AdTran Bluesocket vWLAN Integration

Kevin Zicherman Updated by Kevin Zicherman

This guide will assist you in preparing your AdTran Bluesocket Access Points (managed through vWLAN) for Social Guest Access capabilities. It will also assist you through the process of associating your Bluesocket access points with the MyWiFi system, for the purposes of managing the Social Captive Portal experience.

Retrieve the Mac Address of your Access Point
  1. Login to your AdTran vWLAN.
  2. Navigate to Status >> Access Points in the WLAN.
  3. Locate your chosen Access Point in the Access Point List and identify the Mac Address of that Access Point in the table.
MyWiFi Dashboard Setup
  1. Login Into the MyWiFi Dashboard with your credentials.
  2. In the MyWiFi Dashboard, create/select an appropriate Social WiFi Campaign with the Social Media Logins and customized look of your choice.
  3. Create/Use an Existing Location for your Installation & Assign your created Campaign as the Default Campaign for this Location.
  4. Once you have completed those actions you can add the Bluesocket Access Point in the MyWiFi System.
  5. Click on Devices >> Add New Device to bring up the Add New Device view.
Add your new Device
  1. Provide a name for the Device.
  2. Select Bluesocket from Select Router Type.

  3. Select the Location you have created for this installation.
  4. Enter the Mac Address of the device that you collected from the AdTran Bluesocket vWLAN above
  5. Click Proceed once you have entered the appropriate information correctly.
  • You are prompted to confirm the information & selections you entered.
  1.  Click Confirm Setup to finalize the Device setup.

Setup your External Authentication - Accounting in AdTran vWLAN
  1. Login / Return to your AdTran vWLAN.
  2. Navigate to Configuration >> External Authentication.
  3. Click Accounting.
  4. Click Create Account Server.
Configure the Primary Accounting Serving as follows:
  • Name: MyWiFi-1
  • Enabled: checked
  • IP Address: 35.174.133.59
  • Port: 1813
  • Shared Secret: mywifi
  • Shared Secret Confirmation: mywifi
  • Timeout: 5
  • Retries: 5
  • Interim Updates Enabled: checked
  • Interim Update Interval In Seconds: 300
  1. Click Create Accounting Server button to complete.
  2. Then click the Create button to create the Secondary Accounting Server.
Configure the Secondary Accounting Server as follows:
  • Name: MyWiFi-2
  • Enabled: checked
  • IP Address: 52.4.206.21
  • Port: 1813
  • Shared Secret: mywifi
  • Shared Secret Confirmation: mywifi
  • Timeout: 5
  • Retries: 5
  • Interim Updates Enabled: checked
  • Interim Update Interval In Seconds: 300
  1. Click Create Accounting Server button to complete.

Setup your External Authentication - Servers in AdTran vWLAN
  1. Navigate to Configuration >> External Authentication.
  2. Click Servers.
  3. Click Create Authentication Server.
Configure the Primary Authentication Server as follows:
  • Type: RadiusWebAuthServer
  • Name: MyWiFi-1
  • Accounting Server: MyWiFi-1
  • IP Address: 35.174.133.59
  • Port: 1812
  • Shared Secret: mywifi
  • Shared Secret Confirmation: mywifi
  • Timeout Weight: 1
  • Maximum Number of Simultaneous
    Users Allowed to Authenticate at Once:
    0
  • Precedence: Highest
  • Enable Radius MAC Authentication: unchecked
  • Role: Guest
  1. Click Create Authentication Server button to complete.
  2. Click the Create button to create the Secondary Authentication Server.
Configure the Secondary Authentication Server as follows:
  • Type: RadiusWebAuthServer
  • Name: MyWiFi-2
  • Accounting Server: MyWiFi-2
  • IP Address: 52.4.206.21
  • Port: 1812
  • Shared Secret: mywifi
  • Shared Secret Confirmation: mywifi
  • Timeout Weight: 1
  • Maximum Number of Simultaneous
    Users Allowed to Authenticate at Once:
    0
  • Precedence: Highest
  • Enable Radius MAC Authentication: unchecked
  • Role: Guest
  1. Click the Create Authentication Server button to complete

Setup your Captive Portal in AdTran vWLAN
  1. Navigate to Configuration >> Captive Portal.
  2. Click Forms.
  3. Select Create Login Form.
Configure the Captive Portal Form as follows:
  • Name: MyWifi-Portal
  • Allow User Logins: checked
  • Allow Guest Logins: unchecked
  • Redirect Clients To An External URL: checked
  • Base URL of External Server: http://securewifilogin.com/
  • vWLAN Domain ID: domain_id
  • vWLAN Login Form ID: login_form_id
  • Client's MAC Address: mac
  • Client's Access Point MAC Address: ap
  • vWLAN IP Address: controller
  • Client's Original URL: destination
  • Client's IP Address: source
  • Client's Access Point SSID: ssid
  • Client's VLAN ID: vlan
  • Double Encoding of URI Parameters: unchecked
  • Include RADIUS Option Vendor option: unchecked

If you have a Custom Social Portal Enabled in the MyWiFi System. You may enter your Custom Social Portal Domain in the Base URL of External Server field instead of “http://securewifilogin.com”.

  1. Click Create Login Form button to complete.

Setup your Destinations (Domain Whitelist) in AdTran vWLAN
  1. Navigate to Role Based Access Control.
  2. Click Destinations.  
  3. Click Create Destination Hostname.
If you have a Custom Social Portal Enabled in the MyWiFi System. It is necessary to add your Social Portal Domain to the Allowed Hosts/Domains Whitelist, a placeholder for which is: <White Label Portal Domain> located in the list below.
Here is the complete list of domains that need to be added as Destinations 
(whitelisted)
For each of the Domains listed below, you need to create a Destination Hostname Entry with this domain in the Address field:
  • <White Label Portal Domain>
  • *.mywifi.io
  • securewifilogin.com
  • *.cloudfront.net
  • fonts.gstatic.com
  • fonts.googleapis.com
  • *.linkedin.com
  • *.amazonaws.com
  • *.licdn.com
  • *.twitter.com
  • *.facebook.com
  • *.facebook.net
  • *.fbcdn.net
  • *.akadns.net
  • *.edgekey.net
  • *.edgesuite.net
  • *.akamaihd.net
  • *.akamaiedge.net
  • *.akamai.net
  • *.twimg.com
  • *.instagram.com
  • *.stripe.com
  • js.authorize.net
  • *.paypal.com
  • *.paypalobjects.com
  • *.twilio.com
  • *.vk.com
Setup your Destination Group (List of Whitelisted Domains) in AdTran vWLAN
  1. Navigate to Role Based Access Control.
  2. Click on Destination Groups.  
  3. Click Create Destination Group.
Configure the Destination Group as follows:
  • Name: mywifi
  • Destinations: click the + sign next to each Destination Hostname that you have previously added, until they are all select in the left side list 
  1. Click Create Destination Group button to complete.

Setup your Roles in AdTran vWLAN
  1. Navigate to Role Based Access Control.
  2. Click on Roles.
  3. Click on Un-registered.
  1. Click on Append Firewall Rule.
  1. Enter the following Firewall rule to allow Un-registered users to access the whitelisted domains pre-authentication:
  • Policy: Allow
  • Service: Any
  • Direction: Both Ways
  • Destination: mywifi
  1. Click Update Role button to complete.
  2. Navigate to Role Based Access Control >>
  3. Select Roles. 
  4. Click on Guest.
  1. Enter the following in the URL Redirect input:

https://securewifilogin.com/?res=success

If you have a Custom Social Portal Enabled in the MyWiFi System. You may enter your Custom Social Portal Domain in the URL Redirect field instead of “http://securewifilogin.com”.
  1. Click Update Role button to complete
Setup your SSID in AdTran vWLAN
  1. Navigate to Configuration >> Wireless.
  2. Click SSIDs.
  3. Select Create SSID.
Configure the SSID as follows:
  • Name/ESSID: Guest WiFi <or enter the name of your choice>
  • Broadcast SSID: checked
  • Authentication: Open System
  • Cipher: disabled
  • Login Form: guest
  • Role: Un-registred
  • Standby SSID: unchecked
  1. Click Create SSID button to complete.

Apply your Settings in AdTran vWLAN
  1. Navigate to Status >> Access Points.
  2. Click on the Access Point that you have previously selected for Configuration.
  3. Click the Apply button to apply these new configurations to the Access Point.
  • Within a few minutes the Access Point will be serving the new configuration.

Congratulations! 

Your AdTran Blusocket Device is now Enabled for Guest Access.
Troubleshooting
If you are not able to access the captive portal after connecting to the WiFi. Or if you are entered in a loop when you attempt to access any specific URL. Please make sure that your captive portal splash page domain, that you entered in the “Destination Hostname” field, is accurate.

Did this answer your question?

Contact