New version of NAICE now supports Captive Portal

The improvement of the NAICE access management system continues. Previous releases added support for key features that made the program a convenient tool for controlling and managing access to network resources and equipment.

Support for TACACS+ became the main new feature of this year making it easier to configure access rights and privilege levels for executing commands, and also made it possible to maintain a detailed auditing of all administrator connections.

An important feature was implemented in the current version 0.9, which is the Captive Portal service. This tool provides controlled access of temporary users to a Wi-Fi network of a company through an isolated segment. Captive Portal makes it possible to effectively manage temporary access of guests, partners and clients to an enterprise Wi-Fi network. The service provides a secure and convenient way to connect third-party devices while minimizing risks and maintaining control over the network.

The system offers flexible authentication scenarios, allowing access via SMS, internal database, LDAP or Microsoft Active Directory. Administrators can also customize the appearance of the login page: the built-in designer allows them to quickly create new portals and adjust their design to the corporate style.

User authorization is performed via HTTPS, then the client automatically gains access to the network using the RADIUS CoA (Change of Authorization) mechanism. When using SMS authentication, integration with external gateways for sending one-time codes is possible. Additionally, user account lifetime can be configured for forced reauthorization on the portal.

Apart from the built-in Captive Portal, the NAICE system offers the following features:

• Support for multiple vendors;
• Centralized management via web-interface;
• Support for Astra Linux and RedOS operating systems;
• Active-Hot Standby clustering;
• Integration with Microsoft Certificate Authority;
• Access rights differentiation based on VLAN and ACL;
• Logging of network connection events;
• Authentication and authorization via RADIUS, 802.1x (EAP-TLS, EAP-PEAP) and MAB for devices without 802.1x support;
• Integration with enterprise databases via Microsoft Active Directory and LDAP connection.

With the release of version 0.9, NAICE covers the necessary requirements for a comprehensive solution for controlling and managing access to network resources of enterprise customers who have not only wired LAN, but also a wireless network divided into public and corporate one.

The solution is available for deployment and free testing in your infrastructure. If you have any questions, please email us at foreign.sales@eltex-co.ru.