How to configure External Guest Authentication for Mi-WiFi?

This Article explains the steps that are required for wireless guest user redirection to an external authentication server provided by Mi-WiFi. Mi-WiFi is a SAAS(Software as a Service) platform which provides external guest authentication for the wireless guest users connected to SonicWall.

Supported Access Points:

Mi-WiFi Works with most of the reputed wireless vendors such as Aruba,Ubuiqity,Ruckus,SonicWall and MikroTik access points connected to SonicWall Firewall Devices.

How It Works:

Guest users connecting to the wireless network behind SonicWall are redirected to an external portal https://portal.mi-wifi.com hosted by Mi-WiFi for External guest Authentication. The Guest Redirection uses Lightweight Hotspot Messaging(LHM) protocol that uses TCP port 4043.

Resolution for SonicOS 7.X

This release includes significant user interface changes and many new features that are different from the SonicOS 6.5 and earlier firmware. The below resolution is for customers using SonicOS 7.X firmware.

1. Login to the SonicWall Management Interface.
2. Click Object | Match Objects | Addresses and create an FQDN address object for portal.mi-wifi.com
   
   
   
   
3. Click Object | Zones
4. Edit Zone assigned for the Guest Wi-Fi Users(LAN or WLAN or Custom Zone).
5. Under Guest Services enable the options "Enable Guest Services" and "External Guest Authentication"
   
   
   
   
6. Click Configure|Guest Services |General and set Client Redirect Protocol to HTTP with the following web server settings as shown below
   
   
   
   
7. Click Auth Pages tab and configure the options exactly as shown below
   
   
   
   
8. Click Advanced and configure the options as shown below and click OK.
   
   
   
   
9. Once the above settings gets configured sonicwall creates a Auto added NAT policy and WAN to WAN Access rule to allow TCP port 4043 as shown below
   
   
   
   
   
   
10. Guest users are then redirected to the External Mi-WiFi Portal as shown below.
    
    
    

Resolution for SonicOS 6.5

This release includes significant user interface changes and many new features that are different from the SonicOS 6.2 and earlier firmware. The below resolution is for customers using SonicOS 6.5 firmware.

1. Login to the SonicWall Management Interface.
2. Click Manage in the top navigation menu.
3. Click Network | Zones.
4. Edit Zone assigned for the Guest Wi-Fi Users(LAN or WLAN or Custom Zone).
5. Under Guest Services enable the options "Enable Guest Services" and "External Guest Authentication"
   
   

      6. Click Configure|General and set "Client Redirect Protocol" to "Http" with the following web server settings as shown below

       7. Click Auth Pages tab and configure the options exactly as shown below

      8. Click Advanced and configure the options as shown below and click OK.

      9. Once the above settings gets configured sonicwall creates a Auto added NAT policy and WAN to WAN Access rule to allow TCP port 4043 as shown below

      10. Guest users are then redirected to the External Mi-WiFi Portal as shown below.