Configure WiZone RADIUS

Step 1 - Add RADIUS Server

1. Go to System → User Manager → Authentication Servers → Add.
2. Configure using values from your WiZone Portal device configuration:

Field	Where to Find Value	Description
Descriptive Name	(choose any name)	A name for this RADIUS configuration (e.g., rad_wizone).
Type	RADIUS	Select RADIUS as the authentication type.
Protocol	PAP	Authentication protocol used by WiZone.
Hostname / IP Address	RADIUS SERVER	(Copy from WiZone Portal Device Configuration)
Shared Secret	SHARED SECRET	(Copy from WiZone Portal Device Configuration)
Services Offered	Authentication and Accounting	Enables both user authentication and usage accounting.
Authentication Port	1812	Standard RADIUS authentication port.
Accounting Port	1813	Standard RADIUS accounting port.
RADIUS NAS IP Attribute	(use your WG interface IP)	Select the WireGuard interface created earlier (e.g., WG_WiZone - 10.255.0.3).

3. Click Save, then test your configuration.

(Optional) Test Authentication

1. Go to Diagnostics → Authentication.
2. Select the newly added server rad_wizone.
3. Enter the following test credentials:

Username	Password
radtest	radtest123

A successful test should display the message: (User radtest authenticated successfully.)

Step 2 – Setup ACME for Captive Portal

install ACME package

1. Go to Services → ACME → Account Keys and click + Add.
2. Select Let's Encrypt Production.
3. Click Create new account key, then click Register ACME account key.

4. Go to Services → ACME → Certificates and click + Add.
5. Configure the certificate with the following settings:
   • Name: captive
   • Domain SAN list: enter your Full Domain Name (FQDN) e.g. testaudi.wizone.io
   • Method: DNS-ACME-DNS

6. Click Issue Certificate and wait for the certificate to be issued about 3 minutes.

   

Step 3 – Add DNS Resolver Entry

1. Go to Services → DNS Resolver → General Settings → Host Overrides → Add.

2. Add a host record to map captive portal name to local IP: