top of page

Kiwire 3.0 Administrator         >        Setting up the Wi-Fi Hardware & Configuration       >       Huawei   

Kiwire 3.0 Administrator - Device & Controller Setup Guide

Steps to integrate Kiwire and Huawei WAC

System file version: V200R021C00SPC100

Patch file version: V200R021SPH1b0

1. Configure user ACL

Screen Shot 2023-09-12 at 5.10.54 PM.png
  • Configuration → Security → ACL

  • Click on “User ACL Settings” tab

Screen Shot 2023-09-12 at 5.15.09 PM.png
  • Click “Create”

  • Destination IP: 0.0.0.0/0

  • Wildcard: Kiwire IP address

  • Action: Permit

  • Protocol: TCP(6)

2. Modify RADIUS and Authorization server profile

Screen Shot 2023-09-12 at 5.18.54 PM.png
  • Configuration → Security → AAA

Screen Shot 2023-09-12 at 5.28.52 PM.png
  • Click on “RADIUS” tab → RADIUS server profile → Create

Screen Shot 2023-09-12 at 5.30.49 PM.png
  • Profile name: Kiwire

  • Mode: Active/Standby mode

  • NAS IP address: Use an AP’s IP address

  • Profile default shared key: Same key with Kiwire NAS shared secret key

Screen Shot 2023-09-12 at 5.42.41 PM.png
  • Click “Create server”

  • IP address: Kiwire IP address

  • Shared key: Same key with Kiwire NAS shared secret key

  • Checked on “Authentication” and set port number to 1812

  • Checked on “Accounting” and set port number to 1813

Screen Shot 2023-09-13 at 2.20.13 PM.png
  • On “Authorization Server Template” → Create

Screen Shot 2023-09-13 at 2.25.05 PM.png
  • Authorization server IP address: Kiwire IP address

  • Profile name: choose RADIUS server that has been created

  • Key: Same key with Kiwire NAS shared secret key

3. Modify authentication server

Screen Shot 2023-09-13 at 3.34.22 PM.png
  • Click on “Portal Server Global Configuration”→ External portal

Screen Shot 2023-09-13 at 3.36.21 PM.png
  • Tick “HTTP protocol”

  • HTTP interoperation mode: HTTPS-based/HTTP

Screen Shot 2023-09-13 at 3.38.53 PM.png
  • Go to “Portal Authentication Server List” → Create

Screen Shot 2023-09-13 at 3.41.09 PM.png
  • Server name: Kiwire

  • Server IP: Kiwire IP→click “+”

  • Protocol type: HTTP

  • Shared key: Same key with Kiwire NAS shared secret key

  • URL: http://[kiwire-ip]/login/huawei-wlc

Screen Shot 2023-09-13 at 3.43.06 PM.png
  • Click on “URL Option Settings”

  • Tick System name keyword/System name: nas-id/[WAC Model/WAC hostname]

  • Tick AP-IP keyword: ap-ip

  • Tick User access URL keyword: redirect-url

  • Tick User IP address keyword: user-ip

  • Tick AP-MAC keyword: ap-mac

  • Tick User MAC keyword: user-mac

  • Tick SSID keyword: ssid

  • Tick Login URL keyword/Login URL: login-url/http://[controller-ip]:8000

  • MAC address format: Normal

  • Separator: Colon “:”

Screen Shot 2023-09-13 at 3.44.59 PM.png
  • Click on “Parameter Parsing Configuration”

  • Original URL keyword: dst

  • Login success response: Redirect to the original

4. Modify portal profile

Screen Shot 2023-09-13 at 3.47.52 PM.png
  • Configuration→AP Config→Profile

Screen Shot 2023-09-13 at 3.50.04 PM.png
  • AAA→Authentication Profile→Create

Screen Shot 2023-09-13 at 4.32.29 PM.png
  • Profile name: Kiwire → OK

Screen Shot 2023-09-14 at 10.07.09 AM.png
  • Click “Apply”

Screen Shot 2023-09-14 at 10.27.12 AM.png
  • Click “+” → Portal Profile

  • Portal authentication: External portal server

  • Interoperation protocol: HTTP

  • Primary Portal server group: choose Kiwire

  • Click “Apply”

5. Modify RADIUS server profile

Screen Shot 2023-09-14 at 10.29.52 AM.png
  • Click “RADIUS Server Profile”→choose Kiwire

  • Click “Apply”

6. Modify Authentication Scheme

Screen Shot 2023-09-14 at 10.31.31 AM.png
  • Click “Authentication Scheme”→choose “radius”

  • First authentication: RADIUS authentication

7. Configure Accounting Scheme

Screen Shot 2023-09-14 at 10.34.37 AM.png
  • Under “AAA”→choose “Accounting Scheme”

  • Click “Create”

Screen Shot 2023-09-14 at 10.37.56 AM.png
  • Profile name: Kiwire

Screen Shot 2023-09-14 at 10.39.33 AM.png
  • Accounting mode: RADIUS accounting → click “Apply”

Screen Shot 2023-09-14 at 10.41.11 AM.png
  • AAA→Authentication Profile → Kiwire→click “+” → click “Accounting Scheme”

  • Choose “Kiwire” → click “Apply”

8. Configure Authentication Profile for WLAN

Screen Shot 2023-09-14 at 10.50.16 AM.png
  • Click “Wireless Service” → VAP Profile → Create

Screen Shot 2023-09-14 at 10.58.29 AM.png
  • Profile name: Kiwire

  • Click “OK”

Screen Shot 2023-09-14 at 11.00.12 AM.png
  • Click “+” → Click “Authentication Profile” → choose “Kiwire”

  • Click “Apply”

9. Configure Portal Profile for WLAN

Screen Shot 2023-09-14 at 11.06.45 AM.png
  • Click “+” → Portal Profile → choose “Kiwire”

  • Click “Apply”

10. Configure RADIUS Server Profile for WLAN

Screen Shot 2023-09-14 at 1.39.22 PM.png
  • Click “RADIUS Server Profile” → choose “Kiwire”

  • Click “Apply”

11. Configure Authentication Profile for WLAN

Screen Shot 2023-09-14 at 1.42.59 PM.png
  • Click “Authentication Scheme” → choose “radius”

  • First authentication: RADIUS authentication

  • Click “Apply”

12. Modify Forwarding Mode

Screen Shot 2023-09-14 at 1.45.03 PM.png
  • Click “Kiwire”

  • Forwarding Mode: Tunnel

  • Click “Apply”

13. Modify Authentication-free Rule Profile

Screen Shot 2023-09-14 at 1.46.26 PM.png
  • Click “Authentication-free Rule Profile” → choose “default_free_rule”

  • Click “Create

Screen Shot 2023-09-14 at 1.48.11 PM.png
  • Rule ID: 1

  • Source IP address: none

  • Destination IP address: specified (8.8.8.8)

  • Mask: 24(255.255.255.0)

  • Protocol type: none

  • Click “OK”

Screen Shot 2023-09-14 at 1.55.37 PM.png
  • Create another rule

  • Rule ID: 2

  • Source IP address: none

  • Destination IP address: specified (Kiwire IP)

  • Mask: 24(255.255.255.0)

  • Protocol type: none

  • Click “OK”

Kiwire Configuration for Huawei controller

1. Adding NAS into Kiwire

Screen Shot 2023-09-14 at 1.58.57 PM.png
  • Click “Devices” → Devices → Add Device

Screen Shot 2023-09-14 at 2.00.44 PM.png
  • Device Type: Controller

  • Vendor: Huawei

  • Identity: WAC name (AC6508)

  • IP Address: WAC IP Address

  • Username/Password: Username and password for WAC

  • Shared Secret Key: Kiwire NAS shared secret key

  • COA Port: 3799

  • Click “Create”

bottom of page