User’s Guide
Chapter 4 – User Pages
Parameters Sent to WAS
Parameters that are sent to the WAS for user authentication pages redirection:
parameter
description
nasid
NAS server ID value. Can be changed or specified under the
network
interface | RADIUS | RADIUS settings
menu
nasip
P-560 WAN IP address. Can be changed or specified under the
network
interface | configuration | interface configuration
menu.
cientip
Client IP address. Cannot be defined manually.
mac
Client MAC address. Cannot be defined manually.
ourl
Initial URL where not authorized client enter to his/her browser and tries to
browse. After authentication the user is redirected in this URL (optional).
sslport
HTTPS port number of AC (by default: 443). Not configurable.
lang
Parameter "accept-language" from client browser request (optional).
In order to logon, log-off or get user status WAS submits POST request to the following URLs:
1. Remote user logon
Script name:
pplogon.user
Parameters (all parameters are required):
secret
shared secret, to protect page from accidental use
ip
IP address of user to be logged on.
username
Username of the user to be logged on.
password
Password of the user to be logged on.
Script call example:
https://P560/pplogon.user?secret=sharedSecret&ip=<user_IP_address>&username
=userName&password=UserPassword
Script produces XML output:
<logon>
<status>Ok</status>
<error>0</error>
<description>User logged on.</description>
<replymessage>Hello user!</replymessage>
</logon>
Response status and error codes:
status
error
description
OK
0
User is logged on.
Not checked
100
Logon information not checked.
No IP
101
No user IP address supplied.
No username
102
No username supplied.
Disabled
103
Remote authentication is disabled.
Bad secret
104
Incorrect shared secret supplied.
No password
105
No user password.
OK
110
User already logged on.
Failed to authorize
111
Failed to authorize user.
Bad password
112
Incorrect username or/and password.
Gemtek Systems
Page 35
