proxy settings, See "Automatic Network Diagnostics" in the Administrator Tasks chapter. 38 | Setup Guide Amigopod 3.7 | Deployment - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 39
to send an email to a test email address in the selected format. This can be used to verify the SMTP configuration, as well as check the delivery of HTML formatted emails. Click the Save and Close button to save the updated SMTP configuration. Amigopod 3.7 | Deployment Guide Setup Guide | 39 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 40
SNMP configuration. Configure Server Time and Time Zone Select the server's time zone and set other options related to timekeeping for the server. 40 | Setup Guide Amigopod 3.7 | Deployment - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 41
To ensure that authentication, authorization and accounting (AAA) is performed correctly, it is vital that the server maintains the correct time of day at server configuration, or click Skip to Network Access Server List to continue with setup. Amigopod 3.7 | Deployment Guide Setup Guide | 41 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 42
Services chapter. Configure Amigopod Subscription ID Both hardware and software appliances are shipped with a restricted default license. This license permits each guest account to have only a limited lifetime, as well as restricting other capabilities of the software. If you - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 43
to the software that was shipped on your Amigopod. The default selections include all new plugins and any updated plugins that are available. To install the default selections, simply click the Finish button to download and install the selected plugins. Amigopod 3.7 | Deployment Guide Setup Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 44
After downloading and guide. Operator logins are the login accounts used for administration and management of the Amigopod. The default administrative operator account of the software. See "Guest Management" chapter for more details on setting up visitor account provisioning. RADIUS Services is for - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 45
records summarized accounting information about each guest session. This allows you to generate reports about guest network usage. Accessing RADIUS Services Use the RADIUS Services command link Server Control page in reverse chronological order. Amigopod 3.7 | Deployment Guide RADIUS Services | 45 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 46
to your browser. This can greatly assist in troubleshooting the exact cause of an authentication, authorization or accounting (AAA) problem. Normally, the RADIUS server runs in the background command link on the RADIUS > Server Control page. 46 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 47
the start time for the user's most recent active session Stale - the user has an active accounting session, but no updates have been received recently; the session may be "stale". Hover over the modified using the Server Configuration screen. Amigopod 3.7 | Deployment Guide RADIUS Services | 47 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 48
in a production environment. If you do enable it for troubleshooting, remember to disable it when you are through. Logging interim accounting updates is optional, and is disabled by default. You "RADIUS Server Options" in the Reference chapter. 48 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 49
Some NAS equipment (notably Chillispot) will send a NAS-IP-Address of 0.0.0.0 in accounting records, which renders the active sessions list view useless as well as any attempt to rules that define when those attributes should be applied. Amigopod 3.7 | Deployment Guide RADIUS Services | 49 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 50
role is identified by a unique number. The ID is shown in the list view. When creating visitor accounts, the role_id field should contain the ID of one of the user roles defined in the RADIUS server. this user role, click the Add Attribute tab. 50 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 51
expression, See "Dictionary" in this chapter. Additional attributes can be added by clicking the Add Attribute button at the bottom of the window. Amigopod 3.7 | Deployment Guide RADIUS Services | 51 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 52
will be modified to provide a greeting to the guest that changes depending on the time of day. 1. Create a new role named Sample role. 52 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 53
sent (nor will an access-reject be sent). Example: Accounting-Based Authorization Authorization decisions can also be made based on the accounting records available to the RADIUS server. In this example, will never be included in the response. Amigopod 3.7 | Deployment Guide RADIUS Services | 53 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 54
the RADIUS Debugger feature, See "Debug RADIUS Server" in this chapter to diagnose any problems with your code in value expressions. Several predefined functions and variables are available for use on the NAS to which visitors are connecting. 54 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 55
to make changes to existing NAS devices. Creating a Network Access Server Entry A new NAS device is added by clicking on the Create tab. Amigopod 3.7 | Deployment Guide RADIUS Services | 55 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 56
Cisco (RFC 3576 support) Colubris/HP Consentry Networks Enterasys Extreme Networks Extricom Infoblox Juniper Networks Meraki Meru Networks Motorola (RFC 3576 support) Ruckus Networks Trapeze Networks (RFC 3576 support) 56 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 57
NAS vendor is not listed, select the "Other NAS" option. If the NAS is known to support RFC 3576, select the "RFC 3576 Dynamic Authorization Extensions Compatible" option. See "RFC 3576 Dynamic different options for importing a list of servers . Amigopod 3.7 | Deployment Guide RADIUS Services | 57 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 58
present in the imported data. You can also specify the values to be used for fields that are not present in the data. 58 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 59
. See "Server Control" in this chapter for more information. Web Logins Many NAS devices support Web-based authentication for visitors. By defining a Web login page on the Amigopod Visitor Management using a Web login page is shown below. Amigopod 3.7 | Deployment Guide RADIUS Services | 59 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 60
your NAS vendor is not listed, or if you would prefer to customize all aspects of the Web login page, choose Custom Settings 60 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 61
(hostname or IP address only) must be entered in the Address field as no other entries are supported. When the Dynamic Address check box is selected, the NAS login can be performed using the controller's of the Vendor Settings you have chosen. Amigopod 3.7 | Deployment Guide RADIUS Services | 61 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 62
for the login attempt. Anonymous-This option supports two special usernames: _mac and underscore (_). When made before redirecting to the NAS login. Local -Match local account: Checks the entered username and password before redirecting to the NAS login Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 63
the supported password encryption methods. When Local - Match local account is selected, user accounts defined in Guest Manager will be permitted; user accounts defined in external authentication services will the look and feel of the login page. Amigopod 3.7 | Deployment Guide RADIUS Services | 63 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 64
displayed for the time specified in the Login Delay. The fifth section allows you to specify access controls for the Web login page. 64 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 65
NAS may supply additional parameters when redirecting the user to the Web login page. These are supported and will be passed back to the NAS along with the variables that are defined as part This might result in the following redirection URL: Amigopod 3.7 | Deployment Guide RADIUS Services | 65 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 66
a different page that does not include the parameters in the URL. To access the value of a remembered field called "wlan", use the syntax: 66 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 67
Web browser based authentication, this solution enables fully customized Web login experience to be developed and presented through the Amigopod portal options. Some examples of use cases for the browser the user to their configured home page. Amigopod 3.7 | Deployment Guide RADIUS Services | 67 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 68
sessions from a Mac OS X Lion (10.7) laptop, iPad and an iPhone. Figure 8 Captive Network Assistant on MacOS X Figure 9 Captive Network Assistant on iPad \ 68 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 69
these customer scenarios, Amigopod have developed a method of bypassing the display , testing of the Captive Network Assistant only supports HTTP. This recommended approach download from the following location: http://www.arubanetworks.com/vrd/ Amigopod 3.7 | Deployment Guide RADIUS Services - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 70
machine will no longer initiate the Captive Network Assistant and the user can launch their local browser manually as desired. Now that the devices are able to open the local browser, any attempt to profile configuration on the Aruba controller. 70 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 71
databases on the NAS server. The Amigopod RADIUS server uses a database to store the user accounts for authentication and other settings for the server. You can set up as many databases as you that you leave the default configuration unmodified. Amigopod 3.7 | Deployment Guide RADIUS Services | 71 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 72
. Use this tree view to define a new vendor, create a new vendor-specific attribute, or modify the list of values available for a particular attribute. 72 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 73
located under the More Options tab. These text files can be created by you or you can download them from a manufacturer who is not in the standard list. Export Dictionary You are able to options related to a particular vendor's equipment. Amigopod 3.7 | Deployment Guide RADIUS Services | 73 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 74
dictionary format by clicking the Export Vendor icon link. Vendor-Specific Attributes Vendor-specific attributes identify configuration items specific to that vendor's equipment. 74 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 75
Certain vendors in the dictionary have support for larger attribute values. If you want the attribute to appear in the active session views and on RADIUS accounting reports, check the Visible in Active with creating this vendor attribute. Amigopod 3.7 | Deployment Guide RADIUS Services | 75 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 76
be added to an attribute by clicking the attribute in the RADIUS dictionary list view and then clicking the Add Value icon link. 76 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 77
access control for both wired and wireless networks. Amigopod OS 2.1 and later supports EAP and 802.1X authentication. This authentication method requires EAP messages to be command links for server configuration and certificate management. Amigopod 3.7 | Deployment Guide RADIUS Services | 77 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 78
to configure OCSP options, see "Specifying Supported EAP Types". To create a server a server certificate, see "Exporting Server Certificates ". Specifying Supported EAP Types To enable the EAP-TLS, EAP-TTLS, specify the EAP types the RADIUS server will support, and the default EAP type, click - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 79
response. 3. If you selected EAP-TLS as one of the supported types, use the EAP-TLS Configuration area to configure status checks If you chose the manual option for certificate checks, in the OCSP Responder row, enter the URL of the service to be used to | Deployment Guide RADIUS Services | 79 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 80
and server certificates are installed on the RADIUS server. The CA root certificate is then downloaded for distribution to clients who will use this RADIUS server for authentication. To create a click the Continue button to proceed to Step 2. 80 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 81
, click the Create Server Certificate command link, then click the Request a certificate from another certificate authority link. The Server Certificate Request page opens. Amigopod 3.7 | Deployment Guide RADIUS Services | 81 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 82
Complete the details for the certificate, and click the Download Request button to save the certificate signing request. This signing request should be , private key (optionally encrypted with a passphrase), and the root certificate authority. 82 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 83
use this option to download the root certificate for the certificate authority. PEAP Sample Configuration To enable the common case of PEAPv0/MS-CHAPv2 (broadly supported by all wireless clients in the EAP Configuration form, as shown below: Amigopod 3.7 | Deployment Guide RADIUS Services | 83 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 84
use the default PKCS#7 container format. 6. Click the Download File button and a file named Amigopod Certificate Authority.p7b will be downloaded (the precise name depends on the common name for form: 1. Open the .p7b file from Windows Explorer: 84 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 85
2. Select the certificate in the list. Right-click it and choose Open: 3. Click the Install Certificate... button. The Certificate Import Wizard appears 4. Click Next. The Certificate Store form is displayed. Amigopod 3.7 | Deployment Guide RADIUS Services | 85 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 86
5. Click the Browse button to select the Trusted Root Certification Authorities store : 6. Click OK, and then click Next. The last page of the Certificate Import Wizard will be displayed. 86 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 87
root certificate, make sure that the CA is specified as a Trusted Root Certification Authority for the wireless network connection that is using PEAP. . Amigopod 3.7 | Deployment Guide RADIUS Services | 87 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 88
Active Directory Domain Services To perform certain a domain, or perform authentication tests for user accounts in the domain, use the Active Directory Services command link on the RADIUS > Active Directory Services page. The Join Active Directory Domain form is displayed. 88 | RADIUS - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 89
The process has built-in troubleshooting assistance, which can help with much of the necessary to the Active Directory domain then requires entering the username and password for a domain administrator account. Click the Join Domain button to complete the process. Once the domain has been joined - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 90
, click the Test Authentication command link account. To provide the domain credentials that will be used when authenticating via LDAP, click the Configure Active Directory authentication link on the RADIUS > Active Directory Services page . 90 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 91
Directory domain. See Active Directory Domain Services for more information. Types of External Authentication Server An authentication server may be one of five types: Local user database - User accounts defined in Amigopod Guest Manager. Amigopod 3.7 | Deployment Guide RADIUS Services | 91 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 92
domain controller. Both user and machine accounts may be authenticated. Additionally, support is provided for authenticating users with a a link is displayed at the top of the page. The Test Authentication option for a server may be used to check the RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 93
domain and authenticated by the domain controller. Both user and machine accounts may be authenticated. Additionally, support is provided for authenticating users with a supplied username of either to authenticate users against the directory Amigopod 3.7 | Deployment Guide RADIUS Services | 93 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 94
example, DC=example,DC=com) in order to authenticate both user and machine accounts. Advanced Options - additional options controlling authentication against the directory. The following advanced Directory "Remote Access Permission" setting. 94 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 95
To authorize all users in Active Directory, regardless of the individual user account settings for remote access permission, use the following settings: access_attr = The number of concurrent connections to make to the LDAP server. timeout = 4 Amigopod 3.7 | Deployment Guide RADIUS Services | 95 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 96
." prefix. Configuring an LDAP External Authentication Server For LDAP external authentication servers, the following fields are displayed in the Edit Authentication Server form. 96 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 97
secure connection - this option, when it is supported by the LDAP server, allows a standard LDAP connection on port 389 to be upgraded to a connection supporting TLS. Use TLS to connect securely - with this attribute value in the directory. Amigopod 3.7 | Deployment Guide RADIUS Services | 97 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 98
For information about additional LDAP configuration options, including enabling Novell eDirectory support, see "LDAP Module Configuration" in the Reference chapter. The following fields are displayed in the Edit Authentication Server form. 98 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 99
Use the common name of the certificate to match a local user account Assign a fixed user role (Contractor, Employee, or Guest) Use on testing a Local Certificate Authority authentication server, see "Testing External this chapter. Amigopod 3.7 | Deployment Guide RADIUS Services | 99 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 100
Use the common name of the client certificate to match a local user account may be specified for users authenticated via EAP-TLS on a client's role (Advanced) may be used to control the mapping between the user account returned by an external authentication server and the RADIUS user role. The - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 101
account) Each server's authorization method can be configured. The authorization methods available vary according to the type of authentication server: No authorization - Authenticate only may be used to provide a basic user authentication service 3.7 | Deployment Guide RADIUS Services | 101 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 102
To use the diagnostic, navigate to RADIUS Services > Server Control and click the Test RADIUS Authentication command link. Enter the account, as well as taking into account other factors such as the time of day, previous usage, and more. 102 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 103
to be mapped to a specific RADIUS role ID. To determine the appropriate role ID, navigate to RADIUS Services > User Roles and check the ID column for the appropriate role. For example, to implement the following , and an appropriate role ID is Amigopod 3.7 | Deployment Guide RADIUS Services | 103 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 104
form. Testing a Local Certificate Authority External Authentication Server For Local Certificate Authority external authentication servers, additional testing options are included to simulate EAP-TLS authentication with a client certificate. 104 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 105
1. To specify the network layer to test against, mark the radio button in the Mode row for either the local RADIUS server or a remote RADIUS the client certificate. This must be a base-64 encoded (PEM) or binary encoded (DER) certificate. Amigopod 3.7 | Deployment Guide RADIUS Services | 105 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 106
for the network settings, outer authentication, and inner authentication, click the Run Test button. Managing Certificates for External Authentication Servers Use the Certificates command link on be established, the connection will fail. 106 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 107
information about the certificate. Export Certificate - download the certificate in one of several different formats form to specify a certificate file to upload. The supported formats for digital certificates are: Binary X.509 certificate 3.7 | Deployment Guide RADIUS Services | 107 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 108
108 | RADIUS Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 109
allow you to create guest accounts as well as print reports. What your profile permits is determined by the network administrator. Two types of operator logins are supported: local operators and operators process is shown in the figure below. Amigopod 3.7 | Deployment Guide Operator Logins | 109 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 110
Some of the settings in an operator profile may be overridden in a specific operator's account settings. These customized settings will take precedence over the default values defined in the operator , which are described in more detail below. 110 | Operator Logins Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 111
select the appropriate permissions for this operator profile. For each permission, you may grant No Access, Read Only Access, Full Access, or Custom Amigopod 3.7 | Deployment Guide Operator Logins | 111 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 112
is useful in large deployments where an operator only wants to have a filtered view of some accounts. To create an account filter, enter a comma-delimited list of field-value pairs. Supported operators are described below. The Session Filter field lets you create a filter for only that session - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 113
Table 10 Operators supported in filters Operator Meaning Additional ). For example, specifying the filter "role_id=2|3, custom_field=Value" restricts the user accounts displayed to those with role IDs 2 and 3 (Guest and Employee), and list. Amigopod 3.7 | Deployment Guide Operator Logins | 113 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 114
Customization row, to specify that an operator profile should use a different form when creating a new visitor account, select the Override the application's forms and views check box. The form expands to show the forms and appear on the menu. 114 | Operator Logins Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 115
accounts Creating multiple guest accounts Creating new guest accounts Editing multiple guest accounts Exporting guest account data Full user control of guest accounts Importing guest accounts Listing guest accounts Appliance. Amigopod 3.7 | Deployment Guide Operator Logins | 115 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 116
operator profile. The Operator Filter field lets you select from three other options besides Default: No operator filter-All guest accounts display. Only show accounts created by the operator-Only guest accounts created by the operator display. 116 | Operator Logins Amigopod 3.7 | Deployment - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 117
operators to only have a filtered view of some accounts. To create an account filter, enter a comma-delimited list of field-value pairs. Supported operators are described below. The Session Filter the List All Operator Logins command link. Amigopod 3.7 | Deployment Guide Operator Logins | 117 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 118
actions for each Show Usage-adds a list of the number of logins and operator servers currently using the selected profile 118 | Operator Logins Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 119
LDAP. Only authentication is supported. Manage LDAP Servers Aruba Amigopod supports a flexible authentication mechanism that is queried for the attributes associated with the user account. These LDAP attributes are then translated to Amigopod Amigopod 3.7 | Deployment Guide Operator Logins | 119 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 120
types of LDAP URL you may specify. Select the Enabled option if you want this server to authenticate operator logins. 120 | Operator Logins Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 121
address of the RADIUS server. Port Number: The port number of the RADIUS authentication service. Shared Secret: The shared secret for the RADIUS server. Authentication Method: The authentication to verify that this plugin is available. Amigopod 3.7 | Deployment Guide Operator Logins | 121 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 122
check your settings by clicking the Test Settings button. Use the Test Username and Test Password fields to supply a username Operator Server Troubleshooting" in this chapter for information about common error messages and troubleshooting steps to diagnose the problem. Click 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 123
on the Edit Authentication Server page. LDAP Operator Server Troubleshooting You can use the LDAP Operator Servers list to troubleshoot network connectivity, operator authentication, and to look up operator usernames. Testing Connectivity To test network connectivity between an LDAP server and the - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 124
Test Server table, then click the Test Lookup link. The Test Operator Lookup area is added to test. The Authentication Test area is added above the server names to indicate the search's progress. Troubleshooting Account is disabled Account has expired 124 | Operator Logins Amigopod 3.7 | Deployment - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 125
Messages (Continued) 773 User must reset password 775 User account is locked Other items to consider when troubleshooting LDAP connection problems: Verify that you are using the correct LDAP version Create new LDAP translation rule link. Amigopod 3.7 | Deployment Guide Operator Logins | 125 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 126
to save your rule settings. The Administrator > Operator Logins > LDAP Translation Rules window shows a list of all configured translation rules. 126 | Operator Logins Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 127
Syntax" in the Reference chapter. These may be used to make programmatic decisions based on the LDAP attribute values available at login time. Amigopod 3.7 | Deployment Guide Operator Logins | 127 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 128
be enabled. If neither condition has matched, the "enabled" field will be set to 0 and login will not be permitted. 128 | Operator Logins Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 129
brugernavn og password for at få adgang til Amigopod Kontakt Airwire (Norden) for at få demoadgang {elseif $current_language == 'es'} Amigopod 3.7 | Deployment Guide Operator Logins | 129 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 130
secure form of password; this is the default and recommended setting. A minimum password length of at least 8 characters is recommended. 130 | Operator Logins Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 131
in hours. You can use fractional numbers for values less than an hour; for example, use 0.25 to specify a 15 minute idle timeout. Amigopod 3.7 | Deployment Guide Operator Logins | 131 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 132
132 | Operator Logins Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 133
Management Appliance. Guest Manager provides complete control over the user account creation process. Using the built-in customization editor you can - either by your operators provisioning guest accounts, or by the guests self-provisioning their own accounts. Both of these processes are described - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 134
, where the guest creates a new account. At the conclusion of the registration process, the guest is automatically redirected to the NAS to log in. The guest can print or download a receipt, or have the receipt then able to access the network. 134 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 135
registration Creating and editing print templates Creating a Guest Account The New Visitor Account form is used to create a new visitor account. This form (create_user) may be customized by adding settings for this form are described below. Amigopod 3.7 | Deployment Guide Guest Management | 135 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 136
username to log into the network. You can specify the account activation and expiration times. The visitor account cannot be used before the activation time, or after the expiration time. The Account Role specifies what type of account the visitor should have. A random password is created for each - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 137
Sending SMS receipts requires the SMS Services plugin. If the administrator has enabled automatic SMS, and the visitor's phone number was typed into the New Visitor Account form, an SMS message will settings for this form are described below. Amigopod 3.7 | Deployment Guide Guest Management | 137 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 138
the Print dialog box will be displayed. To download a copy of the receipt information in CSV format, click the Save list for scratch cards (CSV file) link. The fields available in the CSV file are: Number - the sequential number of the visitor account, starting at one Username - the username for - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 139
that have been created. The value in the Expiration column is colored red if the account will expire within the next 24 hours. The expiration time is additionally highlighted in boldface if the account will expire within the next hour. Amigopod 3.7 | Deployment Guide Guest Management | 139 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 140
Table 15 Operators supported in filters Operator =Value" restricts the accounts displayed to those with account. Use the Create tab to create new visitor accounts using the New Visitor Account form. See "Creating a Guest Account accounts and the ability to customize the view. Click a user account - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 141
the Enable Account button to set the new activation time for the guest account. A new account receipt is then displayed, which allows you to print a receipt showing the updated account details. Edit - Changes the properties of a guest account. Amigopod 3.7 | Deployment Guide Guest Management - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 142
recover a forgotten or lost guest account password, use the Reset password link. Managing Multiple Guest Accounts Use the Edit Accounts list view to work with multiple guest accounts. This view may be accessed by this view are described below. 142 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 143
include the following operators: Table 16 Operators supported in filters Operator Meaning Additional Information = the filter "role_id=2|3, custom_field=Value" restricts the accounts displayed to those with role IDs 2 and select guest accounts, click the accounts you want to work with. You - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 144
be automatically selected after you have made changes to one or more guest accounts. You can create new guest account receipts or download the updated guest account information. See "Creating Multiple Guest Account Receipts" in this chapter for more information. The More Options tab includes the - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 145
data. In step 2 of 3, Amigopod determines the format of the uploaded account data and matches the appropriate fields are m to the data. The first few records in the data will be displayed, together with any automatically detected field names. Amigopod 3.7 | Deployment Guide Guest Management | 145 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 146
automatically detected in the data: Use the Match Fields form to identify which guest account fields are present in the imported data. You can also specify the values to from that column when importing guest accounts, or select one of the other available options to use a fixed value for each imported - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 147
the import process. The selected items will be created or updated. You can then print new guest account receipts or download a list of the guest accounts. See "Creating Multiple Guest Account Receipts" in this chapter for more information. Amigopod 3.7 | Deployment Guide Guest Management | 147 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 148
list of all guest accounts in comma-separated values account Username - Username for the guest account Role - Role for the guest account Activation - Date and time at which the guest account name as the guest account field. An example XML account own temporary visitor accounts. Visitor surveys - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 149
advertising. Default Settings for Account Creation The Guest Manager plugin configuration holds the default settings for account creation. These settings can - The default method used to generate random account usernames (when creating groups of accounts). This may be overridden by using the - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 150
Password Complexity - The policy to enforce when guests change their account passwords using the guest self-service user interface. Different levels of password complexity can require guests to be created by the random words password generator. 150 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 151
Account Retention - Deleted user accounts are available for reporting purposes. The default value is 1 year after the user account is 0. If you want to view deleted accounts in a list view or report, add Options - Default values for relative account expiration times. These options are displayed as - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 152
Password Logging - By default, the passwords for created guest accounts are logged in the application log and may be recovered from there. For increased security, you may prevent this password from being logged by unselecting this check box. 152 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 153
drop-down list of print templates and a Print link that must be clicked to display the account receipt: About Guest Network Access - Allows the text displayed to operators on the Guest and random_username_length fields). Amigopod 3.7 | Deployment Guide Guest Management | 153 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 154
the visitor account and the visitor account and may account is not created. simultaneous_use account account account account will be activated. If modify_schedule_time is "none", then the account then the visitor account's activation time visitor account's activation account has no activation - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 155
of "do_expire" Meaning 0 Account will not expire 1 Disable 2 Disable and logout 3 Delete 4 Delete and logout "Disable" indicates that the enabled field will be set to 0, which will prevent further authorizations using this account. Amigopod 3.7 | Deployment Guide Guest Management | 155 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 156
all active sessions that have a username matching the account username. This option requires the NAS to support RFC 3576 dynamic authorization. See "RFC 3576 Dynamic Authorization Form Form Create Account Edit Account Export Accounts Edit Multiple Accounts Edit Multiple Accounts Print Receipt Guest - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 157
for areas of interest to your organization. You are able to define custom fields for your guest accounts as well as edit the existing fields. In addition you can delete and duplicate fields. For your all fields, click the All Fields link. Amigopod 3.7 | Deployment Guide Guest Management | 157 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 158
adding the field to a form. See "View Field Editor" in this chapter for a list of the available user interface types. 158 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 159
Views that Use a Field You are able to click the Show Views link to see a list of views that use the selected field. Amigopod 3.7 | Deployment Guide Guest Management | 159 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 160
-Based Access Control for Multiple Operator Profiles" in the Operator Logins chapter for a description. This enables you to provide different views of the underlying visitor accounts in the database depending on the operator's profile. 160 | Guest Management Amigopod 3.7 | Deployment - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 161
copy. A duplicated item cannot be removed if it is referenced by an operator login account or an operator profile. Editing Forms To add a new field to a form, reorder This preview form can be submitted to test the field validation rules you have defined. If all fields are able to be - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 162
this value will cause a diagnostic message to be displayed ("Form element is missing the 'ui' element") when using the form. 162 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 163
boxes may be selected. This user interface type submits an array of values containing the option key values of each selected check box. Amigopod 3.7 | Deployment Guide Guest Management | 163 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 164
. When using these options, you may also specify the desired number of columns or rows to adjust the layout appropriately. 164 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 165
a date/time picker, you should validate the field value to ensure it is a date. Certain guest account fields, such as expire_time and schedule_time, require a date/time value to be provided as a UNIX time a list with only a single item in it. Amigopod 3.7 | Deployment Guide Guest Management | 165 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 166
File uploads cannot be stored in a custom field. This user interface type requires special form implementation support and is not recommended for use in custom fields. Hidden field - If Hidden Field is Value option in the form field editor. 166 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 167
Password text field - The field is displayed as a text field, with input from the user obscured. The text typed in this field is submitted as the value for the field. Amigopod 3.7 | Deployment Guide Guest Management | 167 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 168
Hide when no options are selectable check box is selected, the field will be hidden if its value is blank. 168 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 169
editor. If the Hide when no options are selectable check box is selected, the field will be hidden if its value is blank. Amigopod 3.7 | Deployment Guide Guest Management | 169 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 170
should ensure that the submit button has the highest rank number and is displayed at the bottom of the form. 170 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 171
is submitted as the value for the field. A short text label may be placed after the text box using the Label After option. Amigopod 3.7 | Deployment Guide Guest Management | 171 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 172
to the user by highlighting the field(s) that are in error and displaying the validation error message with the field: 172 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 173
the argument to the validator. The Validator Argument is used to provide further instructions to the selected validator. Not all validators require an argument; a validator enter an invalid value will now receive a validation error message: Amigopod 3.7 | Deployment Guide Guest Management | 173 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 174
be written to perform this validation task. See "Regular Expressions" in the Reference chapter for more information about regular expressions. 174 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 175
to security, such as role ID or expiration date. For pre-registered guest accounts, some fields may be completed during pre-registration and some fields may be a value was not provided for a field when the account was created, choose Field was not preregistered from the drop-down list. Amigopod - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 176
case or all characters, choose Guest must supply field from the drop-down list. For example, a bulk account creation might use random usernames, and each visitor's entry in that field would not need to match exactly in form field processing . 176 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 177
form field displayed as a date/time picker, such as the expire_time field used to specify an account expiration time on the create_user form. The user interface is displayed as a text field, but the data conversion before the form processing. Amigopod 3.7 | Deployment Guide Guest Management | 177 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 178
, to access the current value of a text field named sample_field in a JavaScript expression, you would use the code sample_field.value. 178 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 179
Most user interface elements support the value property to some other related field has been selected. For example, the default create_user form has an Account Expiry drop-down list. One of the values in this list is special: the -1 view. Amigopod 3.7 | Deployment Guide Guest Management | 179 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 180
as HTML. Boolean - Yes/No - The value of the field is converted to Boolean and displayed as "Yes" or "No". 180 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 181
rules can be defined with the custom form editor. Specific details about the type of visitor accounts created are also set here. The receipt page also includes a form, although typically this form process is shown as follows. See Figure 23. Amigopod 3.7 | Deployment Guide Guest Management | 181 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 182
After submitting the registration form [3], the guest account is created and the receipt page is displayed [4] with the details of the guest account. If NAS login is enabled, submitting the form Customize Guest Registration form is displayed. 182 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 183
-Registration 2. Select an entry in the Guest Self-Registration list, then click Edit. 3. The Customize Guest Registration workflow page appears, as shown below Amigopod 3.7 | Deployment Guide Guest Management | 183 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 184
registrations. You can always override parent page vaules by editing field values yourself. To create a self-registration page with new 184 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 185
an operator to log in with their credentials before they can create a new guest account, select the Require operator credentials prior to registering guest check box. The sponsor's operator , using the following syntax: 1.2.3.4 - IP address Amigopod 3.7 | Deployment Guide Guest Management | 185 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 186
the registration page: 1. Navigate to Customization > Guest Self-Registration 2. Select and edit an entry in the Guest Self-Registration list 186 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 187
the network. The expire_after field is hidden, and set to a value of 24 by default; this sets the default expiration time for a self-registered visitor account to be 1 day after it was created. The role_id field is hidden, and set to a value of 2 by default; this sets the default role for - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 188
visitor who registers again with the same email address has their existing account automatically updated. Receipt Page Properties Click the Receipt Page link or receipt page. This page is shown to guests after their visitor account has been created. Click the Save Changes button to return to the - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 189
to edit the actions that are available once a visitor account has been created. . Download and Print Actions Select the Download or Print check box to enable the template and display options to deliver a receipt to the user as a downloadable file, or display the receipt in a printable window in - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 190
the print template to use, the field containing the visitor's phone number, and the name of an auto-send field. 190 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 191
the lower right corner of the Customize Guest Registration. The NAS Login form opens. Mark the Enabled check box to expand the form. Amigopod 3.7 | Deployment Guide Guest Management | 191 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 192
fields, or URL redirection parameters, See "Creating a Web Login Page" in the RADIUS Services chapter. Login Page Properties Click the Title or Login Message fields for the login page Web Login Page" in the RADIUS Services chapter for a description. 192 | Guest Management Amigopod 3.7 | Deployment - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 193
, for which the login message page is displayed. Click the Save Changes button to return to the process diagram for self-registration. Self-Service Portal Properties Click the Self-Service Portal link or one of the Login Page, Summary Page, Change Password or Reset Password links for the Self - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 194
When the self-service portal is enabled, account details, view their account account service portal. The behavioral properties of the self-service portal are described below: The "Enable self-service a user account that has been forgotten account password service portal will be automatically logged in if - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 195
will be randomly generated", but the alternative option "Manually enter passwords" may be selected to enable guests to Service Portal The self-service portal includes the ability to reset a guest account's password. The default user interface for the self-service Guide Guest Management | 195 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 196
Self-Service Portal Field" allows other fields of the visitor account to be checked. These fields should the format and appearance of a guest account receipt. The Print Templates menu item is be used with SMS services to send guest account receipts; See "About SMS Guest Account Receipts" in this - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 197
following code could be used: {if $action == "create"} Your guest account has been created and is now ready to use! {if $site_ssid action == "edit"} Your guest account has been updated. {elseif $action == "delete"} {/if} Amigopod 3.7 | Deployment Guide Guest Management | 197 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 198
td> {/if} If this code is placed in the User Account HTML section it will cater for the create, edit and delete options. Print real-time preview of the print template. Each of the basic styles provides support for a logo image, title area, subtitle area, notes area, and | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 199
used, edited, duplicated, or deleted. Visible-only access - the print template is visible in the list, but cannot be edited, duplicated, or deleted. Amigopod 3.7 | Deployment Guide Guest Management | 199 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 200
how to configure the Guest Manager to create multiple accounts that have the ability to log in in the following plugin versions: Amigopod RADIUS Services 3.0.4 or later, and GuestManager Plugin Configure other settings. See "Default Settings for Account Creation" in this chapter for a description, - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 201
Name field, substitute Access Code for Username as shown below. 5. Remove extraneous data from the User Account HTML field. Example text is shown below. - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 202
Guest Accounts Form Next, modify the Guest Accounts form to refresh. The defaults should be acceptable, but feel free to customize the label or description. 4. Click Save Changes Access Code Guest Accounts Once the account fields have been customized, you can create new accounts. 1. Navigate to - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 203
denied.) The example shown below will create 10 accounts that will expire in two weeks, or fours hours after the visitors first log comes first. . 3. Click Create Accounts to display the Finished Creating Guest Accounts page. If you create large number of accounts are created at one time they may - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 204
4. Confirm that the accounts settings are as you expected with 112233AABBCC 11:22:33:aa:bb:cc 11-22-33-AA-BB-CC Amigopod supports adjusting the expected format of a MAC address. To configure formatting of separators and case in the opens. 204 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 205
Authentication Profile Managing Devices To view the list of current MAC devices, go to Guests > List Devices. The Guest Manager Devices page opens. Amigopod 3.7 | Deployment Guide Guest Management | 205 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 206
are listed. Options on the form let you change a device's account expiration date; remove, activate, or edit the device; view search, and you can include the following operators: Table 19 Operators supported in filters Operator Meaning Additional Information = is equal to != Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 207
-down list. If you choose Account Expires at a specified time, the expire" or "now" in the Account Expiration field, the Expire Action row Account to commit your changes. Disabling and Deleting Devices To remove a device's account Account form. You may choose to either disable or delete the account - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 208
minutes, then click a day to select the date. 3. Click Enable Account to commit your changes. Editing a Device To edit a device's account, click the device's row in the Guest Manager Devices list, then click for the MAC Authentication Plugin. 208 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 209
Account Activation dropdown list. You may choose to activate the account Account Expiration dropdown list. You may terminate the account account-either delete Account Expiration row. If you choose Account Account Expires Account Lifetime drop-down list. The visitor's account account Account account. To - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 210
device accounts may be created in three ways: Manually in manually. Go to Guests > List Devices and click the Create link, or you can go to the Guests navigation page and click the Create Device command. The New MAC Authentication page opens. 210 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 211
the MAC Authentication Plugin. 4. Choose one of the options in the Account Activation drop-down list. You may choose to activate the account immediately, at a preset interval of hours or days, at a specified then click a day to select the date. Amigopod 3.7 | Deployment Guide Guest Management | 211 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 212
the drop-down list. The maximum is two weeks. If you choose Account Expires at a specified time, the Expiration Time row is added to the passing a mac parameter in the redirect URL. Amigopod does not support querying the controller or DHCP servers for the client's MAC based 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 213
the visitor account. These accounts share the same role, expiration and other properties. This requires a vendor passing a mac parameter in the redirect URL. Amigopod does not support querying the registration form fields: Add or enable mac Amigopod 3.7 | Deployment Guide Guest Management | 213 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 214
deleted. If RFC3576 has been configured, all pairs will be logged out. Accounting-Based MAC Authentication Accounting-based MAC authentication is a way to cache the MAC used during an initial && NwaDynamicLoad('NwaCreateUser') // Required call 214 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 215
mac'=>$mac, // The normalized MAC 'mac_auth_pair'=>$user['id'], // Formally pair the two accounts. Cross links and whatnot in the GUI. A number of data items synched //' (), // initialize the creation time 'auto_update_account'=>1))) ) && 0; Amigopod 3.7 | Deployment Guide Guest Management | 215 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 216
Figure 28 RADIUS Role Editor Note that modify_expire_time supports any valid syntax of strtotime. 216 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 217
Devices The standard Guests > Import Guests supports importing MAC devices. At a minimum . When mac is enabled in a self-registration it will be included in the account as long as mac is passed in the URL. Relying on self-registration may Amigopod 3.7 | Deployment Guide Guest Management | 217 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 218
scenario, you could have people create an account, with a paired MAC, yet still have Conditions confirmation Set the Web login as your landing page and test. Using a registered device the 'Log In' button should be your NAS equipment has RFC 3576 support, the RADIUS dynamic authorization extensions - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 219
list, or delete fields from it, click the More Options tab. The Customize View Fields page opens. For more information, see "Editing Forms". Amigopod 3.7 | Deployment Guide Guest Management | 219 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 220
one of three possible states: Active-An active session is one for which the RADIUS server has received an accounting start message and has not received a stop message, which indicates that service is being provided by a NAS on behalf of an authorized client. While a session is in progress, the NAS - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 221
you can include the following operators: Table 20 Operators supported in filters Operator Meaning Additional Information = is equal to , specifying the filter "role_id=2|3, custom_field=Value" restricts the accounts displayed to those with role IDs 2 and 3 (Guest Guide Guest Management | 221 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 222
you to quickly close all stale sessions with one click. Stale sessions should be closed to keep accounting statistics accurate. To close all stale sessions, leave the Close Stale Sessions radio button marked plus the elapsed session time. 222 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 223
sessions by time range from the drop-down list. The form expands to also include rows for selecting the range of open sessions. Amigopod 3.7 | Deployment Guide Guest Management | 223 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 224
time. 7. Use the Session Stop drop-down list to specify how the stop time will be calculated for each session. 224 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 225
you specified. Disconnecting or Reauthorizing Active Sessions If the NAS equipment has RFC 3576 support, you can disconnect or dynamically reauthorize active sessions. 1. On the Manage Multiple specifying the time range of sessions to select. Amigopod 3.7 | Deployment Guide Guest Management | 225 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 226
Notification form opens. 2. Use the filter to specify the group of addresses that should receive the message. See Filtering the List of Active Sessions. Only accounts with valid phone numbers can be sent SMS alerts. 226 | Guest Management Amigopod 3.7 | Deployment - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 227
Services With SMS Services, you can configure the Amigopod Visitor Management Appliance to send SMS messages to guests. You can use SMS to send a customized guest account receipt to your guest's mobile phone. You are also able to use SMS Services have the SMS Services plugin installed. - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 228
create a new SMS gateway, click the Create new SMS gateway link to display the SMS Service Configuration form. If your country uses a national dialing prefix such as "0", you may enter command link on the Administrator > SMS Services page. 228 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 229
. To adjust the warning threshold, set the Credit Warning value in the configuration for the SMS Services Plugin. About SMS Guest Account Receipts You can send SMS receipts for guest accounts that are created using either sponsored guest access or selfprovisioned guest access. This is convenient in - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 230
demand. To manually send an SMS receipt, navigate to the Guests > List Accounts window, select Send SMS receipt link displayed on the guest account receipt page. When using guest self-registration, details. SMS Receipt Options The SMS Services plugin configuration allows you to configure options - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 231
Figure 29 Configure SMS Services Plugin SMS Receipt - Select the print template to be used when an SMS receipt is created. The print template used for the receipt must be in plain text format. Phone Number Field - Select which guest account field contains the guest's mobile telephone number. This - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 232
Amigopod SMS services support Amigopod SMS USA, Amigopod SMS Worldwide, AQL, Sirocco, Tempos 21 and Upside Wireless SMS gateways. SMS via SMTP - Select this option to allow visitor account receipt messages page for further customization. 232 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 233
of SMS receipt operations can be customized with certain guest account fields. You can override global settings by setting these fields sms_handler_id - This field specifies the handler ID for the SMS service provider. If blank or unset, the default value from the SMS Guide Guest Management | 233 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 234
it to the specified phone number. SMTP Services With SMTP Services, you can configure the Amigopod Visitor Management Appliance to send customized guest account receipts to visitors and sponsors by email. Email send receipts only on demand. 234 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 235
Email receipts may be sent manually by clicking the Send email receipt link displayed on the guest account receipt page. When using guest self-registration, the Email Delivery options of email addresses specified in the "Copies To" field. Amigopod 3.7 | Deployment Guide Guest Management | 235 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 236
Receipt page The Subject line may contain template code, including references to guest account fields. The default value, Visitor account receipt for {$email}, uses the value of the email field. See "Smarty specifies how these copies are sent: 236 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 237
To list will be copied. Use 'bcc:' if sending to a visitor - If a guest account email address is available, the email addresses in the Copies To list will be blind copied. Figure 32 new configuration settings will take effect immediately. Amigopod 3.7 | Deployment Guide Guest Management | 237 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 238
Determine the email recipients: Address the email to the value specified by the email field in the visitor account. If the email field is "_None" then do not send an email directly to the visitor. Depending receipt configuration is used. 238 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 239
This overrides the list of additional email addresses that receive a copy of the visitor account receipt under Logout Warnings on the email receipt.If the value is "default", the default Warnings from the email receipt configuration is used. Amigopod 3.7 | Deployment Guide Guest Management | 239 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 240
240 | Guest Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 241
the visitor accounts that have been created and analyze the accounting data average link utilization for all accounting traffic in the selected period the average traffic volume from accounting traffic per unique user per day average daily link utilization for accounting traffic in the selected period - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 242
not available for reports that require user interaction. To print the report, click the Print icon in your Web browser. 242 | Report Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 243
chapter for more details. You can change the defaults for your report in the Report Editor window by selecting the Report Type link. Amigopod 3.7 | Deployment Guide Report Management | 243 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 244
be set using this item. The permissions for the selected entity can be set using the Permissions drop-down list: 244 | Report Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 245
changed when you have Full Access, but this also requires that you have the Administrator > Object Permissions privilege set in your operator profile. Amigopod 3.7 | Deployment Guide Report Management | 245 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 246
the check boxes to select the reports to export. If you select the Download file option, clicking the Export Reports button will download the selected report definitions to your Web browser. Otherwise, if the View used to create the reports. 246 | Report Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 247
default settings. To restore the default settings for one or more reports, select the reports to reset and click the Reset Reports button. Amigopod 3.7 | Deployment Guide Report Management | 247 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 248
to use bins and groups will allow you to classify related data records and extract statistics of interest from them. 248 | Report Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 249
sessions, reported by NAS devices to the Amigopod Visitor Management Appliance. In the RADIUS Accounting data source, each data record corresponds to a single visitor session. The data in an hour, GMT - 8 makes the offset 28800 (3600 * 8). Amigopod 3.7 | Deployment Guide Report Management | 249 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 250
may be created using the report editor. See "Groups" in this chapter for a list of the available group classification methods. 250 | Report Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 251
report using the Report Editor (shown above), start at the top left and go clockwise, following the arrows, until you have a final report. Amigopod 3.7 | Deployment Guide Report Management | 251 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 252
. You can add additional information in the Description field. This could be used to explain the purpose of the report. 252 | Report Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 253
output filters (range, match and list values) Properties for classification methods (bin size and offset) Properties for output series (limit and remainder category) Amigopod 3.7 | Deployment Guide Report Management | 253 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 254
. If the parameter should have a user interface, the Edit Parameter form will be displayed after clicking the Create Parameter button. 254 | Report Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 255
with information about a specific username, you could define a parameter in_username that presents a text field to the operator, as shown in the figure below. Amigopod 3.7 | Deployment Guide Report Management | 255 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 256
report; you must specify how to classify and format the data before it can be displayed in the generated report. 256 | Report Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 257
data source fields or derived fields. A derived field is one that can be calculated for each data record selected from the data source. Amigopod 3.7 | Deployment Guide Report Management | 257 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 258
to give the field a value. This can be by calculating a value using a PHP expression entered in the Field Expression box. 258 | Report Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 259
in a list. As one of the selected fields is a date/time field, this is automatically set as the first source filter for you. Amigopod 3.7 | Deployment Guide Report Management | 259 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 260
of the fields that you previously created in the Data Source or the Select Fields sections of the Report Editor. 260 | Report Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 261
rather than a bin classification, because the set of possible values is fixed. See "Groups" in this chapter for more information about group classifications. Amigopod 3.7 | Deployment Guide Report Management | 261 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 262
the start and stop numbers, inclusive of the endpoints of the range. The bin offset is used to account for time zones. See "Binning Example - Time Measurements" in this chapter for a description. Discrete for the specified source field. 262 | Report Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 263
that fall within the same day are assigned the same bin number. The bin offset is used to account for time zones as explained in the . Time measurement: bin by hours - This bin classification method of the report as for the statistics. Amigopod 3.7 | Deployment Guide Report Management | 263 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 264
classification group is calculated Maximum value - the maximum value of the source field over the selected classification group is calculated 264 | Report Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 265
Minimum value - the minimum value of the statistic field over the selected report dimension is calculated Multiply (value 1 × value 2) - the values are multiplied Amigopod 3.7 | Deployment Guide Report Management | 265 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 266
Series tab at the top of the Edit Output Series list view to create an output series in the report. 266 | Report Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 267
of non-included items check box to add a "remainder" row to the output series that summarizes all the remaining items in a single entry. Amigopod 3.7 | Deployment Guide Report Management | 267 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 268
report's output. Output filters are of three basic kinds: Range filters check to see if a value falls within a certain range. 268 | Report Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 269
, the item will always be included in the output. No further filters will be applied to the data once this filter has matched. Amigopod 3.7 | Deployment Guide Report Management | 269 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 270
in reports where the HTML output format is selected. Charts are not supported in CSV or plain text reports. The chart is displayed within a styles, font size, axis formatting options, and more. Different types of chart are supported, including: Line Pie Pie 3-D Column Stacked Column - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 271
used as the values to display on the chart. The Pie and Pie 3-D charts support only a single data point for each category value. A pie chart is used to the Reference chapter for details about the template syntax that is supported. The default reports include a standard header block for generated - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 272
report editor may then be used to further customize the report by defining new filters, classification groups and output series. 272 | Report Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 273
series and presentation blocks to generate summarized data of interest to you. Click the Save Changes button to continue to the Report Editor. Amigopod 3.7 | Deployment Guide Report Management | 273 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 274
to return to the Report Editor. Click Final Report to run the report and verify the changes you have made. 274 | Report Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 275
is Today and select an Output Format. These changes are shown in the screen below. 5. Click the Continue button to move to Step 2. Amigopod 3.7 | Deployment Guide Report Management | 275 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 276
the Final Report option in the Report Editor you can see the report as it is after these two steps. 276 | Report Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 277
in the report. You may also want to alter the field description. 10. Click the total_users field and then click the Edit link. Amigopod 3.7 | Deployment Guide Report Management | 277 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 278
. 19. Click the Save Changes button at the bottom of the window to save the changes to the output series. 278 | Report Management Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 279
the Final Report icon to preview your new report. Report Troubleshooting Report Preview with Debugging If you are experiencing problems with your report, you can receive help with the /* bin 0 */ array ( 123 => /* bin value: 123 */ array ( Amigopod 3.7 | Deployment Guide Report Management | 279 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 280
=> /* bin 1 */ ... ) Troubleshooting Tips The following tips may be useful to you when developing new reports. Draw a diagram - the report. Reduce amount of data - When developing a new report, you may find the process editor. This will allow you to develop the basic structure of the report. - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 281
left menu. A summary of the system's current network configuration is displayed on the Network Setup page, and the results of the network connectivity test are shown below the summary. Additional commands on the Network Setup page let you navigate to various network configuration tasks. Amigopod - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 282
Setup, HTTP Proxy, Network Diagnostics, or Network Interfaces page, an automatic network connectivity test determines the current status of the network, and the results of the diagnostic are displayed. The problems that can be detected with this built-in diagnostic include: No default gateway set - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 283
of a network interface, including IP address, DNS settings, or Ethernet settings. See "Changing Network Interface Settings" in the Adminstrator Tasks chapter for details. Amigopod 3.7 | Deployment Guide Administrator Tasks | 283 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 284
and MGT network interfaces may be configured for automatic settings using DHCP or BOOTP, or can be manually configured for an IP address. When you choose one of these settings from the Configuration drop-down provided by the DHCP server. 284 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 285
To specify an IP address for the network interface, select Manually configure IP address. The following form is displayed for IP address details. The MTU field , full duplex 100 Mbit, full or half duplex 10 Mbit, full or half duplex Amigopod 3.7 | Deployment Guide Administrator Tasks | 285 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 286
with the specified settings. The new settings will be tested and the results of the test displayed. If DNS name resolution is not working, for the network interface. If you are assigning network addresses manually, check that you have provided the correct DNS server addresses 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 287
routing entry. Click Delete to remove a routing entry. Click Test Gateway to verify that the gateway IP address is reachable via a Tunnel Network Interface The Amigopod Visitor Management Appliance supports creating a generic routing encapsulation (GRE) tunnel. This Guide Administrator Tasks | 287 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 288
a VLAN Interface Navigate to Administrator > Network Setup > Network Interfaces to view the list of interfaces currently configured on the system. 288 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 289
interface with the corresponding VLAN identifier. Your network infrastructure must support tagged 802.1Q packets on the physical interface selected. as a physical network interface. Refer to the Amigopod Deployment Guide or the online help for additional details about setting the properties - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 290
interface with the specified IP address. The network interface will appear in the list and will be automatically brought up. 290 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 291
line, using the following syntax: 1.2.3.4 - IP address 1.2.3.4/24 - IP address with network prefix length 1.2.3.4/255.255.255.0 - IP address with explicit network mask Amigopod 3.7 | Deployment Guide Administrator Tasks | 291 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 292
of your network's configuration. To view these tools, navigate to Administrator > Network Setup, then click the Network Diagnostics command link. 292 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 293
test connectivity using an ICMP echo request. The test will take approximately 5 seconds to run. Ping URL - Enter a URL to test connectivity using a HTTP request. Only the headers for the specified Internet resource are retrieved. This test username and password to test the results of a RADIUS - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 294
Enter a hostname or IP address to determine the route that packets traverse to that host. The test may take a considerable amount of time (30 seconds or more), depending on network conditions. Network the Administrator > Network Setup page. 294 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 295
capture operation. While packet capturing is in effect, the status of the packet capture is displayed as part of the Network Diagnostics form. Amigopod 3.7 | Deployment Guide Administrator Tasks | 295 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 296
capture has completed, the status is updated, and a link to Download packet capture file is available. Click this link to download a packet capture file, which may be analyzed using the Wireshark : IP_address canonical_hostname [aliases...] 296 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 297
a distributed network environment. To manage and view the current SNMP configuration click the SNMP Configuration command link on the Administrator > Network Setup page. Amigopod 3.7 | Deployment Guide Administrator Tasks | 297 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 298
"system" MIB parameters that are frequently used to identify network equipment. See "Supported MIBs" in this chapter for a list of supported MIBs. To restrict access to the SNMP server, a list of IP address guest access to the SNMP server. 298 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 299
to apply the new SNMP server settings. The settings will take effect immediately. Supported MIBs The SNMP server currently supports the following MIBs: DISMAN-EVENT-MIB HOST-RESOURCES-MIB IF-MIB SNMP-USER-BASED-SM-MIB SNMPv2-MIB Amigopod 3.7 | Deployment Guide Administrator Tasks | 299 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 300
the Administrator > Network Setup page. See "SMTP Services" in the Guest Management chapter for additional configuration options for SMTP services. The built-in Sendmail mail transfer agent may be your mail server requires authentication. 300 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 301
the test screen. Note: Do not use this setting in a production environment. Click the Send Test Message button to send an email to a test email with these options instead: Download the current server certificate - Downloads the current SSL certificate to your Guide Administrator Tasks | 301 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 302
to a certificate authority that supports this form of request submission. Alternatively, you may click the Download the current CSR link to download a .csr file to You will be prompted to do this with the message "system services need to be restarted due to configuration changes." Installing an SSL - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 303
certificate authority's "How To" instructions for details on obtaining the intermediate certificate. Often, it is available from the same page where you downloaded your certificate. The Root "unable to get local issuer certificate". Amigopod 3.7 | Deployment Guide Administrator Tasks | 303 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 304
you have provided the correct intermediate certificate. If the problem persists, check with your certificate authority for the appropriate You will be prompted to do this with the message "System services need to be restarted due to configuration changes." Displaying the Current 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 305
described in the Import and export visitor accounts can be of use to ensure that unless you want to alter the backup filename. Click the Download Backup button to begin the backup. You will be Services, Reporting Manager Definitions and Amigopod 3.7 | Deployment Guide Administrator Tasks | 305 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 306
highlighted: not be backed up. . The components of the area are not displayed, and will Click the Download Backup button to start the backup. You will be prompted by your Web browser to save the backup schedule backups on a regular basis. 306 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 307
schedule. The options available are the same as for the manual backup. You are required to enter a prefix for the where the automatic backups are stored. The following URL schemes are supported: FTP: Use the syntax ftp://user:[email protected] 3.7 | Deployment Guide Administrator Tasks | 307 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 308
smb://myuser:[email protected]/backup/server%20backups/ Click the Verify Target button to create a test file in the backup directory. Use this command to verify that you have entered the target URL IDs. To perform a complete 308 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 309
backup, and the restore system. This warning is issued because the software version number cannot be changed by the restore process to the same version at the time of the backup. However, this does not necessarily indicate a problem with the restore. Content Manager The Content Manager allows you to - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 310
also copy a content item stored on another Web server by downloading it. To use a content item, you can insert most suited to the type of content inserted. To manually reference a content item, you can use the URL templates. Downloading Content You are able to download a file from the Internet for - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 311
Content button to have the file downloaded. The file is placed in can rename the content item using the Rename link. Click the Download link to save a copy of the content item using your Web of the Amigopod and check for common security problems. Performing a Security Audit Use the Check Security - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 312
run the security audit again link below the list view. If you have taken steps to correct a security problem, a message can be marked as resolved by clicking the Mark as Resolved link. When this is done, settings for remote console access. 312 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 313
disabled by default. It is recommended to leave this network service disabled unless you have specific requirements to the contrary. Network console, or remotely via SSH). See "Console Login" in the Setup Guide chapter for an explanation. The default root password for the appliance is Amigopod - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 314
software updates using the process. See "Adding or Updating New Plugins" in this chapter for details. In some situations, manual OS updates may be required. Click the Manual OS Updates link to perform manual system maintenance tasks. Manual 314 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 315
services primarily reserved for internal use by the software and Services, you must first destroy the clusters, then re-create the clusters after the plugins are updated. Please see Destroying a Cluster and Cluster Setup in the High Availability Services chapter. Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 316
The above subscription would be for the Hotspot Plugin. Viewing Available Plugins Plugins are the software components that fit together to make your Web application. The Available Plugins list shows all application in an inconsistent state. 316 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 317
upload it. The Add New Plugin page also provides the option to choose the internet download method. To upload plugins or updates from the internet, navigate to Administrator > Finish button to download and install the selected plugins. Amigopod 3.7 | Deployment Guide Administrator Tasks | 317 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 318
two servers is required for High Availability Services. Please see Destroying a Clusterand Cluster Setupin the High Availability Services chapter. Configuring Plugin Update Notifications To have allows you to make changes to these settings. 318 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 319
See "Default Settings for Account Creation" in the Guest Management chapter SMS Services- See "Sending an SMS" in the Guest Management chapter SMTP Services- See "SMTP Services" in the Guest level, the base URL, and the application URL. Amigopod 3.7 | Deployment Guide Administrator Tasks | 319 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 320
Base URL and Application URL options should not be modified unless you are instructed to do so by Aruba support. 3. To restore the plugin's configuration to the original settings, click the Configuration link on the Available Plugins page. 320 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 321
Management chapter. Server Time The Server Time form allows you to configure the time and date properties of the Amigopod Visitor Management Appliance. Amigopod 3.7 | Deployment Guide Administrator Tasks | 321 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 322
that authentication, authorization, and accounting (AAA) is performed correctly, not use the default setting as this may be unreliable. To set the server's time manually, enter a value in the Server Time field using the recommended format, or click the Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 323
Reboot the system which stops all services while the reboot is taking place. Restart the system services without stopping the server. This these values unless you are advised by Aruba support, or you have carefully tested the result of the change in a controlled Guide Administrator Tasks | 323 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 324
Retention To configure the number of weeks to retain records for data, log files, disabled accounts, and mobile device certificates, click the Configure data retention link in Log Rotation row. The and enable low disk space notifications. 324 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 325
syslog message is forwarded to the remote collector. For details on defining a database maintenance schedule, See "Changing Database Configuration Parameters" in this chapter. Amigopod 3.7 | Deployment Guide Administrator Tasks | 325 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 326
up the system's disk. If the disk space check is enabled, the server's free disk space is checked daily at midnight, and if it is below the specified threshold, old log files are , go to Administrator > System Control > Database Config. 326 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 327
Guest Accounts field. For mobile device certificates, select the minimum delay, in weeks, required before an expired certificate or rejected request can be deleted. The maximum period is the number of weeks after which an expired certificate is automatically deleted. Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 328
least in use. A periodic maintenance schedule is highly recommended. You should not disable periodic maintenance unless you have a specific requirement. 328 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 329
will be performed immediately. Other users of the system may find the system is unavailable for a short period while the restart takes place. Amigopod 3.7 | Deployment Guide Administrator Tasks | 329 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 330
the Enable persistent HTTP connections check box. This feature is only supported for HTTP 1.1 compliant clients. Click the Save Changes button to System Information page provides a summary of hardware, operating system and software information, as well as a snapshot of the current state of the - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 331
This report can be downloaded for support purposes. Adding Disk Space Storage capacity can be increased on VMware-based deployments. To increase available storage, click the Add Space option on the System Information screen. TheAdding Disk Space screen appears. Follow instructions on this page. - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 332
. 332 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 333
The system log viewer available on the Support > System Logs page displays messages that messages generated by the RADIUS server during authentication, authorization or accounting. System Logs-messages generated by the system and various . Amigopod 3.7 | Deployment Guide Administrator Tasks | 333 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 334
2010-10-04 14:15:31+10] Amigopod info Guest account created for 98084707 XML document (*.xml) - the exported > element. Use the Range option and the Download Limit field to specify whether the current page are displayed in a table on the Support > Application Log page. The System Logs Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 335
the Export tab to save the log in other formats, including HTML, text, CSV, TSV and XML. You can select options to print, email or download the data. Amigopod 3.7 | Deployment Guide Administrator Tasks | 335 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 336
336 | Administrator Tasks Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 337
you time and resources when dealing with individual accounts. The following diagram shows how the process of processed, and if approved their visitor account is created according to the appropriate Hotspot the details of their newly created visitor account. The customer is automatically logged in - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 338
the Manage Hotspot Sign-up command. This allows you to change user interface options and set global preferences for the self-provisioning of visitor accounts. The Enable visitor access self-provisioning check box must be ticked for self-provisioning to be available. 338 | Hotspot Manager Amigopod - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 339
The skin is seen by all users on the login page. SMS Services Configure the following settings in the SMS Services section of the Hotspot Preferences form to override the default SMS settings with . You also have the option to allow free access. Amigopod 3.7 | Deployment Guide Hotspot Manager | 339 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 340
to modify it. The Edit Hotspot Plan appears. You may alter the fields to meet the requirements of your company. 340 | Hotspot Manager Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 341
format strings. Managing Transaction Processors Your hotspot plan must also identify the transaction processing gateway used to process credit card payments. Amigopod supports plugins for the following transaction processing gateways: Authorize.Net AIM CyberSource Amigopod 3.7 | Deployment - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 342
processor that you can use to create hotspot forms and test hotspot transactions. Creating a New Transaction Processor To define the gateway with which you have a service account to display additional configuration fields for that account. 342 | Hotspot Manager Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 343
you have entered all the required data. Customize User Interface Each aspect of the user interface your Hotspot customers see can be customized. Amigopod 3.7 | Deployment Guide Hotspot Manager | 343 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 344
details, including credit card information if purchasing access. The progress of the user's transaction is also shown on this page. 344 | Hotspot Manager Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 345
Amigopod 3.7 | Deployment Guide Hotspot Manager | 345 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 346
and test Hotspot self-provisioning pages, as well as log in to and view the Hotspot self-service portal that allows customers to view their current account expiration date the SelfProvisioning or Self-Service links in the left navigation menu. 346 | Hotspot Manager Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 347
its normal functions. The primary node is the active server in a cluster. The cluster's network services are always delivered by the primary node. The secondary node is the backup server in a cluster once the primary node has failed. Amigopod 3.7 | Deployment Guide High Availability Services | 347 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 348
note about this architecture are: The RADIUS and Web server protocols (HTTP and HTTPS) are supported by the cluster. The cluster has three IP addresses: each node has its own IP address , including managing the cluster itself. 348 | High Availability Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 349
recommended and is not a supported configuration for the cluster. seconds. If several consecutive keep-alive tests have failed, the cluster determines that accounts, changes to existing guest accounts, RADIUS roles, NAS servers, and RADIUS Amigopod 3.7 | Deployment Guide High Availability Services - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 350
as creating new guest accounts or performing RADIUS service configuration ( See "Receipt Page Properties" in the Guest Management chapter) SMTP server configuration ( See "SMTP Configuration" in the Administrator Tasks chapter) 350 | High Availability Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 351
From a Temporary Outage" in this chapter for instructions on recovering a cluster in this state. The secondary node has taken over the cluster services. The primary node is back online, but the the secondary node is down or stopped. Amigopod 3.7 | Deployment Guide High Availability Services | 351 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 352
destroyed and rebuilt. See "Recovering From a Hardware Failure" in this chapter for instructions on recovering a cluster in this state. Email Notification In addition to sending syslog From a Hardware Failure" in this chapter. 352 | High Availability Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 353
Status on the secondary node to determine the cause of the problem. The cluster IP address is inaccessible and network services are unavailable. Automatic failover will take place after the the process of creating a new cluster. Amigopod 3.7 | Deployment Guide High Availability Services | 353 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 354
For the downtime threshold parameter, See "Primary Node Failure" in this chapter. High Availability Services requires an IPv4 multicast address and port number. By default these values are 226.94.1.1 to allow IPv4 multicast traffic. 354 | High Availability Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 355
255 characters Only letters, numbers, and the hyphen (-) and period (.) characters are allowed Hostnames may start with numbers, and may contain only numbers Amigopod 3.7 | Deployment Guide High Availability Services | 355 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 356
the setup of the cluster, return to the primary node after preparing the secondary node and click the Confirm Node Settings button. 356 | High Availability Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 357
cluster IP address. Operators should use the cluster's IP address when provisioning guest accounts. Configure NAS devices to redirect visitors to the cluster's IP address for Web maintenance functions related to the cluster. Amigopod 3.7 | Deployment Guide High Availability Services | 357 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 358
cluster maintenance that is required. Table 28 Failure Modes Failure Mode Maintenance Software failure - system crash, reboot or hardware reset Temporary outage Power failure unavailable while the recovery takes place. 358 | High Availability Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 359
node in the cluster. If the secondary node goes offline, the primary node will be unaffected and the cluster will continue to provide network services without interruption. When the secondary node comes back online, the cluster will be automatically rebuilt and replication will resume. Amigopod - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 360
longer be replicated to the other node as the cluster is no longer functioning. Cluster Troubleshooting When building a cluster, use the recommended values for the downtime threshold, keep-alive rate be used to meet that requirement. 360 | High Availability Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 361
be useful if debugging a problem related to the cluster. The log files may be exported to a zip file. If you require support about a cluster-related problem, include a copy of the exported cluster log files with your support request. Amigopod 3.7 | Deployment Guide High Availability Services | 361 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 362
362 | High Availability Services Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 363
words to underline Shown in fixed-width font Uses CSS formatting Uses predefined style Amigopod 3.7 | Deployment Guide Reference | 363 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 364
img src="url" align="left"> For more details about HTML syntax and detailed examples of its use, consult a HTML tutorial or reference guide. Standard HTML Styles The Amigopod Visitor Management Appliance defines standard CSS classes that you can use to provide consistent formatting within the user - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 365
interface. Basic Template Syntax Following is a brief introduction to the usage of the Smarty template engine. For more information, please refer to the Smarty documentation at http://www.smarty.net/docs.php in place of the {include} tag itself. Amigopod 3.7 | Deployment Guide Reference | 365 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 366
{else} {/if} The condition tested in the {if} ... {/if} block should be a valid PHP expression. and } are specially handled by the Smarty template engine. Using text that contains these characters, such as CSS 366 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 367
details about this modifier function Date/time formatting; see "Date/Time Format String Reference" in this chapter for details about this modifier function Amigopod 3.7 | Deployment Guide Reference | 367 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 368
image of the icon. This should normally be a relative path. The "command" parameter is the main text of the command link. 368 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 369
"}Information block{/nwa_icontext} The "icon" parameter, if specified, is the SRC to the image of the icon. This should normally be a relative path. Amigopod 3.7 | Deployment Guide Reference | 369 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 370
and ending quotes are not included in the output. nwa_radius_query {nwa_radius_query _method=MethodName _assign=var ...} Smarty registered template function. Performs accounting-based queries on the RADIUS server and returns the result for use in a template. Usage example: 370 | Reference Amigopod - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 371
ID of the RADIUS database service handler (this parameter is optional, the default service handler will be used if result. For ease of use, "assign" is also supported as a synonym for "_assign". This template function does $callingstationid = null) Amigopod 3.7 | Deployment Guide Reference | 371 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 372
Developer Reference The reference documentation in this section is intended for advanced usage by developers The various request variables may also be accessed using one of two supported methods: {nwa_assign var=_GET.get_variable value=...} {nwa_assign | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 373
L3, otherwise L1 only expanded - All L1 items have L2 items, L3 only when L2 active all-expanded - All items shown to L3 Amigopod 3.7 | Deployment Guide Reference | 373 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 374
). Specifying the output: The 'notfound' parameter specifies the return value, if the plugin was not found (default is the empty string). 374 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 375
"!", the output is included only if that privilege is NOT granted (inverts the sense of the test). An optional "level" parameter may be specified, which is the level of access to the of a user preference (stored with the Web application user account) Amigopod 3.7 | Deployment Guide Reference | 375 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 376
{nwa_youtube video=ID width=cx height=cy ...} ... {/nwa_youtube} Smarty registered block function. Provides simple support for embedding a YouTube video in the body of a page. The content of this block is /Time Format Example hhmmss %H%M%S 141345 376 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 377
EST 2:13 PM 2 minutes ago The % items on the right hand side are the same as those supported by the php function strftime(). The string "?:", if present will return the string following the "?:" if the See "nwadateformat Modifier" in this chapter. Amigopod 3.7 | Deployment Guide Reference | 377 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 378
current locale, without the date Year as a decimal number without the century (00 to 99) Year as a decimal number A literal % character 378 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 379
returns false if the file does not exist; otherwise, returns an array of arrays containing each of the parsed records from the file. Amigopod 3.7 | Deployment Guide Reference | 379 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 380
current page language is used to adjust formatting to the country specified. Returns a result that is guaranteed to be in UTF-8. 380 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 381
the result as a list of records, where each record contains a list of fields. Supports CSV escaping using double quotes. $options may be specified to control additional parsing options array_slice() function See "NwaParseCsv" and "NwaVLookup". Amigopod 3.7 | Deployment Guide Reference | 381 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 382
elements: error - set if there was a problem parsing the XML message - describes the parse error and the plus sign is removed; otherwise, if the SMS service handler national prefix is set and the phone number starts with that eight and capital B). 382 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 383
and returns a value in the same row from another column in the table. This function supports the values described in the table below. Table 36 NwaVLookup Options Option Description $value $table length of 3 characters. $len must be at least 3. Amigopod 3.7 | Deployment Guide Reference | 383 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 384
account automatically account automatically account. This field controls account creation behavior; it is not stored with created visitor accounts account account, the default value is taken from the configuration for the RADIUS Services an account, this field must be other value, account creation will fail - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 385
the account username. This option requires the NAS to support RFC Account will expire at date and time Expires interval after first login or after interval total usage Expires interval after first login Expires after interval total usage No expiration time set Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 386
account account may be used. Usage is calculated across all accounting sessions with the same username. Set this field to 0 to disable this account field is only of use when editing a visitor account. It may be set to one of the controls account modifications; it is not stored with the visitor account. - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 387
a visitor account. It account modifications; it is not stored with the visitor account. String. Value indicating how to modify the account account creation and modification behavior; it is not stored with created or modified visitor accounts account activation time; "now" to activate the account - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 388
for stations using the account. This field may be portal. The default is to allow guest access to the self-service portal, unless this field is set. Boolean. User does not NAS for login. Guest password changes are only supported for Web login pages and guest self-registration pages Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 389
using the self-service portal. random_password String. This field contains a randomly-generated password. This field is set when modifying an account (guest_edit form). random_password_length 4 will result in sequence numbers 0001, 0002, etc. Amigopod 3.7 | Deployment Guide Reference | 389 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 390
the guest account was registered. to the account.The value of account. schedule_after Integer. Time period, in hours, after which the account account creation behavior; it is not stored with created visitor accounts. schedule_time Integer. Time at which the account self-service portal account - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 391
the visitor. No Type. The name of the plan (visitor access settings) selected by the visitor. String. The visitor's last name. String. Password for the account (used to confirm a manually typed password). Amigopod 3.7 | Deployment Guide Reference | 391 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 392
Services Standard Fields Field Description auto_send_sms sms_auto_send_field sms_enabled sms_handler_id sms_phone_field sms_template_id sms_warn_before_message visitor_carrier Boolean. Flag indicating that a SMS receipt should be automatically sent upon creation of the account SMS service - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 393
40 SMPT Services Standard Fields Field specifies a list of additional email addresses that will receive a copy of the visitor account receipt. If the value is default, the default carbon-copy list from the email email receipt configuration is used. Amigopod 3.7 | Deployment Guide Reference | 393 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 394
Table 40 SMPT Services Standard Fields (Continued) (Continued) Field the list of additional email addresses that receive a copy of the visitor account under Logout Warnings on the email receipt. If the value is "default", excluding vowels 394 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 395
. When using the IsValidEmail validator, the validator argument may be specified wieth a whitelist/blacklist of domain names. Use the syntax: array( 'allow' => array( Amigopod 3.7 | Deployment Guide Reference | 395 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 396
(optional, for password validation). Defaults to "password2" if not specified. password2_required - if nonzero, indicates that the "password2" entry must be supplied. 396 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 397
configuration. NwaIsValidLifetime - Checks that the value is one of the account lifetime options specified in the Guest Manager configuration. Form Field Conversion Functions equivalent integer value. The conversion leaves blank values unmodified. Amigopod 3.7 | Deployment Guide Reference | 397 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 398
the number of fractional digits to use when formatting the monetary amount (other locale settings will remain unchanged in this case). 398 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 399
If set, this value will be returned when the resulting duration (after min_format is taken into account) is 0. NwaExplodeComma Converts a string to an array by splitting the string at each comma and be formatted, rather than a regular numeric value. Amigopod 3.7 | Deployment Guide Reference | 399 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 400
(parseInt(data.do_expire) != 0) ? Displays "N/A" if the account has no expiration time, or a date Nwa_DateFormat(data.expire_time, in this chapter for a full list of the supported format strings. Nwa_FloatFormat(value, decimals) Converts a 400 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 401
. See "Attribute Authorization Conditions" in the RADIUS Services chapter for more details about using these functions. by PHP function time() User account structure Role definition for user Role ID of user account Calculated session timeout for user, Amigopod 3.7 | Deployment Guide Reference | 401 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 402
function is useful to see exactly what a NAS is sending, if debugging an authorization problem. Example usage: return ShowAttr rest of condition MacAddr() MacAddr($mac) Converts a MAC address string not containing a valid MAC address), returns NULL. 402 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 403
$from_time, $to_time = null, $in_out = null) Calculate the sum of traffic counters for accounting records in the database. This is a multi-purpose function that has a very flexible query , the time interval in seconds before the current time. Amigopod 3.7 | Deployment Guide Reference | 403 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 404
) Calculate the number of sessions from accounting records in the database. This is matching accounting records. sessions for matching accounting records in the time user downloads): return GetUserTraffic(86400,'out') > 10485760 && AccessReject() Another way to limit the past 30 days downloads to - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 405
Limit by MAC address, 50 MB download in past 24 hours: return GetCallingStationTraffic(86400, 'out') > 50000000 && AccessReject() GetUserTraffic() GetUserTraffic($from_time, $ "GetIpAddressTraffic()" for additional details on the $ip_addr argument. Amigopod 3.7 | Deployment Guide Reference | 405 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 406
GetUserSessions($from_time, $to_time = null) Calculate the number of sessions for accounting records matching a specific user-name. The username attribute is looked up follows: array ( 'id' => '2073', 'acctsessionid' => '4a762dbf00000002', 406 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 407
-%02X-%02X-%02X-%02X-%02X - that is, uppercase hexadecimal with each octet separated with a hyphen. See "GetCurrentSession()" for details of the return value. Amigopod 3.7 | Deployment Guide Reference | 407 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 408
is not taken into account.) return GetUserStationCount(365*24*60*60) > 1 && the above. Checks the last year of accounting records and permits a user a maximum of given user account, if the user account was to The$username parameter specifies the user account to modify; use the expression - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 409
be used if no other value is set in the RADIUS Server Options. Values for parameters may be quoted using double quotes; backslash escaping is supported within doublequoted strings. Amigopod 3.7 | Deployment Guide Reference | 409 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 410
look up the port in /etc/services. listen.type = not set Type of packets to listen for. Allowed values are "auth" for authentication packets, and "acct" for accounting packets. hostname_lookups = off Log the names Allowed values are no and yes. 410 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 411
spaces in their username or password incorrectly. To save yourself the tech support call, you can eliminate those spaces here. Allowed values: before, = no Specify this option to enable support for authorization-only RADIUS requests, which have the Service-Type attribute set to the value "Authorize - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 412
get kicked unnecessarily. proxy.retry_count = 3 The number of retries to send before giving up, and sending a reject message to the NAS. 412 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 413
increasing 'max_servers' doesn't seem to make much difference. If this is the case, then the problem is most likely that your back-end databases are taking too long to respond, and are preventing The default values are probably OK for most sites. Amigopod 3.7 | Deployment Guide Reference | 413 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 414
are dropped. The default value is recommended for most deployments. Do not change the default value unless you have a specific requirement. 414 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 415
module.mschap = yes Microsoft CHAP authentication. This module supports MS-CHAP and MS-CHAPv2 authentication. It also enforces the SMB-Account-Ctrl attribute. mschap.use_mppe = no If 'use_mppe' is the ntlm_auth program documentation for details. Amigopod 3.7 | Deployment Guide Reference | 415 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 416
accounting contexts, or when creating user accounts interim accounting updates the case where guest accounts are limited to a manually here. EAP Module Configuration Set the advanced.eap = 1 option to enable additional EAP types to be selected in the RADIUS Services the RADIUS Services chapter - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 417
Another module MUST then be configured to proxy the request to another RADIUS server which supports that EAP type. If another module is NOT configured to handle the request, then the request will for the request, and do the authentication itself. Amigopod 3.7 | Deployment Guide Reference | 417 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 418
this configuration entry to 'yes', and the reply to the NAS will be taken from the reply to the tunneled request. 418 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 419
is not currently supported. LDAP Module in the RADIUS Services chapter for further support SSL, but don't do TLS negotiation (like Novell eDirectory). Applies Novell's account To disable the Novell account policy checks, set this Required for Novell eDirectory support. When defining this attribute - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 420
should be preferred; 'tls_mode' is provided only for LDAP servers like Active Directory which do not support it. ldap.tls_cacertfile = not set A PEM-encoded file that contains the CA Certificates that you in "hash format" (see: openssl verify). 420 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 421
back to 0.8.1 behavior without changing the LDAP data or to gain a little performance if the LDAP data is rather simple (no special operators) Amigopod 3.7 | Deployment Guide Reference | 421 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 422
in an Access-Request message. See "Server Configuration" in the RADIUS Services chapter for examples showing how to use the attr_rewrite module. Multiple attr_rewrite " in this chapter for information about the supported syntax for regular expressions. 422 | Reference Amigopod 3.7 | Deployment - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 423
type of service to be provided. It may be used in both Access-Request and Access-Accept packets. Framed-Protocol: This attribute indicates the framing to be used for framed access. It may be used in both Access-Request and Access-Accept packets. Amigopod 3.7 | Deployment Guide Reference | 423 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 424
as part of the Accounting-Request packet if accounting is supported. Vendor-Specific: This attribute is available to allow vendors to support their own extended Attributes not suitable for general usage. Session-Timeout: This attribute sets the maximum number of seconds of service to be provided - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 425
logonCount: The logonCount property counts the number of successful times the user tried to log on to this account. mail: The mail property is a single-valued property that contains the SMTP address for the a Any string containing the letter "a" Amigopod 3.7 | Deployment Guide Reference | 425 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 426
character that is not a decimal digit The regular expression syntax used is Perl-compatible. For further details on writing regular expressions, consult a tutorial or programming manual. 426 | Reference Amigopod 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 427
that collects data using fields. field A single item of information about a visitor account. guest See Visitor. landing page See Web login. LDAP Lightweight Directory Access Protocol request (Access-Request) is generated by the NAS. Amigopod 3.7 | Deployment Guide Glossary | 427 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 428
Management Appliance to create guest accounts or perform system administration. Test network connectivity using an ICMP ) and operator access to the Amigopod Visitor Management Appliance (see Operator Profile). Service provided by a NAS to an authorized user. The skin of a Web 3.7 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 429
23, 45 Access control Operator logins 291 Print template 199, 244 SNMP 298 account filter creating 112, 117 Accounting 23, 24, 27 Active Directory 92 Advanced options 94 Configuring authentication 90 Join time 141 Character set encoding 58, 145 Amigopod 3.7 | Deployment Guide Index | 429 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 430
Download 310 Quick view 311 Rename 311 Upload 310 View 311 Create Certificate signing request 301 Classifier 262 Field 158 GRE tunnel 288 Guest account page 188 Registration form 187 Registration page 187 Self-service portal 194 View fields 179 D Daily link utilization Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 431
Content 310 Download content 311 -registration receipts 190 SMTP Services 234 Email receipts 137 Ethernet settings 285 Export Guest accounts 148 RADIUS dictionary 73 RADIUS 392 auto_update_account 153 Amigopod 3.7 | Deployment Guide card_code 391 card_expiry 391 card_name 391 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 432
zip 392 fields duplicate 159 File upload size 329 filtering devices 206 guest accounts 140, 143 sessions 221 Final report 272 Form 27, 157 Form field 23 Self-provisioned 134 Visitor surveys 148 Guest accounts Activate 141 Change expiration 141 Create 135 Amigopod 3.7 | Deployment - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 433
Download receipt 189 Email receipts 190 Login page 192 Print receipt 189 Self-service Guide Navigation 347 Network architecture 348 Primary failure 351 Rebuild cluster 359 Repair cluster 358 Scheduled maintenance 359 Secondary failure 351 SSL certificate 349 Troubleshooting accounts - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 434
certificate 302 Interface statistics 293 Interfaces 37 Kernel parameters 293 Manual configuration 285 MTU 285 NTP 40, 321 Packet capture 287 System hostname 36 Traceroute 294 View DHCP leases 293 VLAN support 289 Network access control 77 Network Access Server 27, 55 | Deployment Guide - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 435
49 Vendor-specific attributes 51, 72 VSA 75 Web logins 59 RADIUS Server Accounting queries 370 Active sessions 218 attr_rewrite module 49 Authentication log 46 Certificate authority ( RADIUS server Disconnect session 220 Reauthorize session 220 Amigopod 3.7 | Deployment Guide Index | 435 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 436
Services 242 Import 247 436 | Index Local RADIUS accounting 249 Managing 242 Parameters 253 Print 242, View Text 242 Reset dictionary 73 Reset password 140 Restart services 323 Restore 308 RFC 1738 308 RFC 2255 123, Self registration Create 182 Self-service portal 193 Auto login 195 - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 437
account receipt 137 Guest self-registration receipts 190 SMS Services 227 Guide Subscription ID 42, 316 Sysctl parameters 323 System control 323 System information 330 System log viewer 333 T Temporary outage 358 Top 10 users by total traffic 242 Total traffic per day 242 Troubleshooting - Dell PowerConnect W Clearpass 100 Software | 3.7 Deployment Guide - Page 438
machine 32 NTP and timekeeping 41 NTP configuration 322 Visitor 27 Visitor Account 27 VLAN RADIUS Attributes 54 VLAN interface 289 VSA 75 Delete 76 Vista 84 Wizard Print template 198 X XML Guest account list 148 Parsing 382 System logs 334 438 | Index Amigopod 3.7 | Deployment
Amigopod 3.7
Deployment Guide