Guest access – Ruckus ZoneDirector

In this topic, you will learn how to configure Ruckus ZoneDirector to work together with the Portnox™ Cloud captive portal for guest user authentication.

Before you begin configuring your access point, you must configure the guest network in Portnox Cloud and note down the values of the fields: IP (for walled garden), Captive Portal URL, and Shared secret.

Warning: This topic contains documentation prepared by our support agents more than 12 months ago. It may not cover the newest models or the newest interfaces of NAS devices. We’re working on bringing you updated documentation for NAS devices in the near future. However, the methods of setting up third-party devices may still change when the manufacturers update their firmware or release new models. Therefore, to get the most accurate and current configuration guidance, we strongly recommend that you refer to the documentation provided by the manufacturer. If you need help setting up newer equipment that does not match the description in this topic, contact us at support@portnox.com.
  1. Create a new RADIUS authentication server by navigating to Configure > AAA Servers and clicking on Create New.

    1. Specify a Name for the RADIUS authentication server.
    2. In Type, select RADIUS.
    3. Set Request Timeout to 20 seconds.
    4. Enter the details of the Portnox Cloud RADIUS server that you created earlier: the IP Address, the Port (authentication port), and the Shared Secret.
  2. Create a new RADIUS accounting server by navigating to Configure > AAA Servers and clicking on Create New.

    1. Specify a Name for the RADIUS accounting server.
    2. In Type, select RADIUS Accounting.
    3. Set Request Timeout to 20 seconds.
    4. Enter the details of the Portnox Cloud RADIUS server that you created earlier: the IP Address, the Port (accounting port), and the Shared Secret.
  3. Optional: Repeat the two steps above for the other Portnox Cloud RADIUS server, if needed.
  4. Configure the Ruckus Northbound Portal Interface:

    1. Navigate to Configuration > Network Management and activate the Enable northbound portal interface support checkbox.
    2. In the Password field enter the Shared secret that you obtained when you configured the guest network in Portnox Cloud and click on Apply.
      Note: Do not confuse the captive portal’s shared secret with the RADIUS server’s shared secret. These are two different values.
  5. Add Ruckus Hotspot Service to control guest user access by navigating to Services & Profiles > Hotspot Services and creating a new hotspot service.

    1. In the Login Page field, enter the Captive Portal URL that you obtained when you configured the guest network in Portnox Cloud.
    2. In the Authentication Server field, select the RADIUS authentication server that you configured earlier.
    3. In the Accounting Server field, select the RADIUS accounting server that you configured earlier.
    4. In the Walled Garden section, add the IP (for walled garden) that you obtained when you configured the guest network in Portnox Cloud.
  6. Configure the Ruckus guest wireless SSID to control guest user access by navigating to Configuration > WLANs and clicking on Create New.

    1. Enter the guest network ESSID.
    2. In Type, select Hotspot Service (WISPr).
    3. In Method, select Open.
    4. In Encryption Options, select None.
    5. In Hotspot Services, select the hotspot service that you created earlier.
    6. Click on OK to save your settings.