top of page

Kiwire 3.0 Administrator      >        Setting up the Wi-Fi Hardware & Configuration       >       Cisco WLC   

Kiwire 3.0 Administrator - Device & Controller Setup Guide

Cisco WLC Configuration for Kiwire hotspot

Prerequisites

None

 

Note:
 

  1. Tested on Firmware 8 and above

  2. Kiwire-hostname or Kiwire-ip can be obtain by contacting our technical support for our cloud customer. For enterprise client the ip will be on premises Kiwire ip address.

  3. Social network hostname list can be obtained from Social network whitelist guide

 

Cisco WLC with Flex Connect AP Configuration
 

  1. Change RADIUS authentication settings.
     

  • Go to SECURITY > RADIUS > Authentication

  • Set Auth Called Station ID Type →  AP MAC Address:SSID

  • MAC Delimiter →  Hyphen

  • Take note that the Server Address (Ipv4/Ipv6) column is displaying the current Kiwire IP address which will be needed later

ciscowlc_kiwire_01_1.jpg

2. Edit the server with the following settings:
​

  • Shared Secret code to be the same key with Kiwire NAS

  • Confirm Shared Secret code in the next input box and proceed

  • Set Server Status to Enabled

  • Set Support for CoA to Enabled

  • Shared Secret Format →  ASCII

ciscowlc_kiwire_01_2.jpg

3.     Configure RADIUS accounting server.

​

  • Go to SECURITY > RADIUS > Accounting

  • Acct Called Station ID Type → System MAC Address

  • MAC Delimiter to Hyphen

ciscowlc_kiwire_02_3.jpg

4.     Edit the RADIUS accounting server with the following settings:
 

  • The Server Address (Ipv4/Ipv6) column is displaying the current Kiwire IP address

  • Set Shared Secret Format →  ASCII

  • Shared Secret code to be the same key with Kiwire NAS

  • Confirm Shared Secret code in the next input box and proceed

  • Set Server Status to Enabled

ciscowlc_kiwire_02_4.jpg

5.     Add access control rules for inbound server.
 

  • Locate Source input row select IP Address

  • Fill in the input field with the Kiwire IP Address and Netmask

  • Destination →  Any

  • Protocol →  Any

  • DHCP →  Any

  • Set Direction →  Inbound

  • Action →  Permit
     

ciscowlc_kiwire_03_6.jpg

6. Add access control rules for outbound server.
 

  • Locate Source input row select Any from the dropdown option

  • Fill in the input field with the Kiwire IP Address and Netmask

  • Destination →  IP Address

  • Protocol →  Any

  • DHCP →  Any

  • Direction →  Outbound

  • Action →  Permit
     

ciscowlc_kiwire_03_7.jpg

7.     Configure the web login page.

​

  • Go to SECURITY > Web Auth > Web Login Page

  • Web Authentication Type →  External (Redirect to external server)

  • External Webauth URL to http://kiwire-ip/login/cisco_wlc

ciscowlc_kiwire_04_8.jpg
ciscowlc_kiwire_04_9.jpg

8.     Go to WLANs > WLANs Step 10 – Edit the CISCO_Kiwire WLAN with the following settings:

​

  • Select General category tab on the right menu

  • Set Profile Name to your desired profile name in the input box

  • Set SSID to a SSID name you had created

  • Status →  Enabled

  • Set Interface/Interface Group(G) to either option based on your captive portal interface

  • Set NAS-ID to your Cisco WLC MAC address

ciscowlc_kiwire_05_10.jpg

9.     Go to WLANs > Security > Layer 3

​

  • Layer 3 Security →  Web Policy

  • Authentication from the list of radio buttons below

  • Preauthentication ACL to choose ACL for IPv4 and WebAuth FlexACL

ciscowlc_kiwire_05_11.jpg

10.     Go to WLANs > Security > AAA Servers
 

  • At the Authentication Servers column select Kiwire server and place a checkmark on enabled

  • At the Accounting Servers column select Kiwire server and place a checkmark on enabled

  • Place a checkmark on Interim Update to enable and set desired time

  • Locate Authentication priority order for web-auth user section and set to user: RADIUS

ciscowlc_kiwire_06_12.jpg

Kiwire Configuration for Cisco WLC
 

Adding NAS into Kiwire
 

  1. Navigate to Devices > Devices > Add Device

  2. Device Type → Controller

  3. Vendor → cisco wlc

  4. Identity → The hostname of cisco wlc

  5. Ip Address → cisco wlc wan ip

  6. Address → optional

  7. Username → Cisco wlc username

  8. Password → Cisco wlc password

  9. Shared Secret Key → Secret key phrase set at Radius

  10. COA Port → 3799

  11. Description → optional

  12. Monitoring Method → optional

  13. Community → optional

  14. Snmp version → optional

  15. Create→ to save

bottom of page