Follow the steps below to configure iotroam on Huawei WLAN controller.
Configuration -> AP Config -> Profile -> Wireless Service
Create VAP Profile. This profile will eventually be linked to the AP radios on which iotroam will be broadcast.
If necessary, adjust the default values of the VAP profile. The specific VLAN will eventually be passed in a RADIUS attribute from iotroam. The "Service VLAN ID" in the VAP profile can be useful for testing purposes.
Create profiles with default configuration. For clarity, all profiles are named "iotroam". These are then linked to the VAP Profile "iotroam". After this, the configuration for each profile is adjusted where the most important settings needed for iotroam to work are highlighted.
If the WLAN controller communicates directly with iotroam's RADIUS servers then no "Accounting Scheme" is required and the 2 steps below can be skipped.
Link all created "iotroam" profiles to the "iotroam" VAP profile.
Under "RADIUS Server Profile" the settings for the RADIUS servers can be configured.
If the WLAN controller communicates directly with iotroam's RADIUS servers, then the server data can be configured in this profile.
If the in-house RADIUS server is used to send traffic to the iotroam RADIUS servers (proxy), then the data of this internal RADIUS server must be configured in the "RADIUS Server Profile". The advantage of this method is that more log data is available and RADIUS accounting can be used.
The IP addresses of the iotroam RADIUS servers can be found in the iotroam portal on the home screen of the admin area.
After linking all required profiles to iotroam's VAP Profile and iotroam's Authentication Profile, specific settings can be set for each profile. The main settings needed for iotroam are highlighted in yellow.
Assuming inter-client traffic is desired, no user isolation is applied.
(If a profile contains only the default settings then the profile is not visibly associated with the VAP profile. This 801.1X Profile actually contains only the default settings and is visible in the image only because an Advanced setting was manually entered with the same value as the default value "2").
