36

User Authentication>Black List Configuration>Delete a User

Using the Configuration Utility (continued)

Delete:

To delete a user, check the box in the Delete column, and then click the

Delete

button.

No notification will appear to confirm the deletion.

User Authentication>Guest User Configuration

Enable:

Guest User

List:

Session Length:

Idle Timer:

Click to view the interactive screen (shown on the next page).

Up

to 10 guest accounts can be defined.

You have the option to limit the guest’s session time from 1-12

hours. By default, there is no limit to a guest’s session.

Select

Enable

to activate the Guest Account feature for visitors.

When enabled, on-line users who become inactive on the network

after a specified period of time will be logged out automatically.

The period can range from 1-1440 minutes. Ten minutes is the

default value.

37

Using the Configuration Utility (continued)

Password:

Enter a password to

activate a guest

account. Up to ten

guest accounts can be

defined.

User Authentication>Guest User List

User Authentication>Roaming Configuration

The system provides Airpath and Pronto Service for roaming. Set up the parameters

in this page to let the user of the Airpath and Pronto Service use the DSA-5100.

Click Apply.

Caution:

The login location is the same as the location of the account’s

origin. For example if the account was opened in Los Angeles, then the

login location is Los Angeles.

3

8

1. Airpath:

User who registered Airpath Wireless's service can login local

public

network via

roaming in. Within system default login page, DSA-5100 provide roaming user with

a link redirected to Airpath's login page. Some free surfing website can also be spe

-

cified in the Free Surfing Area. DSA5100's administrator should contact with your

Airpath's agent about the server's configuration before switched on the feature.

To configure Airpath's, system also allow administrator upload customer preferred

private key and certification.

Airpath Server:

Users can access these websites prior to authentication. This

function is used for advertising or other purposes.

Device Name:

FQDN (Fully-Qualified Domain Name). This is the domain name

of

t

he DSA-5100 as seen on client machines connected on LAN ports. A user on client

machine can use this name to access DSA-5100 instead of its IP address.

Server IP:

IP address of Airpath RADIUS server.

Authentication Port:

Airpath RADIUS server authentication port.

Secret Key:

Airpath RADIUS server secret key.

Accounting Service:

Enable or disable RADIUS accounting service.

Authentication Method:

Select Challenge Handshake Authentication Protocol

(CHAP) or Plain Authentication Protocol (PAP).

Default Group:

Set a group as the default group.

Upload Certificate:

The DSA-5100 allows the user to upload customer certification.

(The key must be in key format and the certificate must be in certificate format.)

3

9

2. Pronto

:

DSA-5100 can also be configured for Pronto Networks and accept roaming users

from Pronto Networks To facilitate DSA-5100 for Pronto registered users, admini-

strator simply enables Pronto Service and enters basic Pronto Network Server

information. DSA-5100 will automatically configure itself and register with Pronto

Networks using these information. DSA-5100 is fully operational with Pronto

Networks upon successful device registration and restart.

HNS Server:

This is the fully specified URL to be used as the end-point for web

service communication.

NAT Server IP:

IP address of Network Address Translation Server

NAT Server Port:

Communication port of Network Address Translation Server

Heartbeat Interval:

This is an integer value specifying the interval in seconds at which

the Agent process will send a Heartbeat message to HNS. This will also be the interval

at which HNS is polled for commands to be executed on the AP. Setting this value to 0

will stop Heartbeat. Setting this value > 0 will force the Heartbeat to occur once every

heartbeat interval seconds, overriding the default value and the recommended value

received from HNS.

Default Group:

Set a group as the default group.

Pronto Server (Free Surfing Area): users can access these websites prior to authenti-

cation. This function is used for advertising or other purposes.

Login page URL:

Pronto login page URL

Login fail page URL:

Pronto login fail page URL

Login successful page URL:

Pronto login successful page URL for feature release

4

0

Using the Configuration Utility (continued)

User Authentication>User Control

Logout Timer:

If a user

is idle and has not used

the network for the

configured time, the

system will automatically

log out the user. The

logout time can be set

from 1-1440 minutes. The

default logout time is 10

minutes.

Multiple Login:

After you have selected this function, the user with the same ID can logon from several

computers.

Friendly Login:

After you select this function, the logon page will automatically obtain the username

and password from the previous authentication logon.

The user no longer needs to

click the button to login. If this option is not selected, the user has to click

Login

and

enter the username and password (which will be saved for 12 hours).

Primary / Backup Server (setting from Pronto):

> Authentication Server IP:

IP address of Pronto RADIUS server

> Authentication Port:

Pronto RADIUS server authentication port

> Authentication Secret Key:

Pronto RADIUS server authentication secret key

> Accounting Server IP:

IP address of Pronto RADIUS accounting server

> Accounting Port:

Pronto RADIUS server accounting port

> Accounting Secret Key:

Pronto RADIUS server accounting secret key

> Accounting Service:

Enable or disable RADIUS accounting service

> Authentication Method:

Challenge Handshake Authentication Protocol

(CHAP) or Plain Authentication Protocol (PAP).