top of page

Kiwire 3.0 Administrator      >        Setting up the Wi-Fi Hardware & Configuration       >       Aruba iAP Virtual Controller   

Kiwire 3.0 Administrator - Device & Controller Setup Guide

Aruba iAP Virtual Controller Configuration

a). Initial setup

  1. Go to Security > Authentication Servers

  2. Set IP address to Kiwire IP address

  3. Set RadSec to Disabled in the dropdown option

  4. Set Auth port to 1812

  5. Set Accounting port to 1813

  6. Set Shared key to the same key with Kiwire NAS shared key

  7. Retype key (shared key above) in the input box and proceed

  8. Set Timeout to 5 sec

  9. Set Retry count to 3

  10. Set RFC 3576 to Enabled in the dropdown option

  11. Set Air Group CoA port to 3799

  12. At RFC 5997 place a checkmark for Authentication and Accounting

  13. Set NAS IP address to the iAP Virtual Controller IP

  14. Set NAS identifier to the iAP Virtual Controller MAC address

  15. At Service type framed user place a checkmark for Captive Portal

aruba_iapvc_kiwire_01.jpg

b. Security setting
 

  1. Go to Security > External Captive Portal

  2. Type: RADIUS Authentication

  3. IP or Hostname: Kiwire IP address

  4. URL: /login/aruba

  5. Port: 80

  6. Use https: Disabled

  7. Captive Portal Failure: Deny Internet

  8. Automatic URL Whitelisting: Enabled

  9. Server offload: Disabled

  10. Prevent frame overlay: Disabled

  11. Use VC IP in Redirect URL: Disabled

  12. Redirect URL: post-login redirection

aruba_iapvc_kiwire_03.jpg

c). System setting
 

  1. Go to System > General

  2. Virtual Controller IP: iAP Virtual Controller IP address

  3. Dynamic Proxy: RADIUS ticked

aruba_iapvc_kiwire_04.jpg

d). Wireless configuration
 

  1. You are now at the WLAN Settings menu tab

  2. Toggle Primary usage to select Guest on the radio button

  3. Press Next on the menu below to proceed

aruba_iapvc_kiwire_05.jpg

e). Vlan configuration
 

  1. Proceed with the following settings in VLAN menu tab

  2. Toggle Client IP assignment to select Virtual Controller managed

  3. Toggle Client VLAN assignment to select Default

  4. Press Next on the menu below to proceed
     

f). Security setting
 

  1. Proceed with the following settings in the Security menu tab

  2. Set Splash page type to External in the dropdown option

  3. Set Captive portal profile to Kiwire profile

  4. Set WISPr to Enabled in the dropdown option

  5. Set Auth server 1 to select Kiwire profile

  6. Set Reauth interval to 5 and select min. for the interval type

  7. Set Accounting to Use authentication servers in the dropdown option

  8. Set Accounting mode to Authentication in the dropdown option

  9. Set Accounting interval to 5 min

  10. Press Next on the menu below to proceed

aruba_iapvc_kiwire_07.jpg

g). Role setting

  1. Proceed with the following settings in the Access menu tab

  2. Toggle Access Rules to Role-Based in the control ruler

  3. Assign pre-authentication role: Kiwire role profile

  4. Press Finish on the menu below to complete

aruba_iapvc_kiwire_08.jpg

QOS Speed limit configuration

 

  1. Add a Bandwidth Contract Rule Type

aruba_iapvc_kiwire_11.jpg

QOS Speed limit configuration

 

  1. Add a Bandwidth Contract Rule Type

  • Assign Role Assignment Rule with:

  • Attribute: Aruba-User-Role

  • Operator: contains

  • String: Role name

  • Role: bandwidth contract role

aruba_iapvc_kiwire_12.jpg

Kiwire
 

a). Go to account > profile , select profile
 

  1. Set custom profile to the configured user profile

  2. {“Aruba-User-Role”:”value”}

  3. Set Value to assign a role name

bottom of page