Table of Contents

Security: Authentication

This is a guide intended to help configuring Authentication with Comms Mundi™ Encryption and Authentication modules. If you have questions ask us at support@wirelessmundi.com.

Common Task

MySQL

To configure MySQL service:

  1. Check on the Activation checkbox Enabled.
  2. Go to database and click Add.
  3. Write a base data name and click Add.

There is the new database:

Radius

To configure Radius service:

  1. Click to Services / Radius, check on the Activation checkbox, select a database and click Apply.
  2. Go to NAS option and click Add.
  3. In the next window complete the fields and click Add.
    Description NAS Name
    Client address IP or address of NAS server
    Shortname Shortname to NAS
    Password Password

  4. Go to Users menu and click Add.
  5. In the next window complete the user name. In Attributes, choose an atribute (cleartext-password in that case), click Add and click the general Add.

Captive Portal

To configure captive portal:

  1. Go to Security / Authentication / Captive portal, check on Activation checkbox, click Apply and Add button.
  2. Set the name to captive portal, choose the listening interface, local IP and DHCP Range, set the domain, set DNS address, set the RADIUS secret, set the authentication URL, the UAM secret, logout IP and click Add button.

:!: To filter user web navigation, check the proxy option only if the CM proxy is configured as “Proxy normal”

UAM secret and logout IP must be established in index.php.

IMPORTANT: To the captive portal can be work succesfully needs a default route in default table routes.

L2TP

To configure L2TP service:

  1. Go to Security / Authentication / L2TP. Check on the Activation checkbox and click Add.
  2. Set the name to connection, check on the Status checkbox, set the local IP to the connetion and the IP range. Set DNS server address and WINS server address, choose authentication methods, set the RADIUS secret* and click Add.
*NOTE: “RADIUS Secret” must be the same NAS password

PPPoE

To configure PPoE service:

  1. Go to Security / Authentication / PPPoE, check on the activation checkbox and click on Add button.
  2. Set PPPoE name, check on the status checkbox, select the interface to listen, set the local IP and IP range. Set DNS server address and WINS server address, choose authentication methods, set the RADIUS secret* and click Add button.
*NOTE: “RADIUS Secret” must be the same NAS password