HI,all
we setup an hotspot server on RB751G successfully with external login server. But …It’s not perfect.
By now ,the workflow of our hotspot like this:
1/ we embeded an username/password into router ,i.e demouser/demopass;
2/ following the manuall ,we redirect user login page to external server (http://myserver/login.php). The customer input their username and password to complete the Authentication.
but ,the customer username and password is completely different with embed one. AND,we didn’t use RADIUS solution.
3/ If customer input right information ,our server will send POST to http://router/login with username = demouser, password = demopass ( embed user in router) .
This is work ,but we think it’s not perfect and will cause security issue.
In future ,we will manage hundreds APs in our network,but needn’t billing .So ,we don’t want radius server for Authentication.
So, we want to " Authentication once ,Access everywhere" (but only one internet gateway , we know it’s not possible with multi gateway situation).
And also means , we don’t want store any user information on any Device, even “demouser”.
Is there any solution for that? If there’s a solution just tell Router " i’m the super user , the customer is Ok. "
Any help will be appreciate .
Raymond Meg