MAC authentication is supported on following routers:
R1900 Series Routers with NetCloud OS release 7.23.20 and later
IBR1700 Series Ruggedized Router with NetCloud OS release 7.23.40 and later
IBR600C Series Router with NetCloud OS release 7.23.40 and later
MAC authentication allows authenticated hotspot users to roam between routers without reauthenticating. MAC authentication checks with the RADIUS server to determine if a user's device has already authenticated to a hotspot. The router then gives the device immediate access to the internet (that is, past the walled garden) without further input required from the user.
MAC authentication requires a RADIUS server configured to save MAC addresses of client devices on the server itself. Make sure to consider all security requirements when using this feature.
MAC authentication requires the following:
RADIUS server configured to support MAC authentication and save MAC addresses of client devices on the server.
Each router's hotspot is set up in RADIUS mode.
All routers point to the same RADIUS server.
All routers have the same SSID.
Local network (for example, Primary LAN or Guest LAN) has DHCP server enabled. See Configuring the Hotspot Services Feature for more information.
Note
The SSID must be the same for all routers to enable roaming between routers. Most client devices use randomized MAC addresses, and if they detect a change in SSID, they will generate a new MAC address requiring the client to go through Captive Portal again.
Update the RADIUS setting to enable MAC authentication. See Configuring Hotspot Services in RADIUS/UAM Mode.