AdTran Bluesocket vWLAN integration

Integrate your AdTran Bluesocket devices with your MyWiFi account and enable your guests to connect to the internet while keeping full control of your devices via your vWLAN.

5e1cd5acbc002.jpg

Required:

  • Active MyWiFi subscription
  • Active AdTran subscription
  • Active location set up in MyWiFi with an assigned campaign

Device setup

You will first need to retrieve the MAC address from your AdTran vWLAN for each device you want to add to MyWiFi. A MAC address is a sequence of 12 numbers and the letters A-F often separated by colons (ex: AC:86:74:8B:45:20).

  1. Log in to your AdTran vWLAN.
  2. Select the Status tab.
  3. Select Access Points from the menu.
  4. Locate the Access Point and copy the MAC Address.
  5. Repeat these steps for each device you wish to add to MyWiFi. 

 

MyWiFi setup

Now that you have the MAC addresses of the AdTran devices you want to add, you can add them to MyWiFi.

  1. Select Devices from the main menu in MyWiFi.
    menu-devices.JPG
  2. Click Add New Device.
    mceclip0.png
  3. Select the Location, enter a Device Name, and choose AdTran Bluesocket.
    mceclip1.png
  4. Provide the MAC Address retrieved from your vWLAN.
    mceclip0.png
  5. Click Proceed.
    mceclip3.png
  6. Review the information to confirm that it's correct, then click Confirm Setup.

 

Se tup external authentication: Accounting

  1. Login to your AdTran vWLAN.
  2. Select the Configuration tab.
  3. Select External Authentication from the left menu.
  4. Select Accounting.
  5. Click Create.

    Configure the primary Accounting Server as follows:
    Name: MyWiFi-1
    Enabled: 
    IP Address: 35.174.133.59
    Port: 1813
    Shared Secret: mywifi
    Shared Secret Confirmation: mywifi
    Timeout: 5
    Retries: 5
    Interim Updates Enabled:
    Interim Update Interval In Seconds: 300

  6. Click Create Accounting Server.
  7. Click Create to create the Secondary Accounting Server.

    Configure the secondary Accounting Server as follows:
    Name: MyWiFi-2
    Enabled:
    IP Address: 52.4.206.21
    Port: 1813
    Shared Secret: mywifi
    Shared Secret Confirmation: mywifi
    Timeout: 5
    Retries: 5
    Interim Updates Enabled:
    Interim Update Interval In Seconds: 300

  8. Click Create Accounting Server.

 

Setup external authentication: Servers

  1. Select the Configuration tab.
  2. Select External Authentication from the left menu.
  3. Select Servers.
  4. Click Create Authentication Server.

    Configure the primary Authentication Server as follows:
    Type: RadiusWebAuthServer
    Name: MyWiFi-1
    Accounting Server: MyWiFi-1
    IP Address: 35.174.133.59
    Port: 1812
    Shared Secret/Password: mywifi
    Shared Secret/Password Confirmation: mywifi
    Timeout Weight: 1
    Maximum Number of Simultaneous Users Allowed to Authenticate at Once: 0
    Precedence: Highest
    Enable Radius MAC Authentication: leave unchecked
    Role: Guest

  5. Click Create Authentication Server.
  6. Click Create again to create the secondary Authentication Server.



    Configure the secondary Authentication Server as follows:
    Type: RadiusWebAuthServer
    Name: MyWiFi-2
    Accounting Server: MyWiFi-2
    IP Address: 52.4.206.21
    Port: 1812
    Shared Secret/Password: mywifi
    Shared Secret/Password Confirmation: mywifi
    Timeout Weight: 1
    Maximum Number of Simultaneous Users Allowed to Authenticate at Once:0
    Precedence: Highest
    Enable Radius MAC Authentication: leave unchecked
    Role: Guest

  7. Click Create Authentication Server.

 

Set up the captive portal

  1. Select the Configuration tab.
  2. Select External Authentication.
  3. Select Captive Portal.
  4. Select Forms.
  5. Click Create Login Form.




    Configure the Captive Portal Form as follows:
    Name: MyWifi-Portal
    Allow User Logins:
    Allow Guest Logins: leave unchecked
    Redirect Clients To An External URL:
    Base URL of External Server: Your Custom Social Portal URL, including the https://. If you don't have one set up, use http://securewifilogin.com.
    vWLAN Domain ID:
    domain_id
    vWLAN Login Form ID: login_form_id
    Client's MAC Address: mac
    Client's Access Point MAC Address: ap
    vWLAN IP Address: controller
    Client's Original URL: destination
    Client's IP Address: source
    Client's Access Point SSID: ssid
    Client's VLAN ID: vlan
    Double Encoding of URI Parameters: leave unchecked
    Include RADIUS Option Vendor option: leave unchecked



  6. Click Create Login Form.

 

Set up destinations (Domain whitelist)

  1. Select the Configuration tab.
  2. Select Role Based Access Control within the left menu.
  3. Select Destinations.  
  4. Click Create Destination Hostname.

It's Important

If you have a Custom Social Portal URL for your MyWiFi account, you must add it as a Destination in place of the *. acting as a placeholder in the first line of the list below.

Here is the complete list of domains that need to be added as Destinations.

For each of the domains listed below, you need to create a Destination Hostname entry with this domain in the address field:

  • *.
  • *.mywifi.io
  • securewifilogin.com
  • *.cloudfront.net
  • fonts.gstatic.com
  • fonts.googleapis.com
  • *.linkedin.com
  • *.amazonaws.com
  • *.licdn.com
  • *.twitter.com
  • *.facebook.com
  • *.facebook.net
  • *.fbcdn.net
  • *.akadns.net
  • *.edgekey.net
  • *.edgesuite.net
  • *.akamaihd.net
  • *.akamaiedge.net
  • *.akamai.net
  • *.twimg.com
  • *.instagram.com
  • *.stripe.com
  • js.authorize.net
  • *.paypal.com
  • *.paypalobjects.com
  • *.twilio.com
  • *.vk.com

Set up destination group (List of whitelisted domains)

  1. Select the Configuration tab.
  2. Select Role Based Access Control from the left menu.
  3. Select Destination Groups.  
  4. Click Create Destination Group.

    Configure the Destination Group as follows:
    Name: mywifi
    Destinations: click the + sign next to each Destination Hostname that you previously added, until they are all selected.

  5. Click Create Destination Group.

 

Set up roles

  1. Select the Configuration tab.
  2. Select Role Based Access Control from the left menu.
  3. Select Roles.
  4. Click Un-registered.

  5. Click the link Append Firewall Rule.

  6. Enter the following firewall rule to allow unregistered users to access the whitelisted domains pre-authentication:

    Policy: Allow
    Service: Any
    Direction: Both Ways
    Destination: mywifi

  7. Click Update Role.
  8. Navigate to Role Based Access Control.
  9. Select Roles
  10. Click Guest.

  11. In the URL Redirect input field, enter your custom social portal URL, followed by /?res=success. For example, if your custom social portal URL is social.yourdomain.com, you would enter https://social.yourdomain.com/?res=success into this field. If you don't have a custom social portal URL set up, use https://securewifilogin.com/?res=success instead.
  12. Click Update Role.

Set up SSID

  1. Select the Configuration tab.
  2. Select Wireless from the left menu.
  3. Click SSIDs.
  4. Select Create SSID.

    Configure the SSID as follows:

    Name/ESSID:
    Guest WiFi
    Broadcast SSID:
    Authentication: Open System
    Cipher: disabled
    Login Form: guest
    Role: Un-registered
    Standby SSID: unchecked

  5. Click Create SSID.

 

Apply Settings

  1. Select the Status tab.
  2. Select Access Points from the left menu.
  3. Click Apply. This update may take up to a few minutes.

 

Troubleshooting

If you are not able to access your campaign after connecting to WiFi, or if you are entered in a loop when attempting to access any specific URL, please make sure that the custom social portal URL that you entered in the URL Redirect field and the Captive Portal Form in AdTran is also included as a Destination Hostname.

Need Help?

If you have any questions, please contact our support team by clicking the support icon located in the bottom right-hand corner of this page.

Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.