I have never set up authentication on my radios, and am now looking into a couple methods. I have a school with 4 radios that I would like to authenticate users to, but need management to be centralized. I was looking into freeradius, but had another wireless tech advise I go with using the hotspot feature. Is it possible to do this on one box that would act as a gateway for all the radios? I need management to be fairly easy, since I am sure the person who will work with this will not be very techie.
I am running Routerboard 532s indoors, using cm9s ad OS v3.0rc13
I was able to get the User Manager working, per the docs, but it seems to be authentication per radio, rather than central management if all radios. Is that accurate, or is there something I am missing in the docs? I prefer to use mac address authentication, if possible.
I assume all the radios have some form of link to the central server.
Enable radius under /ip hotspot profile (for each hotspot server profile) on each of the radios.
Enable radius under /radius on all the radios, making sure to specify ‘hotspot’ as the service and the ip address of the server running user manager as well as a common ‘secret’.
Make sure to disable (safer) or delete all users under /ip hotspot user to ensure that only users entered into the user manager are authenticated. Ensure you’ve backed up all necessary databases first!
All this is under the assumption that you’ve properly setup radius and user manager on the server.