Ruckus Cloudpath Configuration

The following article discusses how to set up a Ruckus Cloudpath and Smartzone with the Marketing4WiFi platform. The guide will cover the initial setup of Cloudpath, configuring a secure WLAN on the Smartzone, and set up of Client settings in the Marketing4WiFi platform to provide a PSK to Guests who purchase a Multi Device Guest Plan from a hotspot.

Preconfiguration Checklist

Please confirm the following before proceeding with the configuration steps in this article.

You will need a valid admin username and password to be used as part of the Client configuration in the dashboard.
Cloudpath is an add on that must be enabled for your dashboard before the option will appear under Client Settings.
Cloudpath options will not appear in Client settings until Payments have been enabled.
UDP Port 3799 must be open to your SmartZone for DPSK revocations to work.
The platform will make API requests to CloudPath from IP 18.233.247.3 for US-A and 3.13.114.17 for US-B.

Ruckus Cloudpath Configuration

Login to the Cloudpath dashboard
Using the navigation panel to the left click Configuration > RADIUS Server
Click on the Clients tab and edit the default client
1. Collect the RADIUS hosts and RADIUS Secret from this page to use later in the Ruckus Smartzone configuration
2. Enable COA: Checked
3. Coa Port: 3799
4. COA Attributes: Press the add button and configure with
  - Acct-Session-ID(string)
  - Add If It Doesn’t Exist
  - ${ACCT_SESSION_ID}
Click on the Attributes tab at the top
Click show to make the following attributes visible
- WISPr-Bandwidth-Max-Down
- WISPr-Bandwidth-Max-Up
Using the navigation panel to the left click Configuration > API Keys
Click Add API Key
Create an enabled API Key with an expiration date sufficiently far out from today’s date. If a key expires it will have to be re-enabled for the integration to work. Record the API Key for use later during the Marketing 4 WiFi configuration

Ruckus Smartzone Configuration

Login to the Smartzone dashboard
Using the navigation panel to the left, click Services & Profiles > Authentication
Click the Proxy (SZ Authenticator) tab at the top and the click the ‘+ Create’ button
1. Name: SecurePass-auth
2. Service Protocol: RADIUS
3. Primary Server
  - IP Address: Use the public IP of your Cloudpath
  - Port: 1812
  - Shared Secret: Use the RADIUS secret collected in step 3 of the Cloudpath configuration
4. Using the navigation panel to the left, click Services & Profiles > Accounting
5. Click the Proxy tab at the top and the click the ‘+ Create’ button
6. Primary Server
  - IP Address: Use the public IP of your Cloudpath
  - Port: 1813
  - Shared Secret: Use the RADIUS secret collected in step 3 of the Cloudpath configuration
Using the navigation panel to the left, click Wireless LANs and click the ‘+ Create’ button
1. General Options
  1. Name: SecurePass
  2. SSID: SecurePass WiFi
2. Authentication Options
  1. Authentication Type: Standard usage
  2. Authentication Method: Open
3. Encryption Options
  1. Encryption Method: WPA2
  2. Algorithm: AES
  3. 802.11w MFP: Disabled
  4. Dynamic PSK: External
4. Authentication & Accounting Service
  1. Authentication Service: SecurePass-auth
  2. Accounting Service: SecurePass-acct
5. Options
  1. Wireless Client Isolation: ON
Press OK

Marketing4WiFi Platform Configuration

This guide assumes your Client has Guest Plans enabled and configured with a Hotspot already live with Guest Plans enabled. offering Multi Device Guest Plans.

If you change the settings of a Guest Plan you must submit the hotspot again to sync the changes to CloudPath.

1. Login to your Marketing 4 WiFi dashboard
2. Use the navigation panel to the left to click Operator Settings > Add/Edit Clients
3. Click Edit on the Client you want to enable Cloudpath on.
4. Click on the toggle for Enable Cloudpath
  1. Cloudpath Hostname: Enter the hostname for your Cloudpath
  2. Cloudpath Username: Enter an valid admin username for your Cloudpath
  3. Cloudpath Password: Enter an valid admin password for your Cloudpath
  4. Cloudpath API Key: Enter the API Key created in step 8 of the Ruckus Cloudpath configuration
5. Press Submit
6. Use the navigation panel to the left to click Network > Guest Plans. Click ‘Add Plan’.
  1. Select the Client with Cloudpath enabled
  2. Give the plan a name and a clear description for guests
  3. Select the intended session profile
  4. Enter the intended price for this plan
  5. Registration Header Text and Registration Button Text are used if a guest is using a Voucher
  6. Enable Multi Devices: Yes
  7. No. of Devices per Plan can be set to the amount of
  8. Pre-expiration Message Time: Select the amount of time before a plan expires you want a guest to receive a warning message about their plan expiring.
  9. Press Submit.
7. Repeat step 6 to create as many Multi device guest plans as desired
8. Use the navigation panel to the left to click Network > Hotspots
9. Click on the edit icon for the hotspot that will utilize the Cloudpath integration
  - Click on the toggle for Enable SecurePass
  - WPA Key Confirmation Page: Click the blue plus icon to create a page and then use the edit page body button to build your own template. This is the page that will be displayed to users after purchasing a Guest Plan to provide on that original device the details of their DPSK
  - SSIDs: SecurePass WiFi (or whatever SSID name was used in step 6.1 of the Ruckus Smartzone configuration
  - Add the Guest Plans created in step 6
  - Press Submit

Guest Experience

When a guest selects a Multi Device Guest Plan to purchase from a hotspot with Cloudpath enabled they’ll be presented with options on how to receive their private password.
After successfully purchasing the plan regardless of selection devices will be presented an interstitial page displaying key information about the PSK associated to their purchased plan.
At the defined interval before the DPSK expires the hotspots Guest Plan Expiration Email will be sent to the contact information if it was provided.