Created with Fabric.js 5.3.0
pfSense Setup

Configure WiZone RADIUS

This section explains how to configure RADIUS authentication, certificates, DNS resolver, and captive portal for WiZone.

Step 1 - Add RADIUS Server

Get your RADIUS configuration values from the WiZone Portal
  1. Log in to the WiZone Portal
  2. Go to the Devices page
  3. Select your device
  4. Copy the RADIUS SERVER IP and SHARED SECRET values
  1. Go to System → User Manager → Authentication Servers → Add.
  2. Configure using values from your WiZone Portal device configuration:
FieldWhere to Find ValueDescription
Descriptive Name(choose any name)A name for this RADIUS configuration (e.g., rad_wizone).
TypeRADIUSSelect RADIUS as the authentication type.
ProtocolPAPAuthentication protocol used by WiZone.
Hostname / IP AddressRADIUS SERVER(Copy from WiZone Portal Device Configuration)
Shared SecretSHARED SECRET(Copy from WiZone Portal Device Configuration)
Services OfferedAuthentication and AccountingEnables both user authentication and usage accounting.
Authentication Port1812Standard RADIUS authentication port.
Accounting Port1813Standard RADIUS accounting port.
RADIUS NAS IP Attribute(use your WG interface IP)Select the WireGuard interface created earlier (e.g., WG_WiZone - 10.255.0.3).

  1. Click Save, then test your configuration.

(Optional) Test Authentication

  1. Go to Diagnostics → Authentication.
  2. Select the newly added server rad_wizone.
  3. Enter the following test credentials:
UsernamePassword
radtestradtest123
A successful test should display the message: (User radtest authenticated successfully.)

Step 2 – Import Certificate

Get your SSL certificate from the WiZone Portal:
  1. In your device configuration page, scroll down to Certificate for captive.wizone.io
  2. Click Copy Certificate to copy the public certificate
  3. Click Copy Private Key to copy the private key
  1. Go to System → Certificates → Certificates → Add/Sign.
  2. Under Method, select Import an existing certificate.
  3. Fill in the details:
FieldWhere to Find ValueDescription
Descriptive Namecaptive.wizone.ioIdentifies WiZone captive certificate
Certificate TypeX.509 (PEM)Format of the imported certificate
Certificate DataCopy CertificateCopy the public certificate from the WiZone Portal.
Private Key DataCopy Private KeyCopy the private key from the WiZone Portal for SSL authentication.

Step 3 – Add DNS Resolver Entry

  1. Go to Services → DNS Resolver → General Settings → Host Overrides → Add.

  1. Add a host record to map captive portal name to local IP:
FieldValue
Hostcaptive
Domainwizone.io
IP Address10.10.252.1

Network Configuration

Configure routing, gateway, WiFi, and DHCP server for WiZone connection.

Configure Captive Portal Zone

This section explains how to configure the Captive Portal Zone, integrate RADIUS MAC authentication, and enable HTTPS login for WiZone.