4.6.2. Deployment Steps
To ensure that the use case that we are deploying works correctly, it is necessary to carefully follow the steps we indicate. These may change depending on the requirements and needs in our case.
The mandatory and optional steps are detailed below. Remember it will depend on your specific case.
Architecture
Architecture: The first step is the deployment of the nodes needed for this use case. Here we will find the necessary information related to the architecture of the use case. The detailed explanation of the deployment of each one of the nodes will be found in Deployment and basic configuration
Configuration
Network Device Radius permissions: To allow network devices to make RADIUS requests against OpenNAC Enterprise, it is necessary to configure the permissions.
Depending on the type of network devices used for deployment:
Wired NetDev Configuration: If you are deploying the captive portal with wired type network devices (Switch), it will be necessary to carry out the pertinent configuration.
Wireless NetDev Configuration: If you are deploying the captive portal with wireless type network devices (AP/WLC), it will be necessary to carry out the relevant configuration.
Administration
Create Network Devices in the CMDB: Within the CMDB it will be necessary to register the network devices and their configurations so that they work correctly with OpenNAC Enterprise.
Create Captive Workflow: Captive portal workflows define the process that a user must go through in order to access services. These may include verification by email or sms, saml, access notifications, ON Agent installation, etc.
Create Captive Domain: Captive domains allow us to group various workflow to give users access flexibility depending on access levels, types of authentication, etc.
Create Captive Instance: The instance is the highest point in the configuration of a captive portal. It defines the characteristics and the location of the portal itself. This includes the address of the server that acts as the captive portal, the domain used, the theme, etc.
Depending on the type of network devices used for deployment:
The Captive Portal access requires a minimum policy configuration in OpenNAC Enterprise to be able to manage records and control permissions. The policies can be different depending on the type of flow and network device that we are using:
- Optional:
Manage Captive Sponsors: In some captive portal flows, validation of access by the “sponsors” is required. We must indicate which are these sponsors in case of using this functionality.
Create Captive Theme: Optionally, with the use of themes, we can customize the aesthetic appearance of the captive portals that we display (images, texts, html formats, etc.)
Operation
Operation : In this step we will start operating the use case and checking that all the functionalities are working as expected. If we find unexpected behavior, we can go to the troubleshooting step to find and fix the issue.
Monitoring
Monitoring : At this point we will see how the data is being ingested and saved in ON Analytics. To check this we can open the different visualizations available for this use case.
Troubleshooting
Troubleshooting : The first time the use case is tested after deployment, some problems may appear. In this section we will see how to analyze them and look for possible failures to correct them. If any of the problems that may appear can be found in the Platform Administration -> Troubleshooting guide.