• Wireless Network Manager
• Getting Started with Wireless Network Manager
  • About Wireless Network Manager
  • Using the Wireless Network Manager Interface
  • Using Wireless Network Manager Guide
• Overview
  • Dashboard
  • Alerts
  • Threats
  • Logs
• Using Air Marshal
  • RF Survey
    • Discovered Aps
    • Discover and Report Unassociated Wireless Clients
  • RF Spectrum
  • RF Monitor
  • Packet Capture
    • Wireless
    • Ethernet
  • Bluetooth LE
• Managing Your Network
  • Network Hierarchy
  • Network Topology
  • Zones
  • Devices
    • Managing Access Points
      • Managing the Configuration of Access Points
        • General
          • Bridge Mode
          • NAT Mode
        • Radio
        • SSL VPN
          • Activating SSL VPN
          • Editing SSL-VPN
      • Upgrading the Firmware for Specific Access Points
      • SonicWave Diagnostics
        • Testing Connectivity With Your Gateway or DNS Addresses
        • Testing Connectivity With Ping, Traceroute, or NSLookup
    • Viewing the Wireless Client Journey
    • Port Settings
    • Managing Switches Using Wireless Network Manager
      • Managing Switches
    • Managing Switch Clients
• Managing Policies
  • Policy Hierarchy
    • Select an AP Policy
      • General
      • System
      • Radio
      • Mesh Network
      • Bluetooth
      • • Certificate
        • Others
      • RRM (Radio Resource Management)
      • WIDP
      • 802.1X
      • Port Setting
      • ALG
      • SNMP
      • Syslog
    • Select a Switch Policy
      • General
      • System
        • Spanning Tree Protocol
        • Link Layer Discovery Protocol
        • Voice VLAN
        • Quality of Service (QoS)
        • Internet Group Management Protocol (IGMP) Snooping
        • Dynamic Host Configuration Protocol (DHCP) Snooping
        • Dynamic Host Configuration Protocol (DHCP) Relay
        • Loopback Detection
        • Jumbo Frames
        • Multicast Filtering
        • 802.1X
        • Static Route IPV4
        • DoS
        • Radius Server
        • Mirror Settings
        • Address Resolution Protocol
        • Static MAC Address Table
        • SNMP
      • Ports
        • General
        • VLAN
        • QoS
        • QoS Storm Control
        • Security
        • ACL
        • 802.1X
        • POE
      • Link Aggregation
        • LACP
        • Group
        • Trunk Port Settings
        • VLAN
      • VLAN
        • General
        • Network
        • IGMP
    • Select an SSID
      • SSID Policies
        • Adding SSID Security Policies
        • Editing SSID Security Policies
      • General
        • Basic
        • Authentication
          • Disabling the Strict Rekey
        • Others
        • VLAN
        • Dynamic VLAN Support
      • Advanced
        • Band Selection
        • IEEE802.11R
        • IEEE 802.11K
        • IEEE802.11V
        • SSL-VPN Security Tunnel Access
        • DNS
        • Agile Multiband
      • Security Policies
      • Guest Portal
        • Sign-on Settings
          • Sign-on with One-Time Passwords
          • Configuring Twilio Billing for SMS
          • Sign-on with LDAP Server Authentication
          • Sign-on with Active Directory Server Authentication
          • Sign-on with RADIUS Server Authentication
          • Sign-on with SAML Authentication
          • Wireless Guest TOTP Authentication
        • Customized Splash Page
          • Use a Linked Image on the Customized Splash Page
          • Collect User Feedback from a Customized Splash Page
    • Select a Security Policy
      • CFS (Content Filtering Service)
        • General
        • Category
        • Enabling or Disabling Reputation
        • URI List
        • Customize Block Page
      • CATP (Capture Advanced Threat Protection)
        • General
        • File Types
        • Protocols
        • MD5 Exclusion List
        • Customize Block Page
      • CAV (Cloud Gateway Anti-Virus)
        • General
        • File Types
        • Protocols
        • MD5 Exclusion List
        • Customize Block Page
      • ACL
        • General
        • Authentication/Association MAC Filtering
        • ACL
        • Bandwidth Management
      • Geo-IP & Botnet
      • APP Control Security Policy
  • AP Policies
  • Using Tags to Manage Access Points and SSIDs
    • Using Tags to Manage Access Points
      • Adding Tags to an Access Point
      • Removing Tags Associated with an Access Point
      • Viewing Tags Associated with an Access Point
    • Using Tags to Manage SSIDs
      • Adding Tags to an SSID Group
      • Removing Tags from an SSID Group
      • Viewing Tags Associated with an SSID Group
  • QoS Policies
  • Wi-Fi Multimeda (WMM) Profiles
    • Creating Wi-Fi Multimeda (WMM) Policies
    • Enabling Wi-Fi Multimeda (WMM) Policies
  • Managing Switch Policies
    • Adding Switch Policies
    • Editing Switch Policies
  • Managing SNMP Policies
    • Setting the SNMP ID
    • Adding SNMP Policies
    • Editing SNMP Policies
    • Deleting SNMP Policies
    • Setting SNMP Policies
  • Managing Switch SNMP Policies
    • Adding Switch SNMP Policies
    • Editing Switch SNMP Policies
    • Applying Switch SNMP Policies
• Security
  • Security Policies
    • Content Filtering Service
      • Creating Content Filtering Service Security Policies
      • Editing Content Filtering Service Categories
      • Adding Sites to the Whitelists and Blacklists
    • Customizing Blockpage
    • Applying a Security Policy to an SSID Group
    • Capture Advanced Threat Protection
      • Creating Capture Advanced Threat Protection Security Policies
      • Adding an MD5 Hash to the Exclusion List
    • Cloud Anti-Virus
    • Access Control Policies
      • Creating and Editing Access Control Policies
    • Geo-IP & Botnet
    • Application Control
  • Address Objects
    • Creating Mac Address Objects
    • Creating Address Object Groups
  • Service Objects
  • Matched Objects
  • QoS Objects
  • Schedule Objects
    • Scheduling VAP Security Policy
  • App Objects
• Admin
  • Reports
    • Generating Report Tasks
    • General Settings
  • Users
    • Configuring User Quota Control
  • Settings
    • General
      • Client Timezone
    • Firmware
    • Notification Center
      • SMS Event Notifications
  • Certificates
    • Batch Import
    • Import Certificates
  • Using the WiFi Planner
• SonicWall Support
  • About This Document

Wireless Guest TOTP Authentication

The Time-Based One Time Password is a multi-factor authentication scheme that enabled third party integration to generate secure time-based OTP via third party authentication Apps such as Google authenticator, Microsoft authenticator etc.

TOTP is an alternative to traditional two-factor authentication methods. TOTP passwords keep on changing and are valid for only short window in time, because of which TOTP is considered more secure OTP solution. Before logging into guest authentication, you need to make sure to have an active internet service to view the code in the application.

To generate Totp User

1. Navigate to Admin > Users. Select Time-based-One-time-Password.

2. Click add icon on the right view of the screen.

3. Enter the details of the user

• User Name Prefix - Enter the username.

• Number of Accounts - Specify the number of accounts (in numbers).

• Quota Cycle Type Setting - From the Quota cycle type setting list, select:

  • Non Cyclic (default)

  • Per Day

  • Per Week

  • Per Month

• Session Lifetime (0 to disable) - Specify the duration for how long a guest login session remains active after it has been activated. By default, activation occurs the first time a guest user logs into an account. The field cannot exceed 4 characters.

• Receive Limit (0 to disable) - Enter the amount (in MB) the amount of data the user can receive. The range is from 0 (unlimited) to 999999999 MB to maximum (the field cannot exceed 9 characters). If the set value is zero, the limit is disabled and it works as unlimited.

• Transmit Limit (0 to disable) - Enter the amount (in MB) the amount of data the user can receive. The range is from 0 (unlimited) to 999999999 MB to maximum (the field cannot exceed 9 characters). If the set value is zero, the limit is disabled and it works as unlimited.

• Backup Generated Users to Email - Enter an email address to receive the code. Please note that an active internet connection is needed to receive the code.

• Click OK.

  

To add Totp User

1. Navigate to Users.

2. Select the tab Time-based-One-time-Password.

3. Click add icon on the right view of the screen.

4. Enter the details of the user:

• Name - Enter the name of the user.

• Description - Enter a description (not mandatory)

• Quota Cycle Type Setting - From the Quota cycle type setting list, select:

  • Non Cyclic (default)

  • Per Day

  • Per Week

  • Per Month

• Session Lifetime (0 to disable) - Specify the duration for how long a guest login session remains active after it has been activated. By default, activation occurs the first time a guest user logs into an account.

• Receive Limit (0 to disable) - Enter the amount (in MB) the amount of data the user can receive. The range is from 0 (no data can be received) to 9999 MB to Unlimited (default). If the set value is zero, the limit is disabled and it works as unlimited.

• Transmit Limit (0 to disable) - Enter the amount (in MB) of data the user can send. The range is from 0 (no data can be sent) to 9999 MB to Unlimited (default).

• Never Expire - Toggle on or off to set to never expire.

• Click OK.

  

To delete Totp User

1. Navigate to Admin > Users. Select Time-based-One-time-Password.

2. Check the box of the user to delete.

3. Click Delete Totp User icon.

User Authentication through Totp

When the user log in for the first time, a QR code is displayed on the screen. You need to install an authenticator app like Google Authenticator to scan the QR code.

Once the QR code is scanned, it displays a unique code on your phone screen. Enter the 6 digit code to login.

For the subsequent logins, you can specify the user name and login to the guest portal.

To reconnect using the wireless connection again, you need to enter the 6 digit code through the splash screen to login.