Hotspot authentication modes

During hotspot configuration, you select one the following authentication modes for the hotspot:

• Click-through: Requires each user to accept the terms and conditions. The sample HTML page included with your TX64 device for click-through authentication is terms.html.

  See Create a new hotspot for information about configuring hotspot for click-through authentication.

• Local shared password: Requires each user to enter a password. This password is validated locally on the TX64 device, and the password is the same for all users. The sample HTML page included with your TX64 device for local shared password authentication is password.html.

  See Configure the hotspot to use local shared password authentication for information about configuring hotspot for local shared password authentication.

• RADIUS shared password: Requires each user to enter a password. This password is validated by an external RADIUS server, and the password is the same for all users. The RADIUS server should be "white listed" by including it in the Walled garden > Allowed domains or Walled garden > Allowed subnets setting for the hotspot, which allows unauthenticated hotspot clients to access the server for authentication. The sample HTML page included with your TX64 device for RADIUS shared password authentication is password.html.

  See Configure the hotspot to use RADIUS shared password authentication for information about configuring hotspot for RADIUS shared password authentication.

• RADIUS users: Requires each user to enter username and password credentials that are established on an external RADIUS server. The credentials are validated by the RADIUS server. The RADIUS server should be "white listed" by including it in the Walled garden > Allowed domains or Walled garden > Allowed subnets setting for the hotspot, which allows unauthenticated hotspot clients to access the server for authentication. The sample HTML page included with your TX64 device for RADIUS shared password authentication is login.html.

  See Configure the hotspot to use RADIUS users authentication for information about configuring hotspot for RADIUS users authentication.

• HotspotSystem: Requires each user to be authenticated by HotspotSystem, a cloud hotspot service that supports various free and paid authentication methods, including social media account, SMS, voucher, and PayPal. Domains needed for HotspotSystem authenticatiuon, payment options, and social media login should be "white listed" by including them in the Walled garden > Allowed domains or Walled garden > Allowed subnets setting for the hotspot, which allows unauthenticated hotspot clients to access them for authentication. When HotspotSystem is selected for the authentication mode, the browser is redirected to the HotspotSystem web page.

  See Configure the hotspot to use HotspotSystem authentication for information about configuring hotspot for HotspotSystem authentication.

Prior to authentication, a hotspot client that attempts to make an HTTP request to any domain other than those included in white-listed sites in the Walled garden > Allowed domains or Walled garden > Allowed subnets settings will be redirected to the login webpage. HTTPS requests will time out, because the hotspot cannot provide a valid SSL certificate for the requested domain. Requests made via any other protocol will also time out. Most operating systems will detect this scenario and automatically notify users to open the login page in a web browser.