For MA5200F providing WLAN services, how does it send AC NAME and user IP parameters to WEB authentication server?

Publication Date:  2012-07-27 Views:  97 Downloads:  0
Issue Description

   Version: MA5200MA2.10-71XX

MA5200F enables WLAN service, and the product from AsiaInfo functions as web authentication server. Users undergoing WEB authentication should send both ACNAME and user IP to WEB authentication server. Till now, the system prompts the user illegal when performing authentication; from WEB authentication server, it is found that the two parameters are not received, resulting in failure of WEB authentication.

Alarm Information
When a user opens WEB page for authentication, the system prompts it as illegal user

Handling Process

  Send ACNAME and USERIP to WEB authentication server, and MA5200F must be with the following configurations:



1) NAS-SERIAL configured;



[MA5200F-aaa]nas-serialABCDEFG



2) EAP-SIM-PARAMETER enabled



[MA5200F-aaa-domain-test]eap-sim-parameter



3) Force WEB authentication to POST mode



[MA5200F-aaa-domain-default0]web-servermodepost



Root Cause
Check the configurations of MA5200F, and it is found that NAS-SERIAL is configured and WEB authentication is in POST mode, but EAP-SIM-PARAMETER is not enabled, resulting in that two parameters above are not sent to client in forced WEB authentication. So, the client does not send the relevant parameters to WEB authentication server during its authentication, and WEB authentication prompts it as illegal user, leading the authentication to failure.

END