User Manager/Hotspot Example: Difference between revisions

From MikroTik Wiki
Jump to navigation Jump to search
mNo edit summary
Line 1: Line 1:
== Introduction ==  
== Introduction ==  
To make this setup, you should have running [[How to make a HotSpot gateway | Hotspot]] server on the router.  
To make this setup, you should have running [[How to make a HotSpot gateway | Hotspot]] server on the router.  
Let's consider configuration steps for HotSpot and User Manager routers, in order to use User Manager for HotSpot users.
Let us consider configuration steps for HotSpot and User Manager routers, in order to use User Manager for HotSpot users.


== HotSpot configuration ==
== HotSpot configuration ==

Revision as of 12:52, 2 November 2006

Introduction

To make this setup, you should have running Hotspot server on the router. Let us consider configuration steps for HotSpot and User Manager routers, in order to use User Manager for HotSpot users.

HotSpot configuration

  • Set HotSpot to use User Manager for HotSpot server users,
 / ip hotspot profile set hsprof1 use-radius=yes
  • Add radius client to consult User Manager for HotSpot service.
 / radius add service=hotspot address=y.y.y.y secret=123456

'secret' is equal to User Manager router secret. 'y.y.y.y' is the User Manager router address.

  • Note, first local HotSpot database is consulted, then User Manager database.

It means that if you have configuration in '/ ip hotspot user print', users will be able to authenticate in HotSpot using these data. Delete users configuration from '/ ip hotspot print' to stop using local HotSpot database for authentication. To move batch of local HotSpot users to the User Manager database use export/import . Use text editor program to create appropriate file to import local users to the User Manager database.

User Manager configuration

/ tool user-manager customer add login="MikroTik" password="qwerty" permissions=owner
  • Add HotSpot router information to router list,
 / tool user-manager router add subscriber=MikroTik ip-address=x.x.x.x shared-secret=123456

'x.x.x.x' is the address of the HotSpot router, 'shared-secret' should match on both User Manager and HotSpot routers.

  • Add HotSpot user information, it is equal to 'ip hotspot user' when local HotSpot is used for clients
 / tool user-manager user add username=demo password=demo subscriber=MikroTik

We discuss only basic configuration example, detailed information about 'user' menu configuration.

  • To make sure, that client is using User Manager for AAA,
 / ip hotspot active print
 Flags: R - radius, B - blocked
  #    USER          ADDRESS         UPTIME       SESSION-TIME-LEFT IDLE-TIMEOUT
  0 R  00:01:29:2... 192.168.100.2   1m29s

'R' means that client uses User Manager server for AAA services.