Ubiquiti UniFi

This page explains different configuration scenarios for Ubiquiti UniFi Controller with IronWifi - Captive Portal and WPA-Enterprise with external RADIUS authentication and accounting.

Configuring UniFi Controller for external Captive Portal authentication

  1. Sign in to the IronWifi Console
  2. Click on Networks and add a Network
  3. Click on Captive Portals and add a Captive Portal
  4. In the Captive Portal settings, add Authentication Provider - can be Anonymous for testing purpose
  5. Enter Controller URL, username (administrator privileges) and password. IronWifi servers need to be able to directly connect to  your Controller (SW, Cloud Key) to authorize  connecting devices. Controller URL is usually in format like this - https://your_public_static_ip:8443. Make sure it is the PUBLIC IP address and it's reachable through the Internet (not internal address like 192.168.*.*, 172.16.*.*, or 10.*.*.*). You might need to configure port forwarding on your Internet router and firewall. If you are not sure, please consult with your ISP provider.
  6. Sign in to your UniFi Controller
  7. In Wireless network settings change the Security to Open and enable Guest Services
  8. Navigate to Guest services settings
  9. Select External Captive Portal
  10. Enter in the IP address input field
  11. Check the redirect using hostname checkbox and enter the Splash page URL from Captive Portal page in IronWifi Console
  12. Add to the Pre-Authorization Access list
  13. Apply settings and try with your phone or computer




Configuring UniFi Controller for WPA-Enterprise

If you wish to have a WPA-Enterprise protected network without Captive Portal, navigate to Wireless Networks and change Security to WPA-Enterprise. Enter information about the RADIUS servers, IP addresses, ports and shared secrets are available in IronWifi Console -> Networks.