[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Captive-portals] Questions about PvD/API

To: David Bird <[email protected]>, Tommy Pauly <[email protected]>
Subject: Re: [Captive-portals] Questions about PvD/API
From: Erik Kline <[email protected]>
Date: Tue, 15 Aug 2017 17:19:12 -0700
Archived-at: <https://mailarchive.ietf.org/arch/msg/captive-portals/KdRLuBe4RKGWBaKkIxXHTQ9lPnM>
Authentication-results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Cc: [email protected], "Eric Vyncke (evyncke)" <[email protected]>
Delivered-to: [email protected]
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=kLd2eVJlHkR+2pu6fR88xr0zRyMPGqm58AsTXa/HpDU=; b=AmVVS0cD0q3bsP+7UjzoxDjY7AuIDc619jmLqiU0Xefr9Fn+C/Q+wnf1mq/TlnCyEL NIVg4a+Qc75JEVv0puz+IwIBw20w+/O4PjMU+nmMtflkUvf/+CxETZBMjPowYMxUfFka 9wRi2tKlnQVkYQIVCH0MLBec6aCojkkTlwrrzr/FsG4+mceqqTnMXu22WgVDEiD3kVm/ g/Gi1ZXOhpj4Q/B9aX/qmiESDVLsVIKBivkN9/iVdA+Q/Gw0ZL6+TaM1MqUaZ6J8yDcR TgLrMPEYgqcedx3hMTqeyGDIK03GwQWkCgMGuo2Jljrs4OkQzk58WE80n4CmgjqNgyGk CvoA==
In-reply-to: <CADo9JyU+XGYFWdNeXOBw1O43Pjyn0jZhGxDTb7VbLF+Jg4Xj4w@mail.gmail.com>
List-archive: <https://mailarchive.ietf.org/arch/browse/captive-portals/>
List-help: <mailto:[email protected]?subject=help>
List-id: Discussion of issues related to captive portals <captive-portals.ietf.org>
List-post: <mailto:[email protected]>
List-subscribe: <https://www.ietf.org/mailman/listinfo/captive-portals>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/options/captive-portals>, <mailto:[email protected]?subject=unsubscribe>
References: <CADo9JyU+XGYFWdNeXOBw1O43Pjyn0jZhGxDTb7VbLF+Jg4Xj4w@mail.gmail.com>

Randomly selecting Tommy and Eric so this bubbles up in their inbox.

On 2 August 2017 at 10:36, David Bird <[email protected]> wrote:
> Could an author of PvD help me understand the following questions for each
> of the diagrams below I found on the Internet -- which represent some
> typical hotspot configurations out there...
>
> - Where would the API reside?
>
> - Who 'owns' the API?
>
> - How does the API keep in-sync with the NAS? Who's responsible for that
> (possibly multi-vendor, multi-AAA) integration?
>
> 1) Typical Hotspot service company outsourcing:
> http://cloudessa.com/wp-content/uploads/2013/08/shema-CaptivePortalSolution_beta2b.png
>
> 2) Same as above, except venue owns portal:
> http://cloudessa.com/wp-content/uploads/2013/07/solutions_hotspots-co-working-cloudessa_2p1.png
>
> 3) Now consider the above, but the venue has more roaming partners and
> multi-realm RADIUS setup in their Cisco NAS:
> http://www.cisco.com/c/en/us/td/docs/wireless/controller/8-3/config-guide/b_cg83/b_cg83_chapter_0100111.html
> describes many options -- including separate MAC authentication sources,
> optional portals for 802.1x (RADIUS) authenticated users, and so much
> more...
>
> "Cisco ISE supports internal and external identity sources. Both sources can
> be used as an authentication source for sponsor-user and guest-user
> authentication."
>
> Also note this interesting article:  the section Information About Captive
> Bypassing and how it describes how to avoid Apple captive portal
> detection!!! "If no response is received, then the Internet access is
> assumed to be blocked by the captive portal and Apple’s Captive Network
> Assistant (CNA) auto-launches the pseudo-browser to request portal login in
> a controlled window. The CNA may break when redirecting to an ISE captive
> portal. The controller prevents this pseudo-browser from popping up."
>
>
>
> _______________________________________________
> Captive-portals mailing list
> [email protected]
> https://www.ietf.org/mailman/listinfo/captive-portals
>

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

Follow-Ups:
- Re: [Captive-portals] Questions about PvD/API
  - From: Lorenzo Colitti <[email protected]>
- Re: [Captive-portals] Questions about PvD/API
  - From: David Bird <[email protected]>

References:
- [Captive-portals] Questions about PvD/API
  - From: David Bird <[email protected]>

Prev by Date: [Captive-portals] Questions about PvD/API
Next by Date: Re: [Captive-portals] Questions about PvD/API
Previous by thread: [Captive-portals] Questions about PvD/API
Next by thread: Re: [Captive-portals] Questions about PvD/API
Index(es):
- Date
- Thread