This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
RUCKUS Self Help |   ASK the Pack
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SZ 100 external captive portal login. Where to POST?

frullo_fragelli
New Contributor

‎10-09-2019 07:14 AM

Hi,
I have a SmartZone 100, configured to use an external captive portal with RADIUS. It correctly redirects the user to the external login page. The AAA Test also works fine.
My issue is that the when the user enters the credentials, the POST seems lost in the network....

The external captive portal login page receives the following request:

?nbiIP=192.168.x.y&client_mac=xxxxxxxxxxx&reason=Un-Auth-Captive&wlanName=MY_WIFI&dn=scg.ruckuswireless.com&ssid=MY_SSID&mac=44:1e:98:1e:31:a0&url=http%3A%2F%2Finit-p01st.push.apple.com&proxy=0&vlan=30&wlan=3&sip=scg.ruckuswireless.com&zoneName=WEDtGa9sj1EOy6-qqLWQBw_1570617665657&StartURL=&uip=ENCxxxxxxxxx

Then, once it collects the username and password, sends a POST to
https://192.168.x.y:9998/SubscriberPortal/hotspotlogin
with parameters: username, password and the other parameters that came in with the request.

I am not using NBI, should I?
I also tried posting to scg.ruckuswireless.com, but the Url doesn't exist. What am I doing wrong? Where to send the form POST?

I'm following this manual
SZ100VSZE-5.1.1-WISPrPortalReferenceGuide-RevA-20190426.pdf

Thank you
Desperately,
Frullo
4 REPLIES 4

michael_carty_7
New Contributor

‎10-30-2019 05:12 AM

Was there ever a solution on this? We are facing the same issue.
0 Kudos

michael_gobey
New Contributor
In response to michael_carty_7

‎11-11-2020 02:20 PM

Any update?

0 Kudos

eizens_putnins
Valued Contributor II
In response to michael_carty_7

‎11-25-2020 01:56 PM

And one more thing -- by default, vSZ uses encryption for information in this POST, it is also described in manual. So in the beginning turn MAC address encryption off (cli command on vSZ node console, look in the manual)  and get things work without encryption. You can deal with encryption later.

0 Kudos

eizens_putnins
Valued Contributor II

‎11-25-2020 12:23 PM

Hi,

There are 2 possible problems:

1. Certificate. If your WISPR server doesn't have public SSL certificate (or SZ doesn't have full chain to trust it), this will fail. To check this, switch to http (port 9997), if it will work than, it is defenitly certificate issue. To make self-signed certificate work, you probably need to import it's CA into vSZ.

2. Check that "NAS IP" is set properly in WLAN configuration to "controller IP" (Radius options, visible only when Radius accounting is set on, but work even if accounting later is disabled). It is possible that POST is sent to other node, which doesn't know about that client.

Hope it helps.

0 Kudos
Copyright © 2024 Khoros, LLC