The Smoothwall makes use of RADIUS accounting to allow users to connect their own wireless devices to the network, known as “bring your own device” (BYOD), and authenticate unobtrusively. This has the added advantage of not having to install additional software on the users’ device.
The Smoothwall links your organization's directory service to its RADIUS server. As a network administrator, you can configure your wireless network infrastructure to authenticate users using the RADIUS server so that users can use their directory service accounts as wireless client login details.
The following RADIUS requests can be processed by the Smoothwall, depending on the BYOD network implementation:
You can define groups to explicitly allow or reject the authorization requests.
The following RADIUS attributes are used within account requests:
|Filter-ID||This is an optional attribute, used to supply the authentication group of the user. Typically, the group assignment is used by the Smoothwall when there's no directory service configured to use for group mapping.|
|Framed-IP-Address||This contains the IP address of the client that has been authorized to connect to the wireless network. This attribute is essential to the BYOD service.|
|Interim-Update||This is a status update received from the network access server, advising of the status of the client’s session. If the Smoothwall doesn't receive this at least once an hour, it assumes the session has ended and logs the client out.|
Something not right? Send us feedback.