When you configure a user group for an Enterprise 802.1X SSID, the password database always resides in the cloud. For a user group for a Private Pre-Shared Key (PPSK) SSID, the password database can reside in the cloud or local on all SSID APs. The following settings are available when you configure a cloud-based user group.
Setting | Description |
---|---|
User Group Name | Type a name for the user group. |
Password DB Location | Select Local to store login credentials on all APs using this SSID. You must select Local to create a private client group in this user group. |
Password Type | Select PPSK or RADIUS. |
Description | Type an optional Description for the user group. |
Set the maximum number of clients per private PSK | (Optional) Available only for the PPSK password type. Select Set the maximum number of clients per private PSK to set per-user PPSK limits for different users in the same wireless network (SSID). Because you can set per-user PPSK limits for different users in the same SSID, you no longer need to configure an SSID for each user group (for instance, with three devices per employee). You can set multiple per-user PPSK limits can be set in the same (SSID). Range: 0-15, 0 = no limit |
PCG Use | (Optional) Available only for the PPSK password type. Select Enable use for Private Client Group. |
PPSK Classification Use | (Optional) Available only for the PPSK password type. Select Enable user for PPSK Classification only to create a single SSID and distribute unique guest passwords for each location. Use this option with a Private Pre-Shared Key SSID Authentication network policy. See Configure Private Pre-Shared Key SSID Authentication for more information. |
Password Settings | |
Generate Password Using | (Required) Select any combination of characters that you want to include in the password: Letters, Numbers, and Special Characters. |
Enforce the use of | Select one of the password enforcement options from the menu:
|
PSK Generation Method | Available only for the PPSK password type. Select Password Only or User String Password from the menu. With the User String Password option, you can include the user name and a string of characters in front of the generated Private PSKs. If the password generation method is Password Only, then the PPSK password can be between eight and 63 characters. If the generation method is User + String + Password, the maximum passphrase for the Private PSK can be between eight and 31 characters. |
Generated Password Length | Select the length for automatically-generated passwords for this user group. Range: 8–63 |
Concatenating String | Available only for the User String
Password PSK Generation Method. Range: 0–8 Use this string to generate PPSKs as User name + Character String + Password. For example, if you enter Extreme, as the string, then the generated PPSKs are <User name>Extreme<Password>. |
Expiration Settings | |
Require Authentication After | To force re-authentication after a session is inactive for a period of time, select Require Authentication After and enter a time in the minutes field. |
Account Expiration | Select an option from the menu:
|
Action at Expiration | Not available for accounts set to never expire. Select Access Rejected to have ExtremeCloud IQ block users from renewing their credentials. Select Show Expiration Message to have ExtremeCloud IQ present to users an on-screen prompt that they can use to renew their credentials. |
Delivery Settings | |
Deliver Access Key by | Select the methods for delivery of the access key. Select one or
both:
Use the menus to select an email template for each method. |