I am working (volunteering) with a small non profit that currently has 7 desktop computers and 4 laptops. I am facing a new problem and not sure how to proceed.
This non profit has a number of guest users/visitors, which would like to connect to the wifi network to be able to get internet access, but they dont want an "open" wifi access point. They want user level authentication.
Here are the basic requirements:
- Each user would be given a user name (preferably there email) and password
- The secretary of the organization can easily add or remove users to the list; this is to facilitate guest users as they arrive and level.
- Employees dont have to login to the system, they are automatically logged in.
I know how to create a secure system that uses certificates to auto login the employees, but what system do people recommend to manage guest access to the wifi network? With the critical point being the user management has to be drop dead simple!
Best Answer
Pfsense will do that for you. The feature in pfsense is called Captive Portal for your guests. The user list is either managed via a Radius server or a local database (makes it really simple to setup). For employees, you just have to enter the MAC of their PC and they won't be prompted for username/password.
This indeed does require you to install a server but pfsense can really fit on any hardware.