Juniper Mist v0.2.4, Mar 1 25

Juniper Mist v0.2.4 published on Saturday, Mar 1, 2025 by Pulumi

junipermist.site.getWlans

Explore with Pulumi AI

Juniper Mist v0.2.4 published on Saturday, Mar 1, 2025 by Pulumi

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as junipermist from "@pulumi/junipermist";

const siteWlans = junipermist.site.getWlans({
    siteId: "15fca2ac-b1a6-47cc-9953-cc6906281550",
});

import pulumi
import pulumi_junipermist as junipermist

site_wlans = junipermist.site.get_wlans(site_id="15fca2ac-b1a6-47cc-9953-cc6906281550")

package main

import (
	"github.com/pulumi/pulumi-junipermist/sdk/go/junipermist/site"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := site.GetWlans(ctx, &site.GetWlansArgs{
			SiteId: "15fca2ac-b1a6-47cc-9953-cc6906281550",
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using JuniperMist = Pulumi.JuniperMist;

return await Deployment.RunAsync(() => 
{
    var siteWlans = JuniperMist.Site.GetWlans.Invoke(new()
    {
        SiteId = "15fca2ac-b1a6-47cc-9953-cc6906281550",
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.junipermist.site.SiteFunctions;
import com.pulumi.junipermist.site.inputs.GetWlansArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var siteWlans = SiteFunctions.getWlans(GetWlansArgs.builder()
            .siteId("15fca2ac-b1a6-47cc-9953-cc6906281550")
            .build());

    }
}

variables:
  siteWlans:
    fn::invoke:
      function: junipermist:site:getWlans
      arguments:
        siteId: 15fca2ac-b1a6-47cc-9953-cc6906281550

Using getWlans

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getWlans(args: GetWlansArgs, opts?: InvokeOptions): Promise<GetWlansResult>
function getWlansOutput(args: GetWlansOutputArgs, opts?: InvokeOptions): Output<GetWlansResult>

def get_wlans(site_id: Optional[str] = None,
              opts: Optional[InvokeOptions] = None) -> GetWlansResult
def get_wlans_output(site_id: Optional[pulumi.Input[str]] = None,
              opts: Optional[InvokeOptions] = None) -> Output[GetWlansResult]

func GetWlans(ctx *Context, args *GetWlansArgs, opts ...InvokeOption) (*GetWlansResult, error)
func GetWlansOutput(ctx *Context, args *GetWlansOutputArgs, opts ...InvokeOption) GetWlansResultOutput

> Note: This function is named GetWlans in the Go SDK.

public static class GetWlans 
{
    public static Task<GetWlansResult> InvokeAsync(GetWlansArgs args, InvokeOptions? opts = null)
    public static Output<GetWlansResult> Invoke(GetWlansInvokeArgs args, InvokeOptions? opts = null)
}

public static CompletableFuture<GetWlansResult> getWlans(GetWlansArgs args, InvokeOptions options)
public static Output<GetWlansResult> getWlans(GetWlansArgs args, InvokeOptions options)

fn::invoke:
  function: junipermist:site/getWlans:getWlans
  arguments:
    # arguments dictionary

The following arguments are supported:

SiteId string

SiteId string

siteId String

siteId string

site_id str

siteId String

getWlans Result

The following output properties are available:

Id string: The provider-assigned unique ID for this managed resource.
SiteId string
SiteWlans List<Pulumi.JuniperMist.Site.Outputs.GetWlansSiteWlan>

Id string: The provider-assigned unique ID for this managed resource.
SiteId string
SiteWlans []GetWlansSiteWlan

id String: The provider-assigned unique ID for this managed resource.
siteId String
siteWlans List<GetWlansSiteWlan>

id string: The provider-assigned unique ID for this managed resource.
siteId string
siteWlans GetWlansSiteWlan[]

id str: The provider-assigned unique ID for this managed resource.
site_id str
site_wlans Sequence[GetWlansSiteWlan]

id String: The provider-assigned unique ID for this managed resource.
siteId String
siteWlans List<Property Map>

Supporting Types

GetWlansSiteWlan

AcctImmediateUpdate bool

Enable coa-immediate-update and address-change-immediate-update on the access profile.

AcctInterimInterval int

How frequently should interim accounting be reported, 60-65535. default is 0 (use one specified in Access-Accept request from RADIUS Server). Very frequent messages can affect the performance of the radius server, 600 and up is recommended when enabled

AcctServers List<Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanAcctServer>

List of RADIUS accounting servers, optional, order matters where the first one is treated as primary

Airwatch Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanAirwatch

Airwatch wlan settings

AllowIpv6Ndp bool

Only applicable when limit_bcast==true, which allows or disallows ipv6 Neighbor Discovery packets to go through

AllowMdns bool

Only applicable when limit_bcast==true, which allows mDNS / Bonjour packets to go through

AllowSsdp bool

Only applicable when limit_bcast==true, which allows SSDP

ApIds List<string>

List of device ids

AppLimit Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanAppLimit

Bandwidth limiting for apps (applies to up/down)

AppQos Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanAppQos

APp qos wlan settings

ApplyTo string

enum: aps, site, wxtags

ArpFilter bool

Whether to enable smart arp filter

Auth Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanAuth

Authentication wlan settings

AuthServerSelection string

When ordered, AP will prefer and go back to the first server if possible. enum: ordered, unordered

AuthServers List<Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanAuthServer>

List of RADIUS authentication servers, at least one is needed if auth type==eap, order matters where the first one is treated as primary

AuthServersNasId string

Optional, up to 48 bytes, will be dynamically generated if not provided. used only for authentication servers

AuthServersNasIp string

Optional, NAS-IP-ADDRESS to use

AuthServersRetries int

Radius auth session retries. Following fast timers are set if "fast_dot1x_timers" knob is enabled. ‘retries’ are set to value of auth_servers_retries. ‘max-requests’ is also set when setting auth_servers_retries and is set to default value to 3.

AuthServersTimeout int

Radius auth session timeout. Following fast timers are set if "fast_dot1x_timers" knob is enabled. ‘quite-period’ and ‘transmit-period’ are set to half the value of auth_servers_timeout. ‘supplicant-timeout’ is also set when setting auth_servers_timeout and is set to default value of 10.

BandSteer bool

Whether to enable band_steering, this works only when band==both

BandSteerForceBand5 bool

Force dual_band capable client to connect to 5G

Bands List<string>

List of radios that the wlan should apply to.

BlockBlacklistClients bool

Whether to block the clients in the blacklist (up to first 256 macs)

Bonjour Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanBonjour

Bonjour gateway wlan settings

CiscoCwa Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanCiscoCwa

Cisco CWA (central web authentication) required RADIUS with COA in order to work. See CWA: https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/115732-central-web-auth-00.html

ClientLimitDown int

In kbps

ClientLimitDownEnabled bool

If downlink limiting per-client is enabled

ClientLimitUp int

In kbps

ClientLimitUpEnabled bool

If uplink limiting per-client is enabled

CoaServers List<Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanCoaServer>

List of COA (change of authorization) servers, optional

CreatedTime double

When the object has been created, in epoch

Disable11ax bool

Some old WLAN drivers may not be compatible

DisableHtVhtRates bool

To disable ht or vht rates

DisableUapsd bool

Whether to disable U-APSD

DisableV1RoamNotify bool

Disable sending v2 roam notification messages

DisableV2RoamNotify bool

Disable sending v2 roam notification messages

DisableWhenGatewayUnreachable bool

When any of the following is true, this WLAN will be disabled

cannot get IP
cannot obtain default gateway
cannot reach default gateway

DisableWhenMxtunnelDown bool

DisableWmm bool

Whether to disable WMM

DnsServerRewrite Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanDnsServerRewrite

For radius_group-based DNS server (rewrite DNS request depending on the Group RADIUS server returns)

Dtim int

DynamicPsk Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanDynamicPsk

For dynamic PSK where we get per_user PSK from Radius. dynamic_psk allows PSK to be selected at runtime depending on context (wlan/site/user/...) thus following configurations are assumed (currently)

PSK will come from RADIUS server
AP sends client MAC as username and password (i.e. enable_mac_auth is assumed)
AP sends BSSID:SSID as Caller-Station-ID
auth_servers is required
PSK will come from cloud WLC if source is cloud_psks
default_psk will be used if cloud WLC is not available
multi_psk_only and psk is ignored
pairwise can only be wpa2-ccmp (for now, wpa3 support on the roadmap)

DynamicVlan Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanDynamicVlan

For 802.1x

EnableLocalKeycaching bool

Enable AP-AP keycaching via multicast

EnableWirelessBridging bool

By default, we'd inspect all DHCP packets and drop those unrelated to the wireless client itself in the case where client is a wireless bridge (DHCP packets for other MACs will need to be orwarded), wireless_bridging can be enabled

EnableWirelessBridgingDhcpTracking bool

If the client bridge is doing DHCP on behalf of other devices (L2-NAT), enable dhcp_tracking will cut down DHCP response packets to be forwarded to wireless

Enabled bool

If this wlan is enabled

FastDot1xTimers bool

If set to true, sets default fast-timers with values calculated from ‘auth_servers_timeout’ and ‘auth_server_retries’ .

HideSsid bool

Whether to hide SSID in beacon

HostnameIe bool

Include hostname inside IE in AP beacons / probe responses

Hotspot20 Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanHotspot20

Hostspot 2.0 wlan settings

Id string

Unique ID of the object instance in the Mist Organnization

InjectDhcpOption82 Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanInjectDhcpOption82

Interface string

where this WLAN will be connected to. enum: all, eth0, eth1, eth2, eth3, mxtunnel, site_mxedge, wxtunnel

Isolation bool

Whether to stop clients to talk to each other

L2Isolation bool

If isolation is enabled, whether to deny clients to talk to L2 on the LAN

LegacyOverds bool

Legacy devices requires the Over-DS (for Fast BSS Transition) bit set (while our chip doesn’t support it). Warning! Enabling this will cause problem for iOS devices.

LimitBcast bool

Whether to limit broadcast packets going to wireless (i.e. only allow certain bcast packets to go through)

LimitProbeResponse bool

Limit probe response base on some heuristic rules

MaxIdletime int

Max idle time in seconds

MaxNumClients int

Maximum number of client connected to the SSID. 0 means unlimited

MistNac Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanMistNac

ModifiedTime double

When the object has been modified for the last time, in epoch

MspId string

MxtunnelIds List<string>

When interface=mxtunnel, id of the Mist Tunnel

MxtunnelNames List<string>

When interface=site_medge, name of the mxtunnel that in mxtunnels under Site Setting

NoStaticDns bool

Whether to only allow client to use DNS that we’ve learned from DHCP response

NoStaticIp bool

Whether to only allow client that we’ve learned from DHCP exchange to talk

OrgId string

Portal Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanPortal

Portal wlan settings

PortalAllowedHostnames List<string>

List of hostnames without http(s):// (matched by substring)

PortalAllowedSubnets List<string>

List of CIDRs

PortalApiSecret string

APi secret (auto-generated) that can be used to sign guest authorization requests

PortalDeniedHostnames List<string>

List of hostnames without http(s):// (matched by substring), this takes precedence over portal_allowed_hostnames

PortalImage string

Url of portal background image

PortalSsoUrl string

Qos Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanQos

Radsec Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanRadsec

RadSec settings

Rateset Dictionary<string, Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanRateset>

Property key is the RF band. enum: 24, 5, 6

ReconnectClientsWhenRoamingMxcluster bool

When different mxcluster is on different subnet, we'd want to disconnect clients (so they'll reconnect and get new IPs)

RoamMode string

enum: 11r, OKC, NONE

Schedule Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanSchedule

WLAN operating schedule, default is disabled

SiteId string

SleExcluded bool

Whether to exclude this WLAN from SLE metrics

Ssid string

Name of the SSID

UseEapolV1 bool

If auth.type==eap or auth.type==psk, should only be set for legacy client, such as pre-2004, 802.11b devices

VlanEnabled bool

If vlan tagging is enabled

VlanId string

VlanIds List<string>

if vlan_enabled==true and vlan_pooling==true. List of VLAN IDs (comma separeted) to be used in the VLAN Pool

VlanPooling bool

Requires vlan_enabled==true to be set to true. Vlan pooling allows AP to place client on different VLAN using a deterministic algorithm

WlanLimitDown int

In kbps

WlanLimitDownEnabled bool

If downlink limiting for whole wlan is enabled

WlanLimitUp int

In kbps

WlanLimitUpEnabled bool

If uplink limiting for whole wlan is enabled

WxtagIds List<string>

List of wxtag_ids

WxtunnelId string

When interface=wxtunnel, id of the WXLAN Tunnel

WxtunnelRemoteId string

When interface=wxtunnel, remote tunnel identifier

AcctImmediateUpdate bool

Enable coa-immediate-update and address-change-immediate-update on the access profile.

AcctInterimInterval int

AcctServers []GetWlansSiteWlanAcctServer

List of RADIUS accounting servers, optional, order matters where the first one is treated as primary

Airwatch GetWlansSiteWlanAirwatch

Airwatch wlan settings

AllowIpv6Ndp bool

Only applicable when limit_bcast==true, which allows or disallows ipv6 Neighbor Discovery packets to go through

AllowMdns bool

Only applicable when limit_bcast==true, which allows mDNS / Bonjour packets to go through

AllowSsdp bool

Only applicable when limit_bcast==true, which allows SSDP

ApIds []string

List of device ids

AppLimit GetWlansSiteWlanAppLimit

Bandwidth limiting for apps (applies to up/down)

AppQos GetWlansSiteWlanAppQos

APp qos wlan settings

ApplyTo string

enum: aps, site, wxtags

ArpFilter bool

Whether to enable smart arp filter

Auth GetWlansSiteWlanAuth

Authentication wlan settings

AuthServerSelection string

When ordered, AP will prefer and go back to the first server if possible. enum: ordered, unordered

AuthServers []GetWlansSiteWlanAuthServer

List of RADIUS authentication servers, at least one is needed if auth type==eap, order matters where the first one is treated as primary

AuthServersNasId string

Optional, up to 48 bytes, will be dynamically generated if not provided. used only for authentication servers

AuthServersNasIp string

Optional, NAS-IP-ADDRESS to use

AuthServersRetries int

AuthServersTimeout int

BandSteer bool

Whether to enable band_steering, this works only when band==both

BandSteerForceBand5 bool

Force dual_band capable client to connect to 5G

Bands []string

List of radios that the wlan should apply to.

BlockBlacklistClients bool

Whether to block the clients in the blacklist (up to first 256 macs)

Bonjour GetWlansSiteWlanBonjour

Bonjour gateway wlan settings

CiscoCwa GetWlansSiteWlanCiscoCwa

Cisco CWA (central web authentication) required RADIUS with COA in order to work. See CWA: https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/115732-central-web-auth-00.html

ClientLimitDown int

In kbps

ClientLimitDownEnabled bool

If downlink limiting per-client is enabled

ClientLimitUp int

In kbps

ClientLimitUpEnabled bool

If uplink limiting per-client is enabled

CoaServers []GetWlansSiteWlanCoaServer

List of COA (change of authorization) servers, optional

CreatedTime float64

When the object has been created, in epoch

Disable11ax bool

Some old WLAN drivers may not be compatible

DisableHtVhtRates bool

To disable ht or vht rates

DisableUapsd bool

Whether to disable U-APSD

DisableV1RoamNotify bool

Disable sending v2 roam notification messages

DisableV2RoamNotify bool

Disable sending v2 roam notification messages

DisableWhenGatewayUnreachable bool

When any of the following is true, this WLAN will be disabled

cannot get IP
cannot obtain default gateway
cannot reach default gateway

DisableWhenMxtunnelDown bool

DisableWmm bool

Whether to disable WMM

DnsServerRewrite GetWlansSiteWlanDnsServerRewrite

For radius_group-based DNS server (rewrite DNS request depending on the Group RADIUS server returns)

Dtim int

DynamicPsk GetWlansSiteWlanDynamicPsk

For dynamic PSK where we get per_user PSK from Radius. dynamic_psk allows PSK to be selected at runtime depending on context (wlan/site/user/...) thus following configurations are assumed (currently)

PSK will come from RADIUS server
AP sends client MAC as username and password (i.e. enable_mac_auth is assumed)
AP sends BSSID:SSID as Caller-Station-ID
auth_servers is required
PSK will come from cloud WLC if source is cloud_psks
default_psk will be used if cloud WLC is not available
multi_psk_only and psk is ignored
pairwise can only be wpa2-ccmp (for now, wpa3 support on the roadmap)

DynamicVlan GetWlansSiteWlanDynamicVlan

For 802.1x

EnableLocalKeycaching bool

Enable AP-AP keycaching via multicast

EnableWirelessBridging bool

EnableWirelessBridgingDhcpTracking bool

If the client bridge is doing DHCP on behalf of other devices (L2-NAT), enable dhcp_tracking will cut down DHCP response packets to be forwarded to wireless

Enabled bool

If this wlan is enabled

FastDot1xTimers bool

If set to true, sets default fast-timers with values calculated from ‘auth_servers_timeout’ and ‘auth_server_retries’ .

HideSsid bool

Whether to hide SSID in beacon

HostnameIe bool

Include hostname inside IE in AP beacons / probe responses

Hotspot20 GetWlansSiteWlanHotspot20

Hostspot 2.0 wlan settings

Id string

Unique ID of the object instance in the Mist Organnization

InjectDhcpOption82 GetWlansSiteWlanInjectDhcpOption82

Interface string

where this WLAN will be connected to. enum: all, eth0, eth1, eth2, eth3, mxtunnel, site_mxedge, wxtunnel

Isolation bool

Whether to stop clients to talk to each other

L2Isolation bool

If isolation is enabled, whether to deny clients to talk to L2 on the LAN

LegacyOverds bool

Legacy devices requires the Over-DS (for Fast BSS Transition) bit set (while our chip doesn’t support it). Warning! Enabling this will cause problem for iOS devices.

LimitBcast bool

Whether to limit broadcast packets going to wireless (i.e. only allow certain bcast packets to go through)

LimitProbeResponse bool

Limit probe response base on some heuristic rules

MaxIdletime int

Max idle time in seconds

MaxNumClients int

Maximum number of client connected to the SSID. 0 means unlimited

MistNac GetWlansSiteWlanMistNac

ModifiedTime float64

When the object has been modified for the last time, in epoch

MspId string

MxtunnelIds []string

When interface=mxtunnel, id of the Mist Tunnel

MxtunnelNames []string

When interface=site_medge, name of the mxtunnel that in mxtunnels under Site Setting

NoStaticDns bool

Whether to only allow client to use DNS that we’ve learned from DHCP response

NoStaticIp bool

Whether to only allow client that we’ve learned from DHCP exchange to talk

OrgId string

Portal GetWlansSiteWlanPortal

Portal wlan settings

PortalAllowedHostnames []string

List of hostnames without http(s):// (matched by substring)

PortalAllowedSubnets []string

List of CIDRs

PortalApiSecret string

APi secret (auto-generated) that can be used to sign guest authorization requests

PortalDeniedHostnames []string

List of hostnames without http(s):// (matched by substring), this takes precedence over portal_allowed_hostnames

PortalImage string

Url of portal background image

PortalSsoUrl string

Qos GetWlansSiteWlanQos

Radsec GetWlansSiteWlanRadsec

RadSec settings

Rateset map[string]GetWlansSiteWlanRateset

Property key is the RF band. enum: 24, 5, 6

ReconnectClientsWhenRoamingMxcluster bool

When different mxcluster is on different subnet, we'd want to disconnect clients (so they'll reconnect and get new IPs)

RoamMode string

enum: 11r, OKC, NONE

Schedule GetWlansSiteWlanSchedule

WLAN operating schedule, default is disabled

SiteId string

SleExcluded bool

Whether to exclude this WLAN from SLE metrics

Ssid string

Name of the SSID

UseEapolV1 bool

If auth.type==eap or auth.type==psk, should only be set for legacy client, such as pre-2004, 802.11b devices

VlanEnabled bool

If vlan tagging is enabled

VlanId string

VlanIds []string

if vlan_enabled==true and vlan_pooling==true. List of VLAN IDs (comma separeted) to be used in the VLAN Pool

VlanPooling bool

Requires vlan_enabled==true to be set to true. Vlan pooling allows AP to place client on different VLAN using a deterministic algorithm

WlanLimitDown int

In kbps

WlanLimitDownEnabled bool

If downlink limiting for whole wlan is enabled

WlanLimitUp int

In kbps

WlanLimitUpEnabled bool

If uplink limiting for whole wlan is enabled

WxtagIds []string

List of wxtag_ids

WxtunnelId string

When interface=wxtunnel, id of the WXLAN Tunnel

WxtunnelRemoteId string

When interface=wxtunnel, remote tunnel identifier

acctImmediateUpdate Boolean

Enable coa-immediate-update and address-change-immediate-update on the access profile.

acctInterimInterval Integer

acctServers List<GetWlansSiteWlanAcctServer>

List of RADIUS accounting servers, optional, order matters where the first one is treated as primary

airwatch GetWlansSiteWlanAirwatch

Airwatch wlan settings

allowIpv6Ndp Boolean

Only applicable when limit_bcast==true, which allows or disallows ipv6 Neighbor Discovery packets to go through

allowMdns Boolean

Only applicable when limit_bcast==true, which allows mDNS / Bonjour packets to go through

allowSsdp Boolean

Only applicable when limit_bcast==true, which allows SSDP

apIds List<String>

List of device ids

appLimit GetWlansSiteWlanAppLimit

Bandwidth limiting for apps (applies to up/down)

appQos GetWlansSiteWlanAppQos

APp qos wlan settings

applyTo String

enum: aps, site, wxtags

arpFilter Boolean

Whether to enable smart arp filter

auth GetWlansSiteWlanAuth

Authentication wlan settings

authServerSelection String

When ordered, AP will prefer and go back to the first server if possible. enum: ordered, unordered

authServers List<GetWlansSiteWlanAuthServer>

List of RADIUS authentication servers, at least one is needed if auth type==eap, order matters where the first one is treated as primary

authServersNasId String

Optional, up to 48 bytes, will be dynamically generated if not provided. used only for authentication servers

authServersNasIp String

Optional, NAS-IP-ADDRESS to use

authServersRetries Integer

authServersTimeout Integer

bandSteer Boolean

Whether to enable band_steering, this works only when band==both

bandSteerForceBand5 Boolean

Force dual_band capable client to connect to 5G

bands List<String>

List of radios that the wlan should apply to.

blockBlacklistClients Boolean

Whether to block the clients in the blacklist (up to first 256 macs)

bonjour GetWlansSiteWlanBonjour

Bonjour gateway wlan settings

ciscoCwa GetWlansSiteWlanCiscoCwa

Cisco CWA (central web authentication) required RADIUS with COA in order to work. See CWA: https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/115732-central-web-auth-00.html

clientLimitDown Integer

In kbps

clientLimitDownEnabled Boolean

If downlink limiting per-client is enabled

clientLimitUp Integer

In kbps

clientLimitUpEnabled Boolean

If uplink limiting per-client is enabled

coaServers List<GetWlansSiteWlanCoaServer>

List of COA (change of authorization) servers, optional

createdTime Double

When the object has been created, in epoch

disable11ax Boolean

Some old WLAN drivers may not be compatible

disableHtVhtRates Boolean

To disable ht or vht rates

disableUapsd Boolean

Whether to disable U-APSD

disableV1RoamNotify Boolean

Disable sending v2 roam notification messages

disableV2RoamNotify Boolean

Disable sending v2 roam notification messages

disableWhenGatewayUnreachable Boolean

When any of the following is true, this WLAN will be disabled

cannot get IP
cannot obtain default gateway
cannot reach default gateway

disableWhenMxtunnelDown Boolean

disableWmm Boolean

Whether to disable WMM

dnsServerRewrite GetWlansSiteWlanDnsServerRewrite

For radius_group-based DNS server (rewrite DNS request depending on the Group RADIUS server returns)

dtim Integer

dynamicPsk GetWlansSiteWlanDynamicPsk

For dynamic PSK where we get per_user PSK from Radius. dynamic_psk allows PSK to be selected at runtime depending on context (wlan/site/user/...) thus following configurations are assumed (currently)

PSK will come from RADIUS server
AP sends client MAC as username and password (i.e. enable_mac_auth is assumed)
AP sends BSSID:SSID as Caller-Station-ID
auth_servers is required
PSK will come from cloud WLC if source is cloud_psks
default_psk will be used if cloud WLC is not available
multi_psk_only and psk is ignored
pairwise can only be wpa2-ccmp (for now, wpa3 support on the roadmap)

dynamicVlan GetWlansSiteWlanDynamicVlan

For 802.1x

enableLocalKeycaching Boolean

Enable AP-AP keycaching via multicast

enableWirelessBridging Boolean

enableWirelessBridgingDhcpTracking Boolean

If the client bridge is doing DHCP on behalf of other devices (L2-NAT), enable dhcp_tracking will cut down DHCP response packets to be forwarded to wireless

enabled Boolean

If this wlan is enabled

fastDot1xTimers Boolean

If set to true, sets default fast-timers with values calculated from ‘auth_servers_timeout’ and ‘auth_server_retries’ .

hideSsid Boolean

Whether to hide SSID in beacon

hostnameIe Boolean

Include hostname inside IE in AP beacons / probe responses

hotspot20 GetWlansSiteWlanHotspot20

Hostspot 2.0 wlan settings

id String

Unique ID of the object instance in the Mist Organnization

injectDhcpOption82 GetWlansSiteWlanInjectDhcpOption82

interface_ String

where this WLAN will be connected to. enum: all, eth0, eth1, eth2, eth3, mxtunnel, site_mxedge, wxtunnel

isolation Boolean

Whether to stop clients to talk to each other

l2Isolation Boolean

If isolation is enabled, whether to deny clients to talk to L2 on the LAN

legacyOverds Boolean

Legacy devices requires the Over-DS (for Fast BSS Transition) bit set (while our chip doesn’t support it). Warning! Enabling this will cause problem for iOS devices.

limitBcast Boolean

Whether to limit broadcast packets going to wireless (i.e. only allow certain bcast packets to go through)

limitProbeResponse Boolean

Limit probe response base on some heuristic rules

maxIdletime Integer

Max idle time in seconds

maxNumClients Integer

Maximum number of client connected to the SSID. 0 means unlimited

mistNac GetWlansSiteWlanMistNac

modifiedTime Double

When the object has been modified for the last time, in epoch

mspId String

mxtunnelIds List<String>

When interface=mxtunnel, id of the Mist Tunnel

mxtunnelNames List<String>

When interface=site_medge, name of the mxtunnel that in mxtunnels under Site Setting

noStaticDns Boolean

Whether to only allow client to use DNS that we’ve learned from DHCP response

noStaticIp Boolean

Whether to only allow client that we’ve learned from DHCP exchange to talk

orgId String

portal GetWlansSiteWlanPortal

Portal wlan settings

portalAllowedHostnames List<String>

List of hostnames without http(s):// (matched by substring)

portalAllowedSubnets List<String>

List of CIDRs

portalApiSecret String

APi secret (auto-generated) that can be used to sign guest authorization requests

portalDeniedHostnames List<String>

List of hostnames without http(s):// (matched by substring), this takes precedence over portal_allowed_hostnames

portalImage String

Url of portal background image

portalSsoUrl String

qos GetWlansSiteWlanQos

radsec GetWlansSiteWlanRadsec

RadSec settings

rateset Map<String,GetWlansSiteWlanRateset>

Property key is the RF band. enum: 24, 5, 6

reconnectClientsWhenRoamingMxcluster Boolean

When different mxcluster is on different subnet, we'd want to disconnect clients (so they'll reconnect and get new IPs)

roamMode String

enum: 11r, OKC, NONE

schedule GetWlansSiteWlanSchedule

WLAN operating schedule, default is disabled

siteId String

sleExcluded Boolean

Whether to exclude this WLAN from SLE metrics

ssid String

Name of the SSID

useEapolV1 Boolean

If auth.type==eap or auth.type==psk, should only be set for legacy client, such as pre-2004, 802.11b devices

vlanEnabled Boolean

If vlan tagging is enabled

vlanId String

vlanIds List<String>

if vlan_enabled==true and vlan_pooling==true. List of VLAN IDs (comma separeted) to be used in the VLAN Pool

vlanPooling Boolean

Requires vlan_enabled==true to be set to true. Vlan pooling allows AP to place client on different VLAN using a deterministic algorithm

wlanLimitDown Integer

In kbps

wlanLimitDownEnabled Boolean

If downlink limiting for whole wlan is enabled

wlanLimitUp Integer

In kbps

wlanLimitUpEnabled Boolean

If uplink limiting for whole wlan is enabled

wxtagIds List<String>

List of wxtag_ids

wxtunnelId String

When interface=wxtunnel, id of the WXLAN Tunnel

wxtunnelRemoteId String

When interface=wxtunnel, remote tunnel identifier

acctImmediateUpdate boolean

Enable coa-immediate-update and address-change-immediate-update on the access profile.

acctInterimInterval number

acctServers GetWlansSiteWlanAcctServer[]

List of RADIUS accounting servers, optional, order matters where the first one is treated as primary

airwatch GetWlansSiteWlanAirwatch

Airwatch wlan settings

allowIpv6Ndp boolean

Only applicable when limit_bcast==true, which allows or disallows ipv6 Neighbor Discovery packets to go through

allowMdns boolean

Only applicable when limit_bcast==true, which allows mDNS / Bonjour packets to go through

allowSsdp boolean

Only applicable when limit_bcast==true, which allows SSDP

apIds string[]

List of device ids

appLimit GetWlansSiteWlanAppLimit

Bandwidth limiting for apps (applies to up/down)

appQos GetWlansSiteWlanAppQos

APp qos wlan settings

applyTo string

enum: aps, site, wxtags

arpFilter boolean

Whether to enable smart arp filter

auth GetWlansSiteWlanAuth

Authentication wlan settings

authServerSelection string

When ordered, AP will prefer and go back to the first server if possible. enum: ordered, unordered

authServers GetWlansSiteWlanAuthServer[]

List of RADIUS authentication servers, at least one is needed if auth type==eap, order matters where the first one is treated as primary

authServersNasId string

Optional, up to 48 bytes, will be dynamically generated if not provided. used only for authentication servers

authServersNasIp string

Optional, NAS-IP-ADDRESS to use

authServersRetries number

authServersTimeout number

bandSteer boolean

Whether to enable band_steering, this works only when band==both

bandSteerForceBand5 boolean

Force dual_band capable client to connect to 5G

bands string[]

List of radios that the wlan should apply to.

blockBlacklistClients boolean

Whether to block the clients in the blacklist (up to first 256 macs)

bonjour GetWlansSiteWlanBonjour

Bonjour gateway wlan settings

ciscoCwa GetWlansSiteWlanCiscoCwa

Cisco CWA (central web authentication) required RADIUS with COA in order to work. See CWA: https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/115732-central-web-auth-00.html

clientLimitDown number

In kbps

clientLimitDownEnabled boolean

If downlink limiting per-client is enabled

clientLimitUp number

In kbps

clientLimitUpEnabled boolean

If uplink limiting per-client is enabled

coaServers GetWlansSiteWlanCoaServer[]

List of COA (change of authorization) servers, optional

createdTime number

When the object has been created, in epoch

disable11ax boolean

Some old WLAN drivers may not be compatible

disableHtVhtRates boolean

To disable ht or vht rates

disableUapsd boolean

Whether to disable U-APSD

disableV1RoamNotify boolean

Disable sending v2 roam notification messages

disableV2RoamNotify boolean

Disable sending v2 roam notification messages

disableWhenGatewayUnreachable boolean

When any of the following is true, this WLAN will be disabled

cannot get IP
cannot obtain default gateway
cannot reach default gateway

disableWhenMxtunnelDown boolean

disableWmm boolean

Whether to disable WMM

dnsServerRewrite GetWlansSiteWlanDnsServerRewrite

For radius_group-based DNS server (rewrite DNS request depending on the Group RADIUS server returns)

dtim number

dynamicPsk GetWlansSiteWlanDynamicPsk

For dynamic PSK where we get per_user PSK from Radius. dynamic_psk allows PSK to be selected at runtime depending on context (wlan/site/user/...) thus following configurations are assumed (currently)

PSK will come from RADIUS server
AP sends client MAC as username and password (i.e. enable_mac_auth is assumed)
AP sends BSSID:SSID as Caller-Station-ID
auth_servers is required
PSK will come from cloud WLC if source is cloud_psks
default_psk will be used if cloud WLC is not available
multi_psk_only and psk is ignored
pairwise can only be wpa2-ccmp (for now, wpa3 support on the roadmap)

dynamicVlan GetWlansSiteWlanDynamicVlan

For 802.1x

enableLocalKeycaching boolean

Enable AP-AP keycaching via multicast

enableWirelessBridging boolean

enableWirelessBridgingDhcpTracking boolean

If the client bridge is doing DHCP on behalf of other devices (L2-NAT), enable dhcp_tracking will cut down DHCP response packets to be forwarded to wireless

enabled boolean

If this wlan is enabled

fastDot1xTimers boolean

If set to true, sets default fast-timers with values calculated from ‘auth_servers_timeout’ and ‘auth_server_retries’ .

hideSsid boolean

Whether to hide SSID in beacon

hostnameIe boolean

Include hostname inside IE in AP beacons / probe responses

hotspot20 GetWlansSiteWlanHotspot20

Hostspot 2.0 wlan settings

id string

Unique ID of the object instance in the Mist Organnization

injectDhcpOption82 GetWlansSiteWlanInjectDhcpOption82

interface string

where this WLAN will be connected to. enum: all, eth0, eth1, eth2, eth3, mxtunnel, site_mxedge, wxtunnel

isolation boolean

Whether to stop clients to talk to each other

l2Isolation boolean

If isolation is enabled, whether to deny clients to talk to L2 on the LAN

legacyOverds boolean

Legacy devices requires the Over-DS (for Fast BSS Transition) bit set (while our chip doesn’t support it). Warning! Enabling this will cause problem for iOS devices.

limitBcast boolean

Whether to limit broadcast packets going to wireless (i.e. only allow certain bcast packets to go through)

limitProbeResponse boolean

Limit probe response base on some heuristic rules

maxIdletime number

Max idle time in seconds

maxNumClients number

Maximum number of client connected to the SSID. 0 means unlimited

mistNac GetWlansSiteWlanMistNac

modifiedTime number

When the object has been modified for the last time, in epoch

mspId string

mxtunnelIds string[]

When interface=mxtunnel, id of the Mist Tunnel

mxtunnelNames string[]

When interface=site_medge, name of the mxtunnel that in mxtunnels under Site Setting

noStaticDns boolean

Whether to only allow client to use DNS that we’ve learned from DHCP response

noStaticIp boolean

Whether to only allow client that we’ve learned from DHCP exchange to talk

orgId string

portal GetWlansSiteWlanPortal

Portal wlan settings

portalAllowedHostnames string[]

List of hostnames without http(s):// (matched by substring)

portalAllowedSubnets string[]

List of CIDRs

portalApiSecret string

APi secret (auto-generated) that can be used to sign guest authorization requests

portalDeniedHostnames string[]

List of hostnames without http(s):// (matched by substring), this takes precedence over portal_allowed_hostnames

portalImage string

Url of portal background image

portalSsoUrl string

qos GetWlansSiteWlanQos

radsec GetWlansSiteWlanRadsec

RadSec settings

rateset {[key: string]: GetWlansSiteWlanRateset}

Property key is the RF band. enum: 24, 5, 6

reconnectClientsWhenRoamingMxcluster boolean

When different mxcluster is on different subnet, we'd want to disconnect clients (so they'll reconnect and get new IPs)

roamMode string

enum: 11r, OKC, NONE

schedule GetWlansSiteWlanSchedule

WLAN operating schedule, default is disabled

siteId string

sleExcluded boolean

Whether to exclude this WLAN from SLE metrics

ssid string

Name of the SSID

useEapolV1 boolean

If auth.type==eap or auth.type==psk, should only be set for legacy client, such as pre-2004, 802.11b devices

vlanEnabled boolean

If vlan tagging is enabled

vlanId string

vlanIds string[]

if vlan_enabled==true and vlan_pooling==true. List of VLAN IDs (comma separeted) to be used in the VLAN Pool

vlanPooling boolean

Requires vlan_enabled==true to be set to true. Vlan pooling allows AP to place client on different VLAN using a deterministic algorithm

wlanLimitDown number

In kbps

wlanLimitDownEnabled boolean

If downlink limiting for whole wlan is enabled

wlanLimitUp number

In kbps

wlanLimitUpEnabled boolean

If uplink limiting for whole wlan is enabled

wxtagIds string[]

List of wxtag_ids

wxtunnelId string

When interface=wxtunnel, id of the WXLAN Tunnel

wxtunnelRemoteId string

When interface=wxtunnel, remote tunnel identifier

acct_immediate_update bool

Enable coa-immediate-update and address-change-immediate-update on the access profile.

acct_interim_interval int

acct_servers Sequence[GetWlansSiteWlanAcctServer]

List of RADIUS accounting servers, optional, order matters where the first one is treated as primary

airwatch GetWlansSiteWlanAirwatch

Airwatch wlan settings

allow_ipv6_ndp bool

Only applicable when limit_bcast==true, which allows or disallows ipv6 Neighbor Discovery packets to go through

allow_mdns bool

Only applicable when limit_bcast==true, which allows mDNS / Bonjour packets to go through

allow_ssdp bool

Only applicable when limit_bcast==true, which allows SSDP

ap_ids Sequence[str]

List of device ids

app_limit GetWlansSiteWlanAppLimit

Bandwidth limiting for apps (applies to up/down)

app_qos GetWlansSiteWlanAppQos

APp qos wlan settings

apply_to str

enum: aps, site, wxtags

arp_filter bool

Whether to enable smart arp filter

auth GetWlansSiteWlanAuth

Authentication wlan settings

auth_server_selection str

When ordered, AP will prefer and go back to the first server if possible. enum: ordered, unordered

auth_servers Sequence[GetWlansSiteWlanAuthServer]

List of RADIUS authentication servers, at least one is needed if auth type==eap, order matters where the first one is treated as primary

auth_servers_nas_id str

Optional, up to 48 bytes, will be dynamically generated if not provided. used only for authentication servers

auth_servers_nas_ip str

Optional, NAS-IP-ADDRESS to use

auth_servers_retries int

auth_servers_timeout int

band_steer bool

Whether to enable band_steering, this works only when band==both

band_steer_force_band5 bool

Force dual_band capable client to connect to 5G

bands Sequence[str]

List of radios that the wlan should apply to.

block_blacklist_clients bool

Whether to block the clients in the blacklist (up to first 256 macs)

bonjour GetWlansSiteWlanBonjour

Bonjour gateway wlan settings

cisco_cwa GetWlansSiteWlanCiscoCwa

Cisco CWA (central web authentication) required RADIUS with COA in order to work. See CWA: https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/115732-central-web-auth-00.html

client_limit_down int

In kbps

client_limit_down_enabled bool

If downlink limiting per-client is enabled

client_limit_up int

In kbps

client_limit_up_enabled bool

If uplink limiting per-client is enabled

coa_servers Sequence[GetWlansSiteWlanCoaServer]

List of COA (change of authorization) servers, optional

created_time float

When the object has been created, in epoch

disable11ax bool

Some old WLAN drivers may not be compatible

disable_ht_vht_rates bool

To disable ht or vht rates

disable_uapsd bool

Whether to disable U-APSD

disable_v1_roam_notify bool

Disable sending v2 roam notification messages

disable_v2_roam_notify bool

Disable sending v2 roam notification messages

disable_when_gateway_unreachable bool

When any of the following is true, this WLAN will be disabled

cannot get IP
cannot obtain default gateway
cannot reach default gateway

disable_when_mxtunnel_down bool

disable_wmm bool

Whether to disable WMM

dns_server_rewrite GetWlansSiteWlanDnsServerRewrite

For radius_group-based DNS server (rewrite DNS request depending on the Group RADIUS server returns)

dtim int

dynamic_psk GetWlansSiteWlanDynamicPsk

For dynamic PSK where we get per_user PSK from Radius. dynamic_psk allows PSK to be selected at runtime depending on context (wlan/site/user/...) thus following configurations are assumed (currently)

PSK will come from RADIUS server
AP sends client MAC as username and password (i.e. enable_mac_auth is assumed)
AP sends BSSID:SSID as Caller-Station-ID
auth_servers is required
PSK will come from cloud WLC if source is cloud_psks
default_psk will be used if cloud WLC is not available
multi_psk_only and psk is ignored
pairwise can only be wpa2-ccmp (for now, wpa3 support on the roadmap)

dynamic_vlan GetWlansSiteWlanDynamicVlan

For 802.1x

enable_local_keycaching bool

Enable AP-AP keycaching via multicast

enable_wireless_bridging bool

enable_wireless_bridging_dhcp_tracking bool

If the client bridge is doing DHCP on behalf of other devices (L2-NAT), enable dhcp_tracking will cut down DHCP response packets to be forwarded to wireless

enabled bool

If this wlan is enabled

fast_dot1x_timers bool

If set to true, sets default fast-timers with values calculated from ‘auth_servers_timeout’ and ‘auth_server_retries’ .

hide_ssid bool

Whether to hide SSID in beacon

hostname_ie bool

Include hostname inside IE in AP beacons / probe responses

hotspot20 GetWlansSiteWlanHotspot20

Hostspot 2.0 wlan settings

id str

Unique ID of the object instance in the Mist Organnization

inject_dhcp_option82 GetWlansSiteWlanInjectDhcpOption82

interface str

where this WLAN will be connected to. enum: all, eth0, eth1, eth2, eth3, mxtunnel, site_mxedge, wxtunnel

isolation bool

Whether to stop clients to talk to each other

l2_isolation bool

If isolation is enabled, whether to deny clients to talk to L2 on the LAN

legacy_overds bool

Legacy devices requires the Over-DS (for Fast BSS Transition) bit set (while our chip doesn’t support it). Warning! Enabling this will cause problem for iOS devices.

limit_bcast bool

Whether to limit broadcast packets going to wireless (i.e. only allow certain bcast packets to go through)

limit_probe_response bool

Limit probe response base on some heuristic rules

max_idletime int

Max idle time in seconds

max_num_clients int

Maximum number of client connected to the SSID. 0 means unlimited

mist_nac GetWlansSiteWlanMistNac

modified_time float

When the object has been modified for the last time, in epoch

msp_id str

mxtunnel_ids Sequence[str]

When interface=mxtunnel, id of the Mist Tunnel

mxtunnel_names Sequence[str]

When interface=site_medge, name of the mxtunnel that in mxtunnels under Site Setting

no_static_dns bool

Whether to only allow client to use DNS that we’ve learned from DHCP response

no_static_ip bool

Whether to only allow client that we’ve learned from DHCP exchange to talk

org_id str

portal GetWlansSiteWlanPortal

Portal wlan settings

portal_allowed_hostnames Sequence[str]

List of hostnames without http(s):// (matched by substring)

portal_allowed_subnets Sequence[str]

List of CIDRs

portal_api_secret str

APi secret (auto-generated) that can be used to sign guest authorization requests

portal_denied_hostnames Sequence[str]

List of hostnames without http(s):// (matched by substring), this takes precedence over portal_allowed_hostnames

portal_image str

Url of portal background image

portal_sso_url str

qos GetWlansSiteWlanQos

radsec GetWlansSiteWlanRadsec

RadSec settings

rateset Mapping[str, GetWlansSiteWlanRateset]

Property key is the RF band. enum: 24, 5, 6

reconnect_clients_when_roaming_mxcluster bool

When different mxcluster is on different subnet, we'd want to disconnect clients (so they'll reconnect and get new IPs)

roam_mode str

enum: 11r, OKC, NONE

schedule GetWlansSiteWlanSchedule

WLAN operating schedule, default is disabled

site_id str

sle_excluded bool

Whether to exclude this WLAN from SLE metrics

ssid str

Name of the SSID

use_eapol_v1 bool

If auth.type==eap or auth.type==psk, should only be set for legacy client, such as pre-2004, 802.11b devices

vlan_enabled bool

If vlan tagging is enabled

vlan_id str

vlan_ids Sequence[str]

if vlan_enabled==true and vlan_pooling==true. List of VLAN IDs (comma separeted) to be used in the VLAN Pool

vlan_pooling bool

Requires vlan_enabled==true to be set to true. Vlan pooling allows AP to place client on different VLAN using a deterministic algorithm

wlan_limit_down int

In kbps

wlan_limit_down_enabled bool

If downlink limiting for whole wlan is enabled

wlan_limit_up int

In kbps

wlan_limit_up_enabled bool

If uplink limiting for whole wlan is enabled

wxtag_ids Sequence[str]

List of wxtag_ids

wxtunnel_id str

When interface=wxtunnel, id of the WXLAN Tunnel

wxtunnel_remote_id str

When interface=wxtunnel, remote tunnel identifier

acctImmediateUpdate Boolean

Enable coa-immediate-update and address-change-immediate-update on the access profile.

acctInterimInterval Number

acctServers List<Property Map>

List of RADIUS accounting servers, optional, order matters where the first one is treated as primary

airwatch Property Map

Airwatch wlan settings

allowIpv6Ndp Boolean

Only applicable when limit_bcast==true, which allows or disallows ipv6 Neighbor Discovery packets to go through

allowMdns Boolean

Only applicable when limit_bcast==true, which allows mDNS / Bonjour packets to go through

allowSsdp Boolean

Only applicable when limit_bcast==true, which allows SSDP

apIds List<String>

List of device ids

appLimit Property Map

Bandwidth limiting for apps (applies to up/down)

appQos Property Map

APp qos wlan settings

applyTo String

enum: aps, site, wxtags

arpFilter Boolean

Whether to enable smart arp filter

auth Property Map

Authentication wlan settings

authServerSelection String

When ordered, AP will prefer and go back to the first server if possible. enum: ordered, unordered

authServers List<Property Map>

List of RADIUS authentication servers, at least one is needed if auth type==eap, order matters where the first one is treated as primary

authServersNasId String

Optional, up to 48 bytes, will be dynamically generated if not provided. used only for authentication servers

authServersNasIp String

Optional, NAS-IP-ADDRESS to use

authServersRetries Number

authServersTimeout Number

bandSteer Boolean

Whether to enable band_steering, this works only when band==both

bandSteerForceBand5 Boolean

Force dual_band capable client to connect to 5G

bands List<String>

List of radios that the wlan should apply to.

blockBlacklistClients Boolean

Whether to block the clients in the blacklist (up to first 256 macs)

bonjour Property Map

Bonjour gateway wlan settings

ciscoCwa Property Map

Cisco CWA (central web authentication) required RADIUS with COA in order to work. See CWA: https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/115732-central-web-auth-00.html

clientLimitDown Number

In kbps

clientLimitDownEnabled Boolean

If downlink limiting per-client is enabled

clientLimitUp Number

In kbps

clientLimitUpEnabled Boolean

If uplink limiting per-client is enabled

coaServers List<Property Map>

List of COA (change of authorization) servers, optional

createdTime Number

When the object has been created, in epoch

disable11ax Boolean

Some old WLAN drivers may not be compatible

disableHtVhtRates Boolean

To disable ht or vht rates

disableUapsd Boolean

Whether to disable U-APSD

disableV1RoamNotify Boolean

Disable sending v2 roam notification messages

disableV2RoamNotify Boolean

Disable sending v2 roam notification messages

disableWhenGatewayUnreachable Boolean

When any of the following is true, this WLAN will be disabled

cannot get IP
cannot obtain default gateway
cannot reach default gateway

disableWhenMxtunnelDown Boolean

disableWmm Boolean

Whether to disable WMM

dnsServerRewrite Property Map

For radius_group-based DNS server (rewrite DNS request depending on the Group RADIUS server returns)

dtim Number

dynamicPsk Property Map

For dynamic PSK where we get per_user PSK from Radius. dynamic_psk allows PSK to be selected at runtime depending on context (wlan/site/user/...) thus following configurations are assumed (currently)

PSK will come from RADIUS server
AP sends client MAC as username and password (i.e. enable_mac_auth is assumed)
AP sends BSSID:SSID as Caller-Station-ID
auth_servers is required
PSK will come from cloud WLC if source is cloud_psks
default_psk will be used if cloud WLC is not available
multi_psk_only and psk is ignored
pairwise can only be wpa2-ccmp (for now, wpa3 support on the roadmap)

dynamicVlan Property Map

For 802.1x

enableLocalKeycaching Boolean

Enable AP-AP keycaching via multicast

enableWirelessBridging Boolean

enableWirelessBridgingDhcpTracking Boolean

If the client bridge is doing DHCP on behalf of other devices (L2-NAT), enable dhcp_tracking will cut down DHCP response packets to be forwarded to wireless

enabled Boolean

If this wlan is enabled

fastDot1xTimers Boolean

If set to true, sets default fast-timers with values calculated from ‘auth_servers_timeout’ and ‘auth_server_retries’ .

hideSsid Boolean

Whether to hide SSID in beacon

hostnameIe Boolean

Include hostname inside IE in AP beacons / probe responses

hotspot20 Property Map

Hostspot 2.0 wlan settings

id String

Unique ID of the object instance in the Mist Organnization

injectDhcpOption82 Property Map

interface String

where this WLAN will be connected to. enum: all, eth0, eth1, eth2, eth3, mxtunnel, site_mxedge, wxtunnel

isolation Boolean

Whether to stop clients to talk to each other

l2Isolation Boolean

If isolation is enabled, whether to deny clients to talk to L2 on the LAN

legacyOverds Boolean

Legacy devices requires the Over-DS (for Fast BSS Transition) bit set (while our chip doesn’t support it). Warning! Enabling this will cause problem for iOS devices.

limitBcast Boolean

Whether to limit broadcast packets going to wireless (i.e. only allow certain bcast packets to go through)

limitProbeResponse Boolean

Limit probe response base on some heuristic rules

maxIdletime Number

Max idle time in seconds

maxNumClients Number

Maximum number of client connected to the SSID. 0 means unlimited

mistNac Property Map

modifiedTime Number

When the object has been modified for the last time, in epoch

mspId String

mxtunnelIds List<String>

When interface=mxtunnel, id of the Mist Tunnel

mxtunnelNames List<String>

When interface=site_medge, name of the mxtunnel that in mxtunnels under Site Setting

noStaticDns Boolean

Whether to only allow client to use DNS that we’ve learned from DHCP response

noStaticIp Boolean

Whether to only allow client that we’ve learned from DHCP exchange to talk

orgId String

portal Property Map

Portal wlan settings

portalAllowedHostnames List<String>

List of hostnames without http(s):// (matched by substring)

portalAllowedSubnets List<String>

List of CIDRs

portalApiSecret String

APi secret (auto-generated) that can be used to sign guest authorization requests

portalDeniedHostnames List<String>

List of hostnames without http(s):// (matched by substring), this takes precedence over portal_allowed_hostnames

portalImage String

Url of portal background image

portalSsoUrl String

qos Property Map

radsec Property Map

RadSec settings

rateset Map<Property Map>

Property key is the RF band. enum: 24, 5, 6

reconnectClientsWhenRoamingMxcluster Boolean

When different mxcluster is on different subnet, we'd want to disconnect clients (so they'll reconnect and get new IPs)

roamMode String

enum: 11r, OKC, NONE

schedule Property Map

WLAN operating schedule, default is disabled

siteId String

sleExcluded Boolean

Whether to exclude this WLAN from SLE metrics

ssid String

Name of the SSID

useEapolV1 Boolean

If auth.type==eap or auth.type==psk, should only be set for legacy client, such as pre-2004, 802.11b devices

vlanEnabled Boolean

If vlan tagging is enabled

vlanId String

vlanIds List<String>

if vlan_enabled==true and vlan_pooling==true. List of VLAN IDs (comma separeted) to be used in the VLAN Pool

vlanPooling Boolean

Requires vlan_enabled==true to be set to true. Vlan pooling allows AP to place client on different VLAN using a deterministic algorithm

wlanLimitDown Number

In kbps

wlanLimitDownEnabled Boolean

If downlink limiting for whole wlan is enabled

wlanLimitUp Number

In kbps

wlanLimitUpEnabled Boolean

If uplink limiting for whole wlan is enabled

wxtagIds List<String>

List of wxtag_ids

wxtunnelId String

When interface=wxtunnel, id of the WXLAN Tunnel

wxtunnelRemoteId String

When interface=wxtunnel, remote tunnel identifier

GetWlansSiteWlanAcctServer

Host string: IP/ hostname of RADIUS server
KeywrapEnabled bool
KeywrapFormat string: enum: ascii, hex
KeywrapKek string
KeywrapMack string
Port int: Acct port of RADIUS server
Secret string: Secretof RADIUS server

Host string: IP/ hostname of RADIUS server
KeywrapEnabled bool
KeywrapFormat string: enum: ascii, hex
KeywrapKek string
KeywrapMack string
Port int: Acct port of RADIUS server
Secret string: Secretof RADIUS server

host String: IP/ hostname of RADIUS server
keywrapEnabled Boolean
keywrapFormat String: enum: ascii, hex
keywrapKek String
keywrapMack String
port Integer: Acct port of RADIUS server
secret String: Secretof RADIUS server

host string: IP/ hostname of RADIUS server
keywrapEnabled boolean
keywrapFormat string: enum: ascii, hex
keywrapKek string
keywrapMack string
port number: Acct port of RADIUS server
secret string: Secretof RADIUS server

host str: IP/ hostname of RADIUS server
keywrap_enabled bool
keywrap_format str: enum: ascii, hex
keywrap_kek str
keywrap_mack str
port int: Acct port of RADIUS server
secret str: Secretof RADIUS server

host String: IP/ hostname of RADIUS server
keywrapEnabled Boolean
keywrapFormat String: enum: ascii, hex
keywrapKek String
keywrapMack String
port Number: Acct port of RADIUS server
secret String: Secretof RADIUS server

GetWlansSiteWlanAirwatch

ApiKey string: API Key
ConsoleUrl string: Console URL
Enabled bool
Password string: Password
Username string: Username

ApiKey string: API Key
ConsoleUrl string: Console URL
Enabled bool
Password string: Password
Username string: Username

apiKey String: API Key
consoleUrl String: Console URL
enabled Boolean
password String: Password
username String: Username

apiKey string: API Key
consoleUrl string: Console URL
enabled boolean
password string: Password
username string: Username

api_key str: API Key
console_url str: Console URL
enabled bool
password str: Password
username str: Username

apiKey String: API Key
consoleUrl String: Console URL
enabled Boolean
password String: Password
username String: Username

GetWlansSiteWlanAppLimit

Apps Dictionary<string, int>: Map from app key to bandwidth in kbps. Property key is the app key, defined in Get Application List
Enabled bool
WxtagIds Dictionary<string, int>: Map from wxtag_id of Hostname Wxlan Tags to bandwidth in kbps. Property key is the wxtag_id

Apps map[string]int: Map from app key to bandwidth in kbps. Property key is the app key, defined in Get Application List
Enabled bool
WxtagIds map[string]int: Map from wxtag_id of Hostname Wxlan Tags to bandwidth in kbps. Property key is the wxtag_id

apps Map<String,Integer>: Map from app key to bandwidth in kbps. Property key is the app key, defined in Get Application List
enabled Boolean
wxtagIds Map<String,Integer>: Map from wxtag_id of Hostname Wxlan Tags to bandwidth in kbps. Property key is the wxtag_id

apps {[key: string]: number}: Map from app key to bandwidth in kbps. Property key is the app key, defined in Get Application List
enabled boolean
wxtagIds {[key: string]: number}: Map from wxtag_id of Hostname Wxlan Tags to bandwidth in kbps. Property key is the wxtag_id

apps Mapping[str, int]: Map from app key to bandwidth in kbps. Property key is the app key, defined in Get Application List
enabled bool
wxtag_ids Mapping[str, int]: Map from wxtag_id of Hostname Wxlan Tags to bandwidth in kbps. Property key is the wxtag_id

apps Map<Number>: Map from app key to bandwidth in kbps. Property key is the app key, defined in Get Application List
enabled Boolean
wxtagIds Map<Number>: Map from wxtag_id of Hostname Wxlan Tags to bandwidth in kbps. Property key is the wxtag_id

GetWlansSiteWlanAppQos

Apps Dictionary<string, Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanAppQosApps>
Enabled bool
Others List<Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanAppQosOther>

Apps map[string]GetWlansSiteWlanAppQosApps
Enabled bool
Others []GetWlansSiteWlanAppQosOther

apps Map<String,GetWlansSiteWlanAppQosApps>
enabled Boolean
others List<GetWlansSiteWlanAppQosOther>

apps {[key: string]: GetWlansSiteWlanAppQosApps}
enabled boolean
others GetWlansSiteWlanAppQosOther[]

apps Mapping[str, GetWlansSiteWlanAppQosApps]
enabled bool
others Sequence[GetWlansSiteWlanAppQosOther]

apps Map<Property Map>
enabled Boolean
others List<Property Map>

GetWlansSiteWlanAppQosApps

Dscp int
DstSubnet string: Subnet filter is not required but helps AP to only inspect certain traffic (thus reducing AP load)
SrcSubnet string: Subnet filter is not required but helps AP to only inspect certain traffic (thus reducing AP load)

Dscp int
DstSubnet string: Subnet filter is not required but helps AP to only inspect certain traffic (thus reducing AP load)
SrcSubnet string: Subnet filter is not required but helps AP to only inspect certain traffic (thus reducing AP load)

dscp Integer
dstSubnet String: Subnet filter is not required but helps AP to only inspect certain traffic (thus reducing AP load)
srcSubnet String: Subnet filter is not required but helps AP to only inspect certain traffic (thus reducing AP load)

dscp number
dstSubnet string: Subnet filter is not required but helps AP to only inspect certain traffic (thus reducing AP load)
srcSubnet string: Subnet filter is not required but helps AP to only inspect certain traffic (thus reducing AP load)

dscp int
dst_subnet str: Subnet filter is not required but helps AP to only inspect certain traffic (thus reducing AP load)
src_subnet str: Subnet filter is not required but helps AP to only inspect certain traffic (thus reducing AP load)

dscp Number
dstSubnet String: Subnet filter is not required but helps AP to only inspect certain traffic (thus reducing AP load)
srcSubnet String: Subnet filter is not required but helps AP to only inspect certain traffic (thus reducing AP load)

GetWlansSiteWlanAppQosOther

Dscp int
DstSubnet string
PortRanges string
Protocol string
SrcSubnet string

Dscp int
DstSubnet string
PortRanges string
Protocol string
SrcSubnet string

dscp Integer
dstSubnet String
portRanges String
protocol String
srcSubnet String

dscp number
dstSubnet string
portRanges string
protocol string
srcSubnet string

dscp int
dst_subnet str
port_ranges str
protocol str
src_subnet str

dscp Number
dstSubnet String
portRanges String
protocol String
srcSubnet String

GetWlansSiteWlanAuth

AnticlogThreshold int: SAE anti-clogging token threshold
EapReauth bool: Whether to trigger EAP reauth when the session ends
EnableMacAuth bool: Whether to enable MAC Auth, uses the same auth_servers
KeyIdx int: When type==wep
Keys List<string>: When type=wep, four 10-character or 26-character hex string, null can be used. All keys, if provided, have to be in the same length
MultiPskOnly bool: When type==psk, whether to only use multi_psk
Owe string: if type==open. enum: disabled, enabled (means transition mode), required
Pairwises List<string>: When type=psk or type=eap, one or more of wpa1-ccmp, wpa1-tkip, wpa2-ccmp, wpa2-tkip, wpa3
PrivateWlan bool: When multi_psk_only==true, whether private wlan is enabled
Psk string: When type==psk, 8-64 characters, or 64 hex characters
Type string: enum: eap, eap192, open, psk, psk-tkip, psk-wpa2-tkip, wep
WepAsSecondaryAuth bool: Enable WEP as secondary auth

AnticlogThreshold int: SAE anti-clogging token threshold
EapReauth bool: Whether to trigger EAP reauth when the session ends
EnableMacAuth bool: Whether to enable MAC Auth, uses the same auth_servers
KeyIdx int: When type==wep
Keys []string: When type=wep, four 10-character or 26-character hex string, null can be used. All keys, if provided, have to be in the same length
MultiPskOnly bool: When type==psk, whether to only use multi_psk
Owe string: if type==open. enum: disabled, enabled (means transition mode), required
Pairwises []string: When type=psk or type=eap, one or more of wpa1-ccmp, wpa1-tkip, wpa2-ccmp, wpa2-tkip, wpa3
PrivateWlan bool: When multi_psk_only==true, whether private wlan is enabled
Psk string: When type==psk, 8-64 characters, or 64 hex characters
Type string: enum: eap, eap192, open, psk, psk-tkip, psk-wpa2-tkip, wep
WepAsSecondaryAuth bool: Enable WEP as secondary auth

anticlogThreshold Integer: SAE anti-clogging token threshold
eapReauth Boolean: Whether to trigger EAP reauth when the session ends
enableMacAuth Boolean: Whether to enable MAC Auth, uses the same auth_servers
keyIdx Integer: When type==wep
keys List<String>: When type=wep, four 10-character or 26-character hex string, null can be used. All keys, if provided, have to be in the same length
multiPskOnly Boolean: When type==psk, whether to only use multi_psk
owe String: if type==open. enum: disabled, enabled (means transition mode), required
pairwises List<String>: When type=psk or type=eap, one or more of wpa1-ccmp, wpa1-tkip, wpa2-ccmp, wpa2-tkip, wpa3
privateWlan Boolean: When multi_psk_only==true, whether private wlan is enabled
psk String: When type==psk, 8-64 characters, or 64 hex characters
type String: enum: eap, eap192, open, psk, psk-tkip, psk-wpa2-tkip, wep
wepAsSecondaryAuth Boolean: Enable WEP as secondary auth

anticlogThreshold number: SAE anti-clogging token threshold
eapReauth boolean: Whether to trigger EAP reauth when the session ends
enableMacAuth boolean: Whether to enable MAC Auth, uses the same auth_servers
keyIdx number: When type==wep
keys string[]: When type=wep, four 10-character or 26-character hex string, null can be used. All keys, if provided, have to be in the same length
multiPskOnly boolean: When type==psk, whether to only use multi_psk
owe string: if type==open. enum: disabled, enabled (means transition mode), required
pairwises string[]: When type=psk or type=eap, one or more of wpa1-ccmp, wpa1-tkip, wpa2-ccmp, wpa2-tkip, wpa3
privateWlan boolean: When multi_psk_only==true, whether private wlan is enabled
psk string: When type==psk, 8-64 characters, or 64 hex characters
type string: enum: eap, eap192, open, psk, psk-tkip, psk-wpa2-tkip, wep
wepAsSecondaryAuth boolean: Enable WEP as secondary auth

anticlog_threshold int: SAE anti-clogging token threshold
eap_reauth bool: Whether to trigger EAP reauth when the session ends
enable_mac_auth bool: Whether to enable MAC Auth, uses the same auth_servers
key_idx int: When type==wep
keys Sequence[str]: When type=wep, four 10-character or 26-character hex string, null can be used. All keys, if provided, have to be in the same length
multi_psk_only bool: When type==psk, whether to only use multi_psk
owe str: if type==open. enum: disabled, enabled (means transition mode), required
pairwises Sequence[str]: When type=psk or type=eap, one or more of wpa1-ccmp, wpa1-tkip, wpa2-ccmp, wpa2-tkip, wpa3
private_wlan bool: When multi_psk_only==true, whether private wlan is enabled
psk str: When type==psk, 8-64 characters, or 64 hex characters
type str: enum: eap, eap192, open, psk, psk-tkip, psk-wpa2-tkip, wep
wep_as_secondary_auth bool: Enable WEP as secondary auth

anticlogThreshold Number: SAE anti-clogging token threshold
eapReauth Boolean: Whether to trigger EAP reauth when the session ends
enableMacAuth Boolean: Whether to enable MAC Auth, uses the same auth_servers
keyIdx Number: When type==wep
keys List<String>: When type=wep, four 10-character or 26-character hex string, null can be used. All keys, if provided, have to be in the same length
multiPskOnly Boolean: When type==psk, whether to only use multi_psk
owe String: if type==open. enum: disabled, enabled (means transition mode), required
pairwises List<String>: When type=psk or type=eap, one or more of wpa1-ccmp, wpa1-tkip, wpa2-ccmp, wpa2-tkip, wpa3
privateWlan Boolean: When multi_psk_only==true, whether private wlan is enabled
psk String: When type==psk, 8-64 characters, or 64 hex characters
type String: enum: eap, eap192, open, psk, psk-tkip, psk-wpa2-tkip, wep
wepAsSecondaryAuth Boolean: Enable WEP as secondary auth

GetWlansSiteWlanAuthServer

Host string: IP/ hostname of RADIUS server
KeywrapEnabled bool
KeywrapFormat string: enum: ascii, hex
KeywrapKek string
KeywrapMack string
Port int: Auth port of RADIUS server
RequireMessageAuthenticator bool: Whether to require Message-Authenticator in requests
Secret string: Secretof RADIUS server

Host string: IP/ hostname of RADIUS server
KeywrapEnabled bool
KeywrapFormat string: enum: ascii, hex
KeywrapKek string
KeywrapMack string
Port int: Auth port of RADIUS server
RequireMessageAuthenticator bool: Whether to require Message-Authenticator in requests
Secret string: Secretof RADIUS server

host String: IP/ hostname of RADIUS server
keywrapEnabled Boolean
keywrapFormat String: enum: ascii, hex
keywrapKek String
keywrapMack String
port Integer: Auth port of RADIUS server
requireMessageAuthenticator Boolean: Whether to require Message-Authenticator in requests
secret String: Secretof RADIUS server

host string: IP/ hostname of RADIUS server
keywrapEnabled boolean
keywrapFormat string: enum: ascii, hex
keywrapKek string
keywrapMack string
port number: Auth port of RADIUS server
requireMessageAuthenticator boolean: Whether to require Message-Authenticator in requests
secret string: Secretof RADIUS server

host str: IP/ hostname of RADIUS server
keywrap_enabled bool
keywrap_format str: enum: ascii, hex
keywrap_kek str
keywrap_mack str
port int: Auth port of RADIUS server
require_message_authenticator bool: Whether to require Message-Authenticator in requests
secret str: Secretof RADIUS server

host String: IP/ hostname of RADIUS server
keywrapEnabled Boolean
keywrapFormat String: enum: ascii, hex
keywrapKek String
keywrapMack String
port Number: Auth port of RADIUS server
requireMessageAuthenticator Boolean: Whether to require Message-Authenticator in requests
secret String: Secretof RADIUS server

GetWlansSiteWlanBonjour

AdditionalVlanIds List<string>: additional VLAN IDs (on the LAN side or from other WLANs) should we be forwarding bonjour queries/responses
Enabled bool: Whether to enable bonjour for this WLAN. Once enabled, limit_bcast is assumed true, allow_mdns is assumed false
Services Dictionary<string, Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanBonjourServices>: What services are allowed. Property key is the service name

AdditionalVlanIds []string: additional VLAN IDs (on the LAN side or from other WLANs) should we be forwarding bonjour queries/responses
Enabled bool: Whether to enable bonjour for this WLAN. Once enabled, limit_bcast is assumed true, allow_mdns is assumed false
Services map[string]GetWlansSiteWlanBonjourServices: What services are allowed. Property key is the service name

additionalVlanIds List<String>: additional VLAN IDs (on the LAN side or from other WLANs) should we be forwarding bonjour queries/responses
enabled Boolean: Whether to enable bonjour for this WLAN. Once enabled, limit_bcast is assumed true, allow_mdns is assumed false
services Map<String,GetWlansSiteWlanBonjourServices>: What services are allowed. Property key is the service name

additionalVlanIds string[]: additional VLAN IDs (on the LAN side or from other WLANs) should we be forwarding bonjour queries/responses
enabled boolean: Whether to enable bonjour for this WLAN. Once enabled, limit_bcast is assumed true, allow_mdns is assumed false
services {[key: string]: GetWlansSiteWlanBonjourServices}: What services are allowed. Property key is the service name

additional_vlan_ids Sequence[str]: additional VLAN IDs (on the LAN side or from other WLANs) should we be forwarding bonjour queries/responses
enabled bool: Whether to enable bonjour for this WLAN. Once enabled, limit_bcast is assumed true, allow_mdns is assumed false
services Mapping[str, GetWlansSiteWlanBonjourServices]: What services are allowed. Property key is the service name

additionalVlanIds List<String>: additional VLAN IDs (on the LAN side or from other WLANs) should we be forwarding bonjour queries/responses
enabled Boolean: Whether to enable bonjour for this WLAN. Once enabled, limit_bcast is assumed true, allow_mdns is assumed false
services Map<Property Map>: What services are allowed. Property key is the service name

GetWlansSiteWlanBonjourServices

DisableLocal bool: Whether to prevent wireless clients to discover bonjour devices on the same WLAN
RadiusGroups List<string>: Optional, if the service is further restricted for certain RADIUS groups
Scope string: how bonjour services should be discovered for the same WLAN. enum: same_ap, same_map, same_site

DisableLocal bool: Whether to prevent wireless clients to discover bonjour devices on the same WLAN
RadiusGroups []string: Optional, if the service is further restricted for certain RADIUS groups
Scope string: how bonjour services should be discovered for the same WLAN. enum: same_ap, same_map, same_site

disableLocal Boolean: Whether to prevent wireless clients to discover bonjour devices on the same WLAN
radiusGroups List<String>: Optional, if the service is further restricted for certain RADIUS groups
scope String: how bonjour services should be discovered for the same WLAN. enum: same_ap, same_map, same_site

disableLocal boolean: Whether to prevent wireless clients to discover bonjour devices on the same WLAN
radiusGroups string[]: Optional, if the service is further restricted for certain RADIUS groups
scope string: how bonjour services should be discovered for the same WLAN. enum: same_ap, same_map, same_site

disable_local bool: Whether to prevent wireless clients to discover bonjour devices on the same WLAN
radius_groups Sequence[str]: Optional, if the service is further restricted for certain RADIUS groups
scope str: how bonjour services should be discovered for the same WLAN. enum: same_ap, same_map, same_site

disableLocal Boolean: Whether to prevent wireless clients to discover bonjour devices on the same WLAN
radiusGroups List<String>: Optional, if the service is further restricted for certain RADIUS groups
scope String: how bonjour services should be discovered for the same WLAN. enum: same_ap, same_map, same_site

GetWlansSiteWlanCiscoCwa

AllowedHostnames List<string>: List of hostnames without http(s):// (matched by substring)
AllowedSubnets List<string>: List of CIDRs
BlockedSubnets List<string>: List of blocked CIDRs
Enabled bool

AllowedHostnames []string: List of hostnames without http(s):// (matched by substring)
AllowedSubnets []string: List of CIDRs
BlockedSubnets []string: List of blocked CIDRs
Enabled bool

allowedHostnames List<String>: List of hostnames without http(s):// (matched by substring)
allowedSubnets List<String>: List of CIDRs
blockedSubnets List<String>: List of blocked CIDRs
enabled Boolean

allowedHostnames string[]: List of hostnames without http(s):// (matched by substring)
allowedSubnets string[]: List of CIDRs
blockedSubnets string[]: List of blocked CIDRs
enabled boolean

allowed_hostnames Sequence[str]: List of hostnames without http(s):// (matched by substring)
allowed_subnets Sequence[str]: List of CIDRs
blocked_subnets Sequence[str]: List of blocked CIDRs
enabled bool

allowedHostnames List<String>: List of hostnames without http(s):// (matched by substring)
allowedSubnets List<String>: List of CIDRs
blockedSubnets List<String>: List of blocked CIDRs
enabled Boolean

GetWlansSiteWlanCoaServer

DisableEventTimestampCheck bool: Whether to disable Event-Timestamp Check
Enabled bool
Ip string
Port int
Secret string

DisableEventTimestampCheck bool: Whether to disable Event-Timestamp Check
Enabled bool
Ip string
Port int
Secret string

disableEventTimestampCheck Boolean: Whether to disable Event-Timestamp Check
enabled Boolean
ip String
port Integer
secret String

disableEventTimestampCheck boolean: Whether to disable Event-Timestamp Check
enabled boolean
ip string
port number
secret string

disable_event_timestamp_check bool: Whether to disable Event-Timestamp Check
enabled bool
ip str
port int
secret str

disableEventTimestampCheck Boolean: Whether to disable Event-Timestamp Check
enabled Boolean
ip String
port Number
secret String

GetWlansSiteWlanDnsServerRewrite

Enabled bool
RadiusGroups Dictionary<string, string>: Map between radius_group and the desired DNS server (IPv4 only). Property key is the RADIUS group, property value is the desired DNS Server

Enabled bool
RadiusGroups map[string]string: Map between radius_group and the desired DNS server (IPv4 only). Property key is the RADIUS group, property value is the desired DNS Server

enabled Boolean
radiusGroups Map<String,String>: Map between radius_group and the desired DNS server (IPv4 only). Property key is the RADIUS group, property value is the desired DNS Server

enabled boolean
radiusGroups {[key: string]: string}: Map between radius_group and the desired DNS server (IPv4 only). Property key is the RADIUS group, property value is the desired DNS Server

enabled bool
radius_groups Mapping[str, str]: Map between radius_group and the desired DNS server (IPv4 only). Property key is the RADIUS group, property value is the desired DNS Server

enabled Boolean
radiusGroups Map<String>: Map between radius_group and the desired DNS server (IPv4 only). Property key is the RADIUS group, property value is the desired DNS Server

GetWlansSiteWlanDynamicPsk

DefaultPsk string: Default PSK to use if cloud WLC is not available, 8-63 characters
DefaultVlanId string
Enabled bool
ForceLookup bool: When 11r is enabled, we'll try to use the cached PMK, this can be disabled. false means auto
Source string: enum: cloud_psks, radius

DefaultPsk string: Default PSK to use if cloud WLC is not available, 8-63 characters
DefaultVlanId string
Enabled bool
ForceLookup bool: When 11r is enabled, we'll try to use the cached PMK, this can be disabled. false means auto
Source string: enum: cloud_psks, radius

defaultPsk String: Default PSK to use if cloud WLC is not available, 8-63 characters
defaultVlanId String
enabled Boolean
forceLookup Boolean: When 11r is enabled, we'll try to use the cached PMK, this can be disabled. false means auto
source String: enum: cloud_psks, radius

defaultPsk string: Default PSK to use if cloud WLC is not available, 8-63 characters
defaultVlanId string
enabled boolean
forceLookup boolean: When 11r is enabled, we'll try to use the cached PMK, this can be disabled. false means auto
source string: enum: cloud_psks, radius

default_psk str: Default PSK to use if cloud WLC is not available, 8-63 characters
default_vlan_id str
enabled bool
force_lookup bool: When 11r is enabled, we'll try to use the cached PMK, this can be disabled. false means auto
source str: enum: cloud_psks, radius

defaultPsk String: Default PSK to use if cloud WLC is not available, 8-63 characters
defaultVlanId String
enabled Boolean
forceLookup Boolean: When 11r is enabled, we'll try to use the cached PMK, this can be disabled. false means auto
source String: enum: cloud_psks, radius

GetWlansSiteWlanDynamicVlan

DefaultVlanIds List<string>

Default VLAN ID(s) can be a number, a range of VLAN IDs, a variable or multiple numbers, ranges or variables as a VLAN pool. Default VLAN as a pool of VLANS requires 0.14.x or newer firmware

Enabled bool

Requires vlan_enabled==true to be set to true. Whether to enable dynamic vlan

LocalVlanIds List<string>

VLAN_ids to be locally bridged

Type string

standard (using Tunnel-Private-Group-ID, widely supported), airespace-interface-name (Airespace/Cisco). enum: airespace-interface-name, standard

Vlans Dictionary<string, string>

Map between vlan_id (as string) to airespace interface names (comma-separated) or null for stndard mapping

if dynamic_vlan.type==standard, property key is the Vlan ID and property value is ""
if dynamic_vlan.type==airespace-interface-name, property key is the Vlan ID and property value is the Airespace Interface Name

DefaultVlanIds []string

Default VLAN ID(s) can be a number, a range of VLAN IDs, a variable or multiple numbers, ranges or variables as a VLAN pool. Default VLAN as a pool of VLANS requires 0.14.x or newer firmware

Enabled bool

Requires vlan_enabled==true to be set to true. Whether to enable dynamic vlan

LocalVlanIds []string

VLAN_ids to be locally bridged

Type string

standard (using Tunnel-Private-Group-ID, widely supported), airespace-interface-name (Airespace/Cisco). enum: airespace-interface-name, standard

Vlans map[string]string

Map between vlan_id (as string) to airespace interface names (comma-separated) or null for stndard mapping

if dynamic_vlan.type==standard, property key is the Vlan ID and property value is ""
if dynamic_vlan.type==airespace-interface-name, property key is the Vlan ID and property value is the Airespace Interface Name

defaultVlanIds List<String>

Default VLAN ID(s) can be a number, a range of VLAN IDs, a variable or multiple numbers, ranges or variables as a VLAN pool. Default VLAN as a pool of VLANS requires 0.14.x or newer firmware

enabled Boolean

Requires vlan_enabled==true to be set to true. Whether to enable dynamic vlan

localVlanIds List<String>

VLAN_ids to be locally bridged

type String

standard (using Tunnel-Private-Group-ID, widely supported), airespace-interface-name (Airespace/Cisco). enum: airespace-interface-name, standard

vlans Map<String,String>

Map between vlan_id (as string) to airespace interface names (comma-separated) or null for stndard mapping

if dynamic_vlan.type==standard, property key is the Vlan ID and property value is ""
if dynamic_vlan.type==airespace-interface-name, property key is the Vlan ID and property value is the Airespace Interface Name

defaultVlanIds string[]

Default VLAN ID(s) can be a number, a range of VLAN IDs, a variable or multiple numbers, ranges or variables as a VLAN pool. Default VLAN as a pool of VLANS requires 0.14.x or newer firmware

enabled boolean

Requires vlan_enabled==true to be set to true. Whether to enable dynamic vlan

localVlanIds string[]

VLAN_ids to be locally bridged

type string

standard (using Tunnel-Private-Group-ID, widely supported), airespace-interface-name (Airespace/Cisco). enum: airespace-interface-name, standard

vlans {[key: string]: string}

Map between vlan_id (as string) to airespace interface names (comma-separated) or null for stndard mapping

if dynamic_vlan.type==standard, property key is the Vlan ID and property value is ""
if dynamic_vlan.type==airespace-interface-name, property key is the Vlan ID and property value is the Airespace Interface Name

default_vlan_ids Sequence[str]

Default VLAN ID(s) can be a number, a range of VLAN IDs, a variable or multiple numbers, ranges or variables as a VLAN pool. Default VLAN as a pool of VLANS requires 0.14.x or newer firmware

enabled bool

Requires vlan_enabled==true to be set to true. Whether to enable dynamic vlan

local_vlan_ids Sequence[str]

VLAN_ids to be locally bridged

type str

standard (using Tunnel-Private-Group-ID, widely supported), airespace-interface-name (Airespace/Cisco). enum: airespace-interface-name, standard

vlans Mapping[str, str]

Map between vlan_id (as string) to airespace interface names (comma-separated) or null for stndard mapping

if dynamic_vlan.type==standard, property key is the Vlan ID and property value is ""
if dynamic_vlan.type==airespace-interface-name, property key is the Vlan ID and property value is the Airespace Interface Name

defaultVlanIds List<String>

Default VLAN ID(s) can be a number, a range of VLAN IDs, a variable or multiple numbers, ranges or variables as a VLAN pool. Default VLAN as a pool of VLANS requires 0.14.x or newer firmware

enabled Boolean

Requires vlan_enabled==true to be set to true. Whether to enable dynamic vlan

localVlanIds List<String>

VLAN_ids to be locally bridged

type String

standard (using Tunnel-Private-Group-ID, widely supported), airespace-interface-name (Airespace/Cisco). enum: airespace-interface-name, standard

vlans Map<String>

Map between vlan_id (as string) to airespace interface names (comma-separated) or null for stndard mapping

if dynamic_vlan.type==standard, property key is the Vlan ID and property value is ""
if dynamic_vlan.type==airespace-interface-name, property key is the Vlan ID and property value is the Airespace Interface Name

GetWlansSiteWlanHotspot20

DomainNames List<string>
Enabled bool: Whether to enable hotspot 2.0 config
NaiRealms List<string>
Operators List<string>: List of operators to support
Rcois List<string>
VenueName string: Venue name, default is site name

DomainNames []string
Enabled bool: Whether to enable hotspot 2.0 config
NaiRealms []string
Operators []string: List of operators to support
Rcois []string
VenueName string: Venue name, default is site name

domainNames List<String>
enabled Boolean: Whether to enable hotspot 2.0 config
naiRealms List<String>
operators List<String>: List of operators to support
rcois List<String>
venueName String: Venue name, default is site name

domainNames string[]
enabled boolean: Whether to enable hotspot 2.0 config
naiRealms string[]
operators string[]: List of operators to support
rcois string[]
venueName string: Venue name, default is site name

domain_names Sequence[str]
enabled bool: Whether to enable hotspot 2.0 config
nai_realms Sequence[str]
operators Sequence[str]: List of operators to support
rcois Sequence[str]
venue_name str: Venue name, default is site name

domainNames List<String>
enabled Boolean: Whether to enable hotspot 2.0 config
naiRealms List<String>
operators List<String>: List of operators to support
rcois List<String>
venueName String: Venue name, default is site name

GetWlansSiteWlanInjectDhcpOption82

CircuitId string

Information to set in the circuit_id field of the DHCP Option 82. It is possible to use static string or the following variables (e.g. {{SSID}}:{{AP_MAC}}):

{{AP_MAC}}
{{AP_MAC_DASHED}}
{{AP_MODEL}}
{{AP_NAME}}
{{SITE_NAME}}
{{SSID}}

Enabled bool

Whether to inject option 82 when forwarding DHCP packets

CircuitId string

Information to set in the circuit_id field of the DHCP Option 82. It is possible to use static string or the following variables (e.g. {{SSID}}:{{AP_MAC}}):

{{AP_MAC}}
{{AP_MAC_DASHED}}
{{AP_MODEL}}
{{AP_NAME}}
{{SITE_NAME}}
{{SSID}}

Enabled bool

Whether to inject option 82 when forwarding DHCP packets

circuitId String

Information to set in the circuit_id field of the DHCP Option 82. It is possible to use static string or the following variables (e.g. {{SSID}}:{{AP_MAC}}):

{{AP_MAC}}
{{AP_MAC_DASHED}}
{{AP_MODEL}}
{{AP_NAME}}
{{SITE_NAME}}
{{SSID}}

enabled Boolean

Whether to inject option 82 when forwarding DHCP packets

circuitId string

Information to set in the circuit_id field of the DHCP Option 82. It is possible to use static string or the following variables (e.g. {{SSID}}:{{AP_MAC}}):

{{AP_MAC}}
{{AP_MAC_DASHED}}
{{AP_MODEL}}
{{AP_NAME}}
{{SITE_NAME}}
{{SSID}}

enabled boolean

Whether to inject option 82 when forwarding DHCP packets

circuit_id str

Information to set in the circuit_id field of the DHCP Option 82. It is possible to use static string or the following variables (e.g. {{SSID}}:{{AP_MAC}}):

{{AP_MAC}}
{{AP_MAC_DASHED}}
{{AP_MODEL}}
{{AP_NAME}}
{{SITE_NAME}}
{{SSID}}

enabled bool

Whether to inject option 82 when forwarding DHCP packets

circuitId String

Information to set in the circuit_id field of the DHCP Option 82. It is possible to use static string or the following variables (e.g. {{SSID}}:{{AP_MAC}}):

{{AP_MAC}}
{{AP_MAC_DASHED}}
{{AP_MODEL}}
{{AP_NAME}}
{{SITE_NAME}}
{{SSID}}

enabled Boolean

Whether to inject option 82 when forwarding DHCP packets

GetWlansSiteWlanMistNac

Enabled bool

When enabled:

auth_servers is ignored
acct_servers is ignored
auth_servers_* are ignored
coa_servers is ignored
radsec is ignored
coa_enabled is assumed

Enabled bool

When enabled:

auth_servers is ignored
acct_servers is ignored
auth_servers_* are ignored
coa_servers is ignored
radsec is ignored
coa_enabled is assumed

enabled Boolean

When enabled:

auth_servers is ignored
acct_servers is ignored
auth_servers_* are ignored
coa_servers is ignored
radsec is ignored
coa_enabled is assumed

enabled boolean

When enabled:

auth_servers is ignored
acct_servers is ignored
auth_servers_* are ignored
coa_servers is ignored
radsec is ignored
coa_enabled is assumed

enabled bool

When enabled:

auth_servers is ignored
acct_servers is ignored
auth_servers_* are ignored
coa_servers is ignored
radsec is ignored
coa_enabled is assumed

enabled Boolean

When enabled:

auth_servers is ignored
acct_servers is ignored
auth_servers_* are ignored
coa_servers is ignored
radsec is ignored
coa_enabled is assumed

GetWlansSiteWlanPortal

AllowWlanIdRoam bool

Optional if amazon_enabled==true. Whether to allow guest to connect to other Guest WLANs (with different WLAN.ssid) of same org without reauthentication (disable random_mac for seamless roaming)

AmazonClientId string

Optional if amazon_enabled==true. Amazon OAuth2 client id. This is optional. If not provided, it will use a default one.

AmazonClientSecret string

Optional if amazon_enabled==true. Amazon OAuth2 client secret. If amazon_client_id was provided, provide a correspoinding value. Else leave blank.

AmazonEmailDomains List<string>

Optional if amazon_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

AmazonEnabled bool

Whether amazon is enabled as a login method

AmazonExpire int

Optional if amazon_enabled==true. Interval for which guest remains authorized using amazon auth (in minutes), if not provided, uses expire`

Auth string

authentication scheme. enum: amazon, azure, email, external, facebook, google, microsoft, multi, none, password, sponsor, sso

AzureClientId string

Required if azure_enabled==true. Azure active directory app client id

AzureClientSecret string

Required if azure_enabled==true. Azure active directory app client secret

AzureEnabled bool

Whether Azure Active Directory is enabled as a login method

AzureExpire int

Interval for which guest remains authorized using azure auth (in minutes), if not provided, uses expire`

AzureTenantId string

Required if azure_enabled==true. Azure active directory tenant id.

BroadnetPassword string

Required if sms_provider==broadnet

BroadnetSid string

Required if sms_provider==broadnet

BroadnetUserId string

Required if sms_provider==broadnet

BypassWhenCloudDown bool

Whether to bypass the guest portal when cloud not reachable (and apply the default policies)

ClickatellApiKey string

Required if sms_provider==clickatell

CrossSite bool

Whether to allow guest to roam between WLANs (with same WLAN.ssid, regardless of variables) of different sites of same org without reauthentication (disable random_mac for seamless roaming)

EmailEnabled bool

Whether email (access code verification) is enabled as a login method

Enabled bool

Whether guest portal is enabled

Expire int

How long to remain authorized, in minutes

ExternalPortalUrl string

Required if wlan_portal_auth==external. External portal URL (e.g. https://host/url) where we can append our query parameters to

FacebookClientId string

Required if facebook_enabled==true. Facebook OAuth2 app id. This is optional. If not provided, it will use a default one.

FacebookClientSecret string

Required if facebook_enabled==true. Facebook OAuth2 app secret. If facebook_client_id was provided, provide a correspoinding value. Else leave blank.

FacebookEmailDomains List<string>

Optional if facebook_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

FacebookEnabled bool

Whether facebook is enabled as a login method

FacebookExpire int

Optional if facebook_enabled==true. Interval for which guest remains authorized using facebook auth (in minutes), if not provided, uses expire`

Forward bool

Whether to forward the user to another URL after authorized

ForwardUrl string

URL to forward the user to

GoogleClientId string

Google OAuth2 app id. This is optional. If not provided, it will use a default one.

GoogleClientSecret string

Optional if google_enabled==true. Google OAuth2 app secret. If google_client_id was provided, provide a correspoinding value. Else leave blank.

GoogleEmailDomains List<string>

Optional if google_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

GoogleEnabled bool

Whether Google is enabled as login method

GoogleExpire int

Optional if google_enabled==true. Interval for which guest remains authorized using Google Auth (in minutes), if not provided, uses expire`

GupshupPassword string

Required if sms_provider==gupshup

GupshupUserid string

Required if sms_provider==gupshup

MicrosoftClientId string

Optional if microsoft_enabled==true. Microsoft 365 OAuth2 client id. This is optional. If not provided, it will use a default one.

MicrosoftClientSecret string

Optional if microsoft_enabled==true. Microsoft 365 OAuth2 client secret. If microsoft_client_id was provided, provide a correspoinding value. Else leave blank.

MicrosoftEmailDomains List<string>

Optional if microsoft_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

MicrosoftEnabled bool

Whether microsoft 365 is enabled as a login method

MicrosoftExpire int

Optional if microsoft_enabled==true. Interval for which guest remains authorized using microsoft auth (in minutes), if not provided, uses expire`

PassphraseEnabled bool

Whether password is enabled

PassphraseExpire int

Optional if passphrase_enabled==true. Interval for which guest remains authorized using passphrase auth (in minutes), if not provided, uses expire

Password string

Required if passphrase_enabled==true.

PredefinedSponsorsEnabled bool

Whether to show list of sponsor emails mentioned in sponsors object as a dropdown. If both sponsor_notify_all and predefined_sponsors_enabled are false, behaviour is acc to sponsor_email_domains

PredefinedSponsorsHideEmail bool

Whether to hide sponsor’s email from list of sponsors

Privacy bool

PuzzelPassword string

Required if sms_provider==puzzel

PuzzelServiceId string

Required if sms_provider==puzzel

PuzzelUsername string

Required if sms_provider==puzzel

SmsEnabled bool

Whether sms is enabled as a login method

SmsExpire int

Optional if sms_enabled==true. Interval for which guest remains authorized using sms auth (in minutes), if not provided, uses expire`

SmsMessageFormat string

Optional if sms_enabled==true. SMS Message format

SmsProvider string

Optioanl if sms_enabled==true. enum: broadnet, clickatell, gupshup, manual, puzzel, telstra, twilio

SponsorAutoApprove bool

Optional if sponsor_enabled==true. Whether to automatically approve guest and allow sponsor to revoke guest access, needs predefined_sponsors_enabled enabled and sponsor_notify_all disabled

SponsorEmailDomains List<string>

List of domain allowed for sponsor email. Required if sponsor_enabled is true and sponsors is empty.

SponsorEnabled bool

Whether sponsor is enabled

SponsorExpire int

Optional if sponsor_enabled==true. Interval for which guest remains authorized using sponsor auth (in minutes), if not provided, uses expire`

SponsorLinkValidityDuration string

Optional if sponsor_enabled==true. How long to remain valid sponsored guest request approve/deny link received in email, in minutes.

SponsorNotifyAll bool

Optional if sponsor_enabled==true. whether to notify all sponsors that are mentioned in sponsors object. Both sponsor_notify_all and predefined_sponsors_enabled should be true in order to notify sponsors. If true, email sent to 10 sponsors in no particular order.

SponsorStatusNotify bool

Optional if sponsor_enabled==true. If enabled, guest will get email about sponsor's action (approve/deny)

Sponsors Dictionary<string, string>

object of allowed sponsors email with name. Required if sponsor_enabled is true and sponsor_email_domains is empty.

        Property key is the sponsor email, Property value is the sponsor name

SsoDefaultRole string

Optionl if wlan_portal_auth==sso, default role to assign if there’s no match. By default, an assertion is treated as invalid when there’s no role matched

SsoForcedRole string

Optionl if wlan_portal_auth==sso

SsoIdpCert string

Required if wlan_portal_auth==sso. IDP Cert (used to verify the signed response)

SsoIdpSignAlgo string

Optioanl if wlan_portal_auth==sso, Signing algorithm for SAML Assertion. enum: sha1, sha256, sha384, sha512

SsoIdpSsoUrl string

Required if wlan_portal_auth==sso, IDP Single-Sign-On URL

SsoIssuer string

Required if wlan_portal_auth==sso, IDP issuer URL

SsoNameidFormat string

Optional if wlan_portal_auth==sso. enum: email, unspecified

TelstraClientId string

Required if sms_provider==telstra, Client ID provided by Telstra

TelstraClientSecret string

Required if sms_provider==telstra, Client secret provided by Telstra

TwilioAuthToken string

Required if sms_provider==twilio, Auth token account with twilio account

TwilioPhoneNumber string

Required if sms_provider==twilio, Twilio phone number associated with the account. See example for accepted format.

TwilioSid string

Required if sms_provider==twilio, Account SID provided by Twilio

AllowWlanIdRoam bool

AmazonClientId string

Optional if amazon_enabled==true. Amazon OAuth2 client id. This is optional. If not provided, it will use a default one.

AmazonClientSecret string

Optional if amazon_enabled==true. Amazon OAuth2 client secret. If amazon_client_id was provided, provide a correspoinding value. Else leave blank.

AmazonEmailDomains []string

Optional if amazon_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

AmazonEnabled bool

Whether amazon is enabled as a login method

AmazonExpire int

Optional if amazon_enabled==true. Interval for which guest remains authorized using amazon auth (in minutes), if not provided, uses expire`

Auth string

authentication scheme. enum: amazon, azure, email, external, facebook, google, microsoft, multi, none, password, sponsor, sso

AzureClientId string

Required if azure_enabled==true. Azure active directory app client id

AzureClientSecret string

Required if azure_enabled==true. Azure active directory app client secret

AzureEnabled bool

Whether Azure Active Directory is enabled as a login method

AzureExpire int

Interval for which guest remains authorized using azure auth (in minutes), if not provided, uses expire`

AzureTenantId string

Required if azure_enabled==true. Azure active directory tenant id.

BroadnetPassword string

Required if sms_provider==broadnet

BroadnetSid string

Required if sms_provider==broadnet

BroadnetUserId string

Required if sms_provider==broadnet

BypassWhenCloudDown bool

Whether to bypass the guest portal when cloud not reachable (and apply the default policies)

ClickatellApiKey string

Required if sms_provider==clickatell

CrossSite bool

Whether to allow guest to roam between WLANs (with same WLAN.ssid, regardless of variables) of different sites of same org without reauthentication (disable random_mac for seamless roaming)

EmailEnabled bool

Whether email (access code verification) is enabled as a login method

Enabled bool

Whether guest portal is enabled

Expire int

How long to remain authorized, in minutes

ExternalPortalUrl string

Required if wlan_portal_auth==external. External portal URL (e.g. https://host/url) where we can append our query parameters to

FacebookClientId string

Required if facebook_enabled==true. Facebook OAuth2 app id. This is optional. If not provided, it will use a default one.

FacebookClientSecret string

Required if facebook_enabled==true. Facebook OAuth2 app secret. If facebook_client_id was provided, provide a correspoinding value. Else leave blank.

FacebookEmailDomains []string

Optional if facebook_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

FacebookEnabled bool

Whether facebook is enabled as a login method

FacebookExpire int

Optional if facebook_enabled==true. Interval for which guest remains authorized using facebook auth (in minutes), if not provided, uses expire`

Forward bool

Whether to forward the user to another URL after authorized

ForwardUrl string

URL to forward the user to

GoogleClientId string

Google OAuth2 app id. This is optional. If not provided, it will use a default one.

GoogleClientSecret string

Optional if google_enabled==true. Google OAuth2 app secret. If google_client_id was provided, provide a correspoinding value. Else leave blank.

GoogleEmailDomains []string

Optional if google_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

GoogleEnabled bool

Whether Google is enabled as login method

GoogleExpire int

Optional if google_enabled==true. Interval for which guest remains authorized using Google Auth (in minutes), if not provided, uses expire`

GupshupPassword string

Required if sms_provider==gupshup

GupshupUserid string

Required if sms_provider==gupshup

MicrosoftClientId string

Optional if microsoft_enabled==true. Microsoft 365 OAuth2 client id. This is optional. If not provided, it will use a default one.

MicrosoftClientSecret string

Optional if microsoft_enabled==true. Microsoft 365 OAuth2 client secret. If microsoft_client_id was provided, provide a correspoinding value. Else leave blank.

MicrosoftEmailDomains []string

Optional if microsoft_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

MicrosoftEnabled bool

Whether microsoft 365 is enabled as a login method

MicrosoftExpire int

Optional if microsoft_enabled==true. Interval for which guest remains authorized using microsoft auth (in minutes), if not provided, uses expire`

PassphraseEnabled bool

Whether password is enabled

PassphraseExpire int

Optional if passphrase_enabled==true. Interval for which guest remains authorized using passphrase auth (in minutes), if not provided, uses expire

Password string

Required if passphrase_enabled==true.

PredefinedSponsorsEnabled bool

PredefinedSponsorsHideEmail bool

Whether to hide sponsor’s email from list of sponsors

Privacy bool

PuzzelPassword string

Required if sms_provider==puzzel

PuzzelServiceId string

Required if sms_provider==puzzel

PuzzelUsername string

Required if sms_provider==puzzel

SmsEnabled bool

Whether sms is enabled as a login method

SmsExpire int

Optional if sms_enabled==true. Interval for which guest remains authorized using sms auth (in minutes), if not provided, uses expire`

SmsMessageFormat string

Optional if sms_enabled==true. SMS Message format

SmsProvider string

Optioanl if sms_enabled==true. enum: broadnet, clickatell, gupshup, manual, puzzel, telstra, twilio

SponsorAutoApprove bool

Optional if sponsor_enabled==true. Whether to automatically approve guest and allow sponsor to revoke guest access, needs predefined_sponsors_enabled enabled and sponsor_notify_all disabled

SponsorEmailDomains []string

List of domain allowed for sponsor email. Required if sponsor_enabled is true and sponsors is empty.

SponsorEnabled bool

Whether sponsor is enabled

SponsorExpire int

Optional if sponsor_enabled==true. Interval for which guest remains authorized using sponsor auth (in minutes), if not provided, uses expire`

SponsorLinkValidityDuration string

Optional if sponsor_enabled==true. How long to remain valid sponsored guest request approve/deny link received in email, in minutes.

SponsorNotifyAll bool

SponsorStatusNotify bool

Optional if sponsor_enabled==true. If enabled, guest will get email about sponsor's action (approve/deny)

Sponsors map[string]string

object of allowed sponsors email with name. Required if sponsor_enabled is true and sponsor_email_domains is empty.

        Property key is the sponsor email, Property value is the sponsor name

SsoDefaultRole string

Optionl if wlan_portal_auth==sso, default role to assign if there’s no match. By default, an assertion is treated as invalid when there’s no role matched

SsoForcedRole string

Optionl if wlan_portal_auth==sso

SsoIdpCert string

Required if wlan_portal_auth==sso. IDP Cert (used to verify the signed response)

SsoIdpSignAlgo string

Optioanl if wlan_portal_auth==sso, Signing algorithm for SAML Assertion. enum: sha1, sha256, sha384, sha512

SsoIdpSsoUrl string

Required if wlan_portal_auth==sso, IDP Single-Sign-On URL

SsoIssuer string

Required if wlan_portal_auth==sso, IDP issuer URL

SsoNameidFormat string

Optional if wlan_portal_auth==sso. enum: email, unspecified

TelstraClientId string

Required if sms_provider==telstra, Client ID provided by Telstra

TelstraClientSecret string

Required if sms_provider==telstra, Client secret provided by Telstra

TwilioAuthToken string

Required if sms_provider==twilio, Auth token account with twilio account

TwilioPhoneNumber string

Required if sms_provider==twilio, Twilio phone number associated with the account. See example for accepted format.

TwilioSid string

Required if sms_provider==twilio, Account SID provided by Twilio

allowWlanIdRoam Boolean

amazonClientId String

Optional if amazon_enabled==true. Amazon OAuth2 client id. This is optional. If not provided, it will use a default one.

amazonClientSecret String

Optional if amazon_enabled==true. Amazon OAuth2 client secret. If amazon_client_id was provided, provide a correspoinding value. Else leave blank.

amazonEmailDomains List<String>

Optional if amazon_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

amazonEnabled Boolean

Whether amazon is enabled as a login method

amazonExpire Integer

Optional if amazon_enabled==true. Interval for which guest remains authorized using amazon auth (in minutes), if not provided, uses expire`

auth String

authentication scheme. enum: amazon, azure, email, external, facebook, google, microsoft, multi, none, password, sponsor, sso

azureClientId String

Required if azure_enabled==true. Azure active directory app client id

azureClientSecret String

Required if azure_enabled==true. Azure active directory app client secret

azureEnabled Boolean

Whether Azure Active Directory is enabled as a login method

azureExpire Integer

Interval for which guest remains authorized using azure auth (in minutes), if not provided, uses expire`

azureTenantId String

Required if azure_enabled==true. Azure active directory tenant id.

broadnetPassword String

Required if sms_provider==broadnet

broadnetSid String

Required if sms_provider==broadnet

broadnetUserId String

Required if sms_provider==broadnet

bypassWhenCloudDown Boolean

Whether to bypass the guest portal when cloud not reachable (and apply the default policies)

clickatellApiKey String

Required if sms_provider==clickatell

crossSite Boolean

Whether to allow guest to roam between WLANs (with same WLAN.ssid, regardless of variables) of different sites of same org without reauthentication (disable random_mac for seamless roaming)

emailEnabled Boolean

Whether email (access code verification) is enabled as a login method

enabled Boolean

Whether guest portal is enabled

expire Integer

How long to remain authorized, in minutes

externalPortalUrl String

Required if wlan_portal_auth==external. External portal URL (e.g. https://host/url) where we can append our query parameters to

facebookClientId String

Required if facebook_enabled==true. Facebook OAuth2 app id. This is optional. If not provided, it will use a default one.

facebookClientSecret String

Required if facebook_enabled==true. Facebook OAuth2 app secret. If facebook_client_id was provided, provide a correspoinding value. Else leave blank.

facebookEmailDomains List<String>

Optional if facebook_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

facebookEnabled Boolean

Whether facebook is enabled as a login method

facebookExpire Integer

Optional if facebook_enabled==true. Interval for which guest remains authorized using facebook auth (in minutes), if not provided, uses expire`

forward Boolean

Whether to forward the user to another URL after authorized

forwardUrl String

URL to forward the user to

googleClientId String

Google OAuth2 app id. This is optional. If not provided, it will use a default one.

googleClientSecret String

Optional if google_enabled==true. Google OAuth2 app secret. If google_client_id was provided, provide a correspoinding value. Else leave blank.

googleEmailDomains List<String>

Optional if google_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

googleEnabled Boolean

Whether Google is enabled as login method

googleExpire Integer

Optional if google_enabled==true. Interval for which guest remains authorized using Google Auth (in minutes), if not provided, uses expire`

gupshupPassword String

Required if sms_provider==gupshup

gupshupUserid String

Required if sms_provider==gupshup

microsoftClientId String

Optional if microsoft_enabled==true. Microsoft 365 OAuth2 client id. This is optional. If not provided, it will use a default one.

microsoftClientSecret String

Optional if microsoft_enabled==true. Microsoft 365 OAuth2 client secret. If microsoft_client_id was provided, provide a correspoinding value. Else leave blank.

microsoftEmailDomains List<String>

Optional if microsoft_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

microsoftEnabled Boolean

Whether microsoft 365 is enabled as a login method

microsoftExpire Integer

Optional if microsoft_enabled==true. Interval for which guest remains authorized using microsoft auth (in minutes), if not provided, uses expire`

passphraseEnabled Boolean

Whether password is enabled

passphraseExpire Integer

Optional if passphrase_enabled==true. Interval for which guest remains authorized using passphrase auth (in minutes), if not provided, uses expire

password String

Required if passphrase_enabled==true.

predefinedSponsorsEnabled Boolean

predefinedSponsorsHideEmail Boolean

Whether to hide sponsor’s email from list of sponsors

privacy Boolean

puzzelPassword String

Required if sms_provider==puzzel

puzzelServiceId String

Required if sms_provider==puzzel

puzzelUsername String

Required if sms_provider==puzzel

smsEnabled Boolean

Whether sms is enabled as a login method

smsExpire Integer

Optional if sms_enabled==true. Interval for which guest remains authorized using sms auth (in minutes), if not provided, uses expire`

smsMessageFormat String

Optional if sms_enabled==true. SMS Message format

smsProvider String

Optioanl if sms_enabled==true. enum: broadnet, clickatell, gupshup, manual, puzzel, telstra, twilio

sponsorAutoApprove Boolean

Optional if sponsor_enabled==true. Whether to automatically approve guest and allow sponsor to revoke guest access, needs predefined_sponsors_enabled enabled and sponsor_notify_all disabled

sponsorEmailDomains List<String>

List of domain allowed for sponsor email. Required if sponsor_enabled is true and sponsors is empty.

sponsorEnabled Boolean

Whether sponsor is enabled

sponsorExpire Integer

Optional if sponsor_enabled==true. Interval for which guest remains authorized using sponsor auth (in minutes), if not provided, uses expire`

sponsorLinkValidityDuration String

Optional if sponsor_enabled==true. How long to remain valid sponsored guest request approve/deny link received in email, in minutes.

sponsorNotifyAll Boolean

sponsorStatusNotify Boolean

Optional if sponsor_enabled==true. If enabled, guest will get email about sponsor's action (approve/deny)

sponsors Map<String,String>

object of allowed sponsors email with name. Required if sponsor_enabled is true and sponsor_email_domains is empty.

        Property key is the sponsor email, Property value is the sponsor name

ssoDefaultRole String

Optionl if wlan_portal_auth==sso, default role to assign if there’s no match. By default, an assertion is treated as invalid when there’s no role matched

ssoForcedRole String

Optionl if wlan_portal_auth==sso

ssoIdpCert String

Required if wlan_portal_auth==sso. IDP Cert (used to verify the signed response)

ssoIdpSignAlgo String

Optioanl if wlan_portal_auth==sso, Signing algorithm for SAML Assertion. enum: sha1, sha256, sha384, sha512

ssoIdpSsoUrl String

Required if wlan_portal_auth==sso, IDP Single-Sign-On URL

ssoIssuer String

Required if wlan_portal_auth==sso, IDP issuer URL

ssoNameidFormat String

Optional if wlan_portal_auth==sso. enum: email, unspecified

telstraClientId String

Required if sms_provider==telstra, Client ID provided by Telstra

telstraClientSecret String

Required if sms_provider==telstra, Client secret provided by Telstra

twilioAuthToken String

Required if sms_provider==twilio, Auth token account with twilio account

twilioPhoneNumber String

Required if sms_provider==twilio, Twilio phone number associated with the account. See example for accepted format.

twilioSid String

Required if sms_provider==twilio, Account SID provided by Twilio

allowWlanIdRoam boolean

amazonClientId string

Optional if amazon_enabled==true. Amazon OAuth2 client id. This is optional. If not provided, it will use a default one.

amazonClientSecret string

Optional if amazon_enabled==true. Amazon OAuth2 client secret. If amazon_client_id was provided, provide a correspoinding value. Else leave blank.

amazonEmailDomains string[]

Optional if amazon_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

amazonEnabled boolean

Whether amazon is enabled as a login method

amazonExpire number

Optional if amazon_enabled==true. Interval for which guest remains authorized using amazon auth (in minutes), if not provided, uses expire`

auth string

authentication scheme. enum: amazon, azure, email, external, facebook, google, microsoft, multi, none, password, sponsor, sso

azureClientId string

Required if azure_enabled==true. Azure active directory app client id

azureClientSecret string

Required if azure_enabled==true. Azure active directory app client secret

azureEnabled boolean

Whether Azure Active Directory is enabled as a login method

azureExpire number

Interval for which guest remains authorized using azure auth (in minutes), if not provided, uses expire`

azureTenantId string

Required if azure_enabled==true. Azure active directory tenant id.

broadnetPassword string

Required if sms_provider==broadnet

broadnetSid string

Required if sms_provider==broadnet

broadnetUserId string

Required if sms_provider==broadnet

bypassWhenCloudDown boolean

Whether to bypass the guest portal when cloud not reachable (and apply the default policies)

clickatellApiKey string

Required if sms_provider==clickatell

crossSite boolean

Whether to allow guest to roam between WLANs (with same WLAN.ssid, regardless of variables) of different sites of same org without reauthentication (disable random_mac for seamless roaming)

emailEnabled boolean

Whether email (access code verification) is enabled as a login method

enabled boolean

Whether guest portal is enabled

expire number

How long to remain authorized, in minutes

externalPortalUrl string

Required if wlan_portal_auth==external. External portal URL (e.g. https://host/url) where we can append our query parameters to

facebookClientId string

Required if facebook_enabled==true. Facebook OAuth2 app id. This is optional. If not provided, it will use a default one.

facebookClientSecret string

Required if facebook_enabled==true. Facebook OAuth2 app secret. If facebook_client_id was provided, provide a correspoinding value. Else leave blank.

facebookEmailDomains string[]

Optional if facebook_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

facebookEnabled boolean

Whether facebook is enabled as a login method

facebookExpire number

Optional if facebook_enabled==true. Interval for which guest remains authorized using facebook auth (in minutes), if not provided, uses expire`

forward boolean

Whether to forward the user to another URL after authorized

forwardUrl string

URL to forward the user to

googleClientId string

Google OAuth2 app id. This is optional. If not provided, it will use a default one.

googleClientSecret string

Optional if google_enabled==true. Google OAuth2 app secret. If google_client_id was provided, provide a correspoinding value. Else leave blank.

googleEmailDomains string[]

Optional if google_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

googleEnabled boolean

Whether Google is enabled as login method

googleExpire number

Optional if google_enabled==true. Interval for which guest remains authorized using Google Auth (in minutes), if not provided, uses expire`

gupshupPassword string

Required if sms_provider==gupshup

gupshupUserid string

Required if sms_provider==gupshup

microsoftClientId string

Optional if microsoft_enabled==true. Microsoft 365 OAuth2 client id. This is optional. If not provided, it will use a default one.

microsoftClientSecret string

Optional if microsoft_enabled==true. Microsoft 365 OAuth2 client secret. If microsoft_client_id was provided, provide a correspoinding value. Else leave blank.

microsoftEmailDomains string[]

Optional if microsoft_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

microsoftEnabled boolean

Whether microsoft 365 is enabled as a login method

microsoftExpire number

Optional if microsoft_enabled==true. Interval for which guest remains authorized using microsoft auth (in minutes), if not provided, uses expire`

passphraseEnabled boolean

Whether password is enabled

passphraseExpire number

Optional if passphrase_enabled==true. Interval for which guest remains authorized using passphrase auth (in minutes), if not provided, uses expire

password string

Required if passphrase_enabled==true.

predefinedSponsorsEnabled boolean

predefinedSponsorsHideEmail boolean

Whether to hide sponsor’s email from list of sponsors

privacy boolean

puzzelPassword string

Required if sms_provider==puzzel

puzzelServiceId string

Required if sms_provider==puzzel

puzzelUsername string

Required if sms_provider==puzzel

smsEnabled boolean

Whether sms is enabled as a login method

smsExpire number

Optional if sms_enabled==true. Interval for which guest remains authorized using sms auth (in minutes), if not provided, uses expire`

smsMessageFormat string

Optional if sms_enabled==true. SMS Message format

smsProvider string

Optioanl if sms_enabled==true. enum: broadnet, clickatell, gupshup, manual, puzzel, telstra, twilio

sponsorAutoApprove boolean

Optional if sponsor_enabled==true. Whether to automatically approve guest and allow sponsor to revoke guest access, needs predefined_sponsors_enabled enabled and sponsor_notify_all disabled

sponsorEmailDomains string[]

List of domain allowed for sponsor email. Required if sponsor_enabled is true and sponsors is empty.

sponsorEnabled boolean

Whether sponsor is enabled

sponsorExpire number

Optional if sponsor_enabled==true. Interval for which guest remains authorized using sponsor auth (in minutes), if not provided, uses expire`

sponsorLinkValidityDuration string

Optional if sponsor_enabled==true. How long to remain valid sponsored guest request approve/deny link received in email, in minutes.

sponsorNotifyAll boolean

sponsorStatusNotify boolean

Optional if sponsor_enabled==true. If enabled, guest will get email about sponsor's action (approve/deny)

sponsors {[key: string]: string}

object of allowed sponsors email with name. Required if sponsor_enabled is true and sponsor_email_domains is empty.

        Property key is the sponsor email, Property value is the sponsor name

ssoDefaultRole string

Optionl if wlan_portal_auth==sso, default role to assign if there’s no match. By default, an assertion is treated as invalid when there’s no role matched

ssoForcedRole string

Optionl if wlan_portal_auth==sso

ssoIdpCert string

Required if wlan_portal_auth==sso. IDP Cert (used to verify the signed response)

ssoIdpSignAlgo string

Optioanl if wlan_portal_auth==sso, Signing algorithm for SAML Assertion. enum: sha1, sha256, sha384, sha512

ssoIdpSsoUrl string

Required if wlan_portal_auth==sso, IDP Single-Sign-On URL

ssoIssuer string

Required if wlan_portal_auth==sso, IDP issuer URL

ssoNameidFormat string

Optional if wlan_portal_auth==sso. enum: email, unspecified

telstraClientId string

Required if sms_provider==telstra, Client ID provided by Telstra

telstraClientSecret string

Required if sms_provider==telstra, Client secret provided by Telstra

twilioAuthToken string

Required if sms_provider==twilio, Auth token account with twilio account

twilioPhoneNumber string

Required if sms_provider==twilio, Twilio phone number associated with the account. See example for accepted format.

twilioSid string

Required if sms_provider==twilio, Account SID provided by Twilio

allow_wlan_id_roam bool

amazon_client_id str

Optional if amazon_enabled==true. Amazon OAuth2 client id. This is optional. If not provided, it will use a default one.

amazon_client_secret str

Optional if amazon_enabled==true. Amazon OAuth2 client secret. If amazon_client_id was provided, provide a correspoinding value. Else leave blank.

amazon_email_domains Sequence[str]

Optional if amazon_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

amazon_enabled bool

Whether amazon is enabled as a login method

amazon_expire int

Optional if amazon_enabled==true. Interval for which guest remains authorized using amazon auth (in minutes), if not provided, uses expire`

auth str

authentication scheme. enum: amazon, azure, email, external, facebook, google, microsoft, multi, none, password, sponsor, sso

azure_client_id str

Required if azure_enabled==true. Azure active directory app client id

azure_client_secret str

Required if azure_enabled==true. Azure active directory app client secret

azure_enabled bool

Whether Azure Active Directory is enabled as a login method

azure_expire int

Interval for which guest remains authorized using azure auth (in minutes), if not provided, uses expire`

azure_tenant_id str

Required if azure_enabled==true. Azure active directory tenant id.

broadnet_password str

Required if sms_provider==broadnet

broadnet_sid str

Required if sms_provider==broadnet

broadnet_user_id str

Required if sms_provider==broadnet

bypass_when_cloud_down bool

Whether to bypass the guest portal when cloud not reachable (and apply the default policies)

clickatell_api_key str

Required if sms_provider==clickatell

cross_site bool

Whether to allow guest to roam between WLANs (with same WLAN.ssid, regardless of variables) of different sites of same org without reauthentication (disable random_mac for seamless roaming)

email_enabled bool

Whether email (access code verification) is enabled as a login method

enabled bool

Whether guest portal is enabled

expire int

How long to remain authorized, in minutes

external_portal_url str

Required if wlan_portal_auth==external. External portal URL (e.g. https://host/url) where we can append our query parameters to

facebook_client_id str

Required if facebook_enabled==true. Facebook OAuth2 app id. This is optional. If not provided, it will use a default one.

facebook_client_secret str

Required if facebook_enabled==true. Facebook OAuth2 app secret. If facebook_client_id was provided, provide a correspoinding value. Else leave blank.

facebook_email_domains Sequence[str]

Optional if facebook_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

facebook_enabled bool

Whether facebook is enabled as a login method

facebook_expire int

Optional if facebook_enabled==true. Interval for which guest remains authorized using facebook auth (in minutes), if not provided, uses expire`

forward bool

Whether to forward the user to another URL after authorized

forward_url str

URL to forward the user to

google_client_id str

Google OAuth2 app id. This is optional. If not provided, it will use a default one.

google_client_secret str

Optional if google_enabled==true. Google OAuth2 app secret. If google_client_id was provided, provide a correspoinding value. Else leave blank.

google_email_domains Sequence[str]

Optional if google_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

google_enabled bool

Whether Google is enabled as login method

google_expire int

Optional if google_enabled==true. Interval for which guest remains authorized using Google Auth (in minutes), if not provided, uses expire`

gupshup_password str

Required if sms_provider==gupshup

gupshup_userid str

Required if sms_provider==gupshup

microsoft_client_id str

Optional if microsoft_enabled==true. Microsoft 365 OAuth2 client id. This is optional. If not provided, it will use a default one.

microsoft_client_secret str

Optional if microsoft_enabled==true. Microsoft 365 OAuth2 client secret. If microsoft_client_id was provided, provide a correspoinding value. Else leave blank.

microsoft_email_domains Sequence[str]

Optional if microsoft_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

microsoft_enabled bool

Whether microsoft 365 is enabled as a login method

microsoft_expire int

Optional if microsoft_enabled==true. Interval for which guest remains authorized using microsoft auth (in minutes), if not provided, uses expire`

passphrase_enabled bool

Whether password is enabled

passphrase_expire int

Optional if passphrase_enabled==true. Interval for which guest remains authorized using passphrase auth (in minutes), if not provided, uses expire

password str

Required if passphrase_enabled==true.

predefined_sponsors_enabled bool

predefined_sponsors_hide_email bool

Whether to hide sponsor’s email from list of sponsors

privacy bool

puzzel_password str

Required if sms_provider==puzzel

puzzel_service_id str

Required if sms_provider==puzzel

puzzel_username str

Required if sms_provider==puzzel

sms_enabled bool

Whether sms is enabled as a login method

sms_expire int

Optional if sms_enabled==true. Interval for which guest remains authorized using sms auth (in minutes), if not provided, uses expire`

sms_message_format str

Optional if sms_enabled==true. SMS Message format

sms_provider str

Optioanl if sms_enabled==true. enum: broadnet, clickatell, gupshup, manual, puzzel, telstra, twilio

sponsor_auto_approve bool

Optional if sponsor_enabled==true. Whether to automatically approve guest and allow sponsor to revoke guest access, needs predefined_sponsors_enabled enabled and sponsor_notify_all disabled

sponsor_email_domains Sequence[str]

List of domain allowed for sponsor email. Required if sponsor_enabled is true and sponsors is empty.

sponsor_enabled bool

Whether sponsor is enabled

sponsor_expire int

Optional if sponsor_enabled==true. Interval for which guest remains authorized using sponsor auth (in minutes), if not provided, uses expire`

sponsor_link_validity_duration str

Optional if sponsor_enabled==true. How long to remain valid sponsored guest request approve/deny link received in email, in minutes.

sponsor_notify_all bool

sponsor_status_notify bool

Optional if sponsor_enabled==true. If enabled, guest will get email about sponsor's action (approve/deny)

sponsors Mapping[str, str]

object of allowed sponsors email with name. Required if sponsor_enabled is true and sponsor_email_domains is empty.

        Property key is the sponsor email, Property value is the sponsor name

sso_default_role str

Optionl if wlan_portal_auth==sso, default role to assign if there’s no match. By default, an assertion is treated as invalid when there’s no role matched

sso_forced_role str

Optionl if wlan_portal_auth==sso

sso_idp_cert str

Required if wlan_portal_auth==sso. IDP Cert (used to verify the signed response)

sso_idp_sign_algo str

Optioanl if wlan_portal_auth==sso, Signing algorithm for SAML Assertion. enum: sha1, sha256, sha384, sha512

sso_idp_sso_url str

Required if wlan_portal_auth==sso, IDP Single-Sign-On URL

sso_issuer str

Required if wlan_portal_auth==sso, IDP issuer URL

sso_nameid_format str

Optional if wlan_portal_auth==sso. enum: email, unspecified

telstra_client_id str

Required if sms_provider==telstra, Client ID provided by Telstra

telstra_client_secret str

Required if sms_provider==telstra, Client secret provided by Telstra

twilio_auth_token str

Required if sms_provider==twilio, Auth token account with twilio account

twilio_phone_number str

Required if sms_provider==twilio, Twilio phone number associated with the account. See example for accepted format.

twilio_sid str

Required if sms_provider==twilio, Account SID provided by Twilio

allowWlanIdRoam Boolean

amazonClientId String

Optional if amazon_enabled==true. Amazon OAuth2 client id. This is optional. If not provided, it will use a default one.

amazonClientSecret String

Optional if amazon_enabled==true. Amazon OAuth2 client secret. If amazon_client_id was provided, provide a correspoinding value. Else leave blank.

amazonEmailDomains List<String>

Optional if amazon_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

amazonEnabled Boolean

Whether amazon is enabled as a login method

amazonExpire Number

Optional if amazon_enabled==true. Interval for which guest remains authorized using amazon auth (in minutes), if not provided, uses expire`

auth String

authentication scheme. enum: amazon, azure, email, external, facebook, google, microsoft, multi, none, password, sponsor, sso

azureClientId String

Required if azure_enabled==true. Azure active directory app client id

azureClientSecret String

Required if azure_enabled==true. Azure active directory app client secret

azureEnabled Boolean

Whether Azure Active Directory is enabled as a login method

azureExpire Number

Interval for which guest remains authorized using azure auth (in minutes), if not provided, uses expire`

azureTenantId String

Required if azure_enabled==true. Azure active directory tenant id.

broadnetPassword String

Required if sms_provider==broadnet

broadnetSid String

Required if sms_provider==broadnet

broadnetUserId String

Required if sms_provider==broadnet

bypassWhenCloudDown Boolean

Whether to bypass the guest portal when cloud not reachable (and apply the default policies)

clickatellApiKey String

Required if sms_provider==clickatell

crossSite Boolean

Whether to allow guest to roam between WLANs (with same WLAN.ssid, regardless of variables) of different sites of same org without reauthentication (disable random_mac for seamless roaming)

emailEnabled Boolean

Whether email (access code verification) is enabled as a login method

enabled Boolean

Whether guest portal is enabled

expire Number

How long to remain authorized, in minutes

externalPortalUrl String

Required if wlan_portal_auth==external. External portal URL (e.g. https://host/url) where we can append our query parameters to

facebookClientId String

Required if facebook_enabled==true. Facebook OAuth2 app id. This is optional. If not provided, it will use a default one.

facebookClientSecret String

Required if facebook_enabled==true. Facebook OAuth2 app secret. If facebook_client_id was provided, provide a correspoinding value. Else leave blank.

facebookEmailDomains List<String>

Optional if facebook_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

facebookEnabled Boolean

Whether facebook is enabled as a login method

facebookExpire Number

Optional if facebook_enabled==true. Interval for which guest remains authorized using facebook auth (in minutes), if not provided, uses expire`

forward Boolean

Whether to forward the user to another URL after authorized

forwardUrl String

URL to forward the user to

googleClientId String

Google OAuth2 app id. This is optional. If not provided, it will use a default one.

googleClientSecret String

Optional if google_enabled==true. Google OAuth2 app secret. If google_client_id was provided, provide a correspoinding value. Else leave blank.

googleEmailDomains List<String>

Optional if google_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

googleEnabled Boolean

Whether Google is enabled as login method

googleExpire Number

Optional if google_enabled==true. Interval for which guest remains authorized using Google Auth (in minutes), if not provided, uses expire`

gupshupPassword String

Required if sms_provider==gupshup

gupshupUserid String

Required if sms_provider==gupshup

microsoftClientId String

Optional if microsoft_enabled==true. Microsoft 365 OAuth2 client id. This is optional. If not provided, it will use a default one.

microsoftClientSecret String

Optional if microsoft_enabled==true. Microsoft 365 OAuth2 client secret. If microsoft_client_id was provided, provide a correspoinding value. Else leave blank.

microsoftEmailDomains List<String>

Optional if microsoft_enabled==true. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.

microsoftEnabled Boolean

Whether microsoft 365 is enabled as a login method

microsoftExpire Number

Optional if microsoft_enabled==true. Interval for which guest remains authorized using microsoft auth (in minutes), if not provided, uses expire`

passphraseEnabled Boolean

Whether password is enabled

passphraseExpire Number

Optional if passphrase_enabled==true. Interval for which guest remains authorized using passphrase auth (in minutes), if not provided, uses expire

password String

Required if passphrase_enabled==true.

predefinedSponsorsEnabled Boolean

predefinedSponsorsHideEmail Boolean

Whether to hide sponsor’s email from list of sponsors

privacy Boolean

puzzelPassword String

Required if sms_provider==puzzel

puzzelServiceId String

Required if sms_provider==puzzel

puzzelUsername String

Required if sms_provider==puzzel

smsEnabled Boolean

Whether sms is enabled as a login method

smsExpire Number

Optional if sms_enabled==true. Interval for which guest remains authorized using sms auth (in minutes), if not provided, uses expire`

smsMessageFormat String

Optional if sms_enabled==true. SMS Message format

smsProvider String

Optioanl if sms_enabled==true. enum: broadnet, clickatell, gupshup, manual, puzzel, telstra, twilio

sponsorAutoApprove Boolean

Optional if sponsor_enabled==true. Whether to automatically approve guest and allow sponsor to revoke guest access, needs predefined_sponsors_enabled enabled and sponsor_notify_all disabled

sponsorEmailDomains List<String>

List of domain allowed for sponsor email. Required if sponsor_enabled is true and sponsors is empty.

sponsorEnabled Boolean

Whether sponsor is enabled

sponsorExpire Number

Optional if sponsor_enabled==true. Interval for which guest remains authorized using sponsor auth (in minutes), if not provided, uses expire`

sponsorLinkValidityDuration String

Optional if sponsor_enabled==true. How long to remain valid sponsored guest request approve/deny link received in email, in minutes.

sponsorNotifyAll Boolean

sponsorStatusNotify Boolean

Optional if sponsor_enabled==true. If enabled, guest will get email about sponsor's action (approve/deny)

sponsors Map<String>

object of allowed sponsors email with name. Required if sponsor_enabled is true and sponsor_email_domains is empty.

        Property key is the sponsor email, Property value is the sponsor name

ssoDefaultRole String

Optionl if wlan_portal_auth==sso, default role to assign if there’s no match. By default, an assertion is treated as invalid when there’s no role matched

ssoForcedRole String

Optionl if wlan_portal_auth==sso

ssoIdpCert String

Required if wlan_portal_auth==sso. IDP Cert (used to verify the signed response)

ssoIdpSignAlgo String

Optioanl if wlan_portal_auth==sso, Signing algorithm for SAML Assertion. enum: sha1, sha256, sha384, sha512

ssoIdpSsoUrl String

Required if wlan_portal_auth==sso, IDP Single-Sign-On URL

ssoIssuer String

Required if wlan_portal_auth==sso, IDP issuer URL

ssoNameidFormat String

Optional if wlan_portal_auth==sso. enum: email, unspecified

telstraClientId String

Required if sms_provider==telstra, Client ID provided by Telstra

telstraClientSecret String

Required if sms_provider==telstra, Client secret provided by Telstra

twilioAuthToken String

Required if sms_provider==twilio, Auth token account with twilio account

twilioPhoneNumber String

Required if sms_provider==twilio, Twilio phone number associated with the account. See example for accepted format.

twilioSid String

Required if sms_provider==twilio, Account SID provided by Twilio

GetWlansSiteWlanQos

Class string: enum: background, best_effort, video, voice
Overwrite bool: Whether to overwrite QoS

Class string: enum: background, best_effort, video, voice
Overwrite bool: Whether to overwrite QoS

class_ String: enum: background, best_effort, video, voice
overwrite Boolean: Whether to overwrite QoS

class string: enum: background, best_effort, video, voice
overwrite boolean: Whether to overwrite QoS

class_ str: enum: background, best_effort, video, voice
overwrite bool: Whether to overwrite QoS

class String: enum: background, best_effort, video, voice
overwrite Boolean: Whether to overwrite QoS

GetWlansSiteWlanRadsec

CoaEnabled bool
Enabled bool
IdleTimeout int
MxclusterIds List<string>: To use Org mxedges when this WLAN does not use mxtunnel, specify their mxcluster_ids. Org mxedge(s) identified by mxcluster_ids
ProxyHosts List<string>: Default is site.mxedge.radsec.proxy_hosts which must be a superset of all wlans[*].radsec.proxy_hosts. When radsec.proxy_hosts are not used, tunnel peers (org or site mxedges) are used irrespective of use_site_mxedge
ServerName string: Name of the server to verify (against the cacerts in Org Setting). Only if not Mist Edge.
Servers List<Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanRadsecServer>: List of RadSec Servers. Only if not Mist Edge.
UseMxedge bool: use mxedge(s) as RadSec Proxy
UseSiteMxedge bool: To use Site mxedges when this WLAN does not use mxtunnel

CoaEnabled bool
Enabled bool
IdleTimeout int
MxclusterIds []string: To use Org mxedges when this WLAN does not use mxtunnel, specify their mxcluster_ids. Org mxedge(s) identified by mxcluster_ids
ProxyHosts []string: Default is site.mxedge.radsec.proxy_hosts which must be a superset of all wlans[*].radsec.proxy_hosts. When radsec.proxy_hosts are not used, tunnel peers (org or site mxedges) are used irrespective of use_site_mxedge
ServerName string: Name of the server to verify (against the cacerts in Org Setting). Only if not Mist Edge.
Servers []GetWlansSiteWlanRadsecServer: List of RadSec Servers. Only if not Mist Edge.
UseMxedge bool: use mxedge(s) as RadSec Proxy
UseSiteMxedge bool: To use Site mxedges when this WLAN does not use mxtunnel

coaEnabled Boolean
enabled Boolean
idleTimeout Integer
mxclusterIds List<String>: To use Org mxedges when this WLAN does not use mxtunnel, specify their mxcluster_ids. Org mxedge(s) identified by mxcluster_ids
proxyHosts List<String>: Default is site.mxedge.radsec.proxy_hosts which must be a superset of all wlans[*].radsec.proxy_hosts. When radsec.proxy_hosts are not used, tunnel peers (org or site mxedges) are used irrespective of use_site_mxedge
serverName String: Name of the server to verify (against the cacerts in Org Setting). Only if not Mist Edge.
servers List<GetWlansSiteWlanRadsecServer>: List of RadSec Servers. Only if not Mist Edge.
useMxedge Boolean: use mxedge(s) as RadSec Proxy
useSiteMxedge Boolean: To use Site mxedges when this WLAN does not use mxtunnel

coaEnabled boolean
enabled boolean
idleTimeout number
mxclusterIds string[]: To use Org mxedges when this WLAN does not use mxtunnel, specify their mxcluster_ids. Org mxedge(s) identified by mxcluster_ids
proxyHosts string[]: Default is site.mxedge.radsec.proxy_hosts which must be a superset of all wlans[*].radsec.proxy_hosts. When radsec.proxy_hosts are not used, tunnel peers (org or site mxedges) are used irrespective of use_site_mxedge
serverName string: Name of the server to verify (against the cacerts in Org Setting). Only if not Mist Edge.
servers GetWlansSiteWlanRadsecServer[]: List of RadSec Servers. Only if not Mist Edge.
useMxedge boolean: use mxedge(s) as RadSec Proxy
useSiteMxedge boolean: To use Site mxedges when this WLAN does not use mxtunnel

coa_enabled bool
enabled bool
idle_timeout int
mxcluster_ids Sequence[str]: To use Org mxedges when this WLAN does not use mxtunnel, specify their mxcluster_ids. Org mxedge(s) identified by mxcluster_ids
proxy_hosts Sequence[str]: Default is site.mxedge.radsec.proxy_hosts which must be a superset of all wlans[*].radsec.proxy_hosts. When radsec.proxy_hosts are not used, tunnel peers (org or site mxedges) are used irrespective of use_site_mxedge
server_name str: Name of the server to verify (against the cacerts in Org Setting). Only if not Mist Edge.
servers Sequence[GetWlansSiteWlanRadsecServer]: List of RadSec Servers. Only if not Mist Edge.
use_mxedge bool: use mxedge(s) as RadSec Proxy
use_site_mxedge bool: To use Site mxedges when this WLAN does not use mxtunnel

coaEnabled Boolean
enabled Boolean
idleTimeout Number
mxclusterIds List<String>: To use Org mxedges when this WLAN does not use mxtunnel, specify their mxcluster_ids. Org mxedge(s) identified by mxcluster_ids
proxyHosts List<String>: Default is site.mxedge.radsec.proxy_hosts which must be a superset of all wlans[*].radsec.proxy_hosts. When radsec.proxy_hosts are not used, tunnel peers (org or site mxedges) are used irrespective of use_site_mxedge
serverName String: Name of the server to verify (against the cacerts in Org Setting). Only if not Mist Edge.
servers List<Property Map>: List of RadSec Servers. Only if not Mist Edge.
useMxedge Boolean: use mxedge(s) as RadSec Proxy
useSiteMxedge Boolean: To use Site mxedges when this WLAN does not use mxtunnel

GetWlansSiteWlanRadsecServer

Host string
Port int

Host string
Port int

host String
port Integer

host string
port number

host str
port int

host String
port Number

GetWlansSiteWlanRateset

Ht string

If template==custom. MCS bitmasks for 4 streams (16-bit for each stream, MCS0 is least significant bit), e.g. 00ff 00f0 001f limits HT rates to MCS 0-7 for 1 stream, MCS 4-7 for 2 stream (i.e. MCS 12-15), MCS 1-5 for 3 stream (i.e. MCS 16-20)

Legacies List<string>

If template==custom. List of supported rates (IE=1) and extended supported rates (IE=50) for custom template, append ‘b’ at the end to indicate a rate being basic/mandatory. If template==custom is configured and legacy does not define at least one basic rate, it will use no-legacy default values

MinRssi int

Minimum RSSI for client to connect, 0 means not enforcing

Template string

Data Rates template to apply. enum:

no-legacy: no 11b
compatible: all, like before, default setting that Broadcom/Atheros used
legacy-only: disable 802.11n and 802.11ac
high-density: no 11b, no low rates
custom: user defined

Vht string

If template==custom. MCS bitmasks for 4 streams (16-bit for each stream, MCS0 is least significant bit), e.g. 03ff 01ff 00ff limits VHT rates to MCS 0-9 for 1 stream, MCS 0-8 for 2 streams, and MCS 0-7 for 3 streams.

Ht string

Legacies []string

MinRssi int

Minimum RSSI for client to connect, 0 means not enforcing

Template string

Data Rates template to apply. enum:

no-legacy: no 11b
compatible: all, like before, default setting that Broadcom/Atheros used
legacy-only: disable 802.11n and 802.11ac
high-density: no 11b, no low rates
custom: user defined

Vht string

ht String

legacies List<String>

minRssi Integer

Minimum RSSI for client to connect, 0 means not enforcing

template String

Data Rates template to apply. enum:

no-legacy: no 11b
compatible: all, like before, default setting that Broadcom/Atheros used
legacy-only: disable 802.11n and 802.11ac
high-density: no 11b, no low rates
custom: user defined

vht String

ht string

legacies string[]

minRssi number

Minimum RSSI for client to connect, 0 means not enforcing

template string

Data Rates template to apply. enum:

no-legacy: no 11b
compatible: all, like before, default setting that Broadcom/Atheros used
legacy-only: disable 802.11n and 802.11ac
high-density: no 11b, no low rates
custom: user defined

vht string

ht str

legacies Sequence[str]

min_rssi int

Minimum RSSI for client to connect, 0 means not enforcing

template str

Data Rates template to apply. enum:

no-legacy: no 11b
compatible: all, like before, default setting that Broadcom/Atheros used
legacy-only: disable 802.11n and 802.11ac
high-density: no 11b, no low rates
custom: user defined

vht str

ht String

legacies List<String>

minRssi Number

Minimum RSSI for client to connect, 0 means not enforcing

template String

Data Rates template to apply. enum:

no-legacy: no 11b
compatible: all, like before, default setting that Broadcom/Atheros used
legacy-only: disable 802.11n and 802.11ac
high-density: no 11b, no low rates
custom: user defined

vht String

GetWlansSiteWlanSchedule

Enabled bool
Hours Pulumi.JuniperMist.Site.Inputs.GetWlansSiteWlanScheduleHours: Days/Hours of operation filter, the available days (mon, tue, wed, thu, fri, sat, sun)

Enabled bool
Hours GetWlansSiteWlanScheduleHours: Days/Hours of operation filter, the available days (mon, tue, wed, thu, fri, sat, sun)

enabled Boolean
hours GetWlansSiteWlanScheduleHours: Days/Hours of operation filter, the available days (mon, tue, wed, thu, fri, sat, sun)

enabled boolean
hours GetWlansSiteWlanScheduleHours: Days/Hours of operation filter, the available days (mon, tue, wed, thu, fri, sat, sun)

enabled bool
hours GetWlansSiteWlanScheduleHours: Days/Hours of operation filter, the available days (mon, tue, wed, thu, fri, sat, sun)

enabled Boolean
hours Property Map: Days/Hours of operation filter, the available days (mon, tue, wed, thu, fri, sat, sun)

GetWlansSiteWlanScheduleHours

Fri string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
Mon string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
Sat string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
Sun string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
Thu string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
Tue string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
Wed string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.

Fri string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
Mon string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
Sat string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
Sun string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
Thu string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
Tue string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
Wed string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.

fri String: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
mon String: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
sat String: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
sun String: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
thu String: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
tue String: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
wed String: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.

fri string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
mon string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
sat string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
sun string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
thu string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
tue string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
wed string: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.

fri str: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
mon str: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
sat str: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
sun str: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
thu str: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
tue str: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
wed str: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.

fri String: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
mon String: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
sat String: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
sun String: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
thu String: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
tue String: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.
wed String: Hour range of the day (e.g. 09:00-17:00). If the hour is not defined then it's treated as 00:00-23:59.

Package Details

Repository: junipermist pulumi/pulumi-junipermist
License: Apache-2.0
Notes: This Pulumi package is based on the mist Terraform Provider.

Juniper Mist v0.2.4 published on Saturday, Mar 1, 2025 by Pulumi

pulumi/pulumi-junipermist

junipermist.site.getWlans

On this page

On this page

Example Usage

Using getWlans

getWlans Result

Supporting Types

GetWlansSiteWlan

GetWlansSiteWlanAcctServer

GetWlansSiteWlanAirwatch

GetWlansSiteWlanAppLimit

GetWlansSiteWlanAppQos

GetWlansSiteWlanAppQosApps

GetWlansSiteWlanAppQosOther

GetWlansSiteWlanAuth

GetWlansSiteWlanAuthServer

GetWlansSiteWlanBonjour

GetWlansSiteWlanBonjourServices

GetWlansSiteWlanCiscoCwa

GetWlansSiteWlanCoaServer

GetWlansSiteWlanDnsServerRewrite

GetWlansSiteWlanDynamicPsk

GetWlansSiteWlanDynamicVlan

GetWlansSiteWlanHotspot20

GetWlansSiteWlanInjectDhcpOption82

GetWlansSiteWlanMistNac

GetWlansSiteWlanPortal

GetWlansSiteWlanQos

GetWlansSiteWlanRadsec

GetWlansSiteWlanRadsecServer

GetWlansSiteWlanRateset

GetWlansSiteWlanSchedule

GetWlansSiteWlanScheduleHours

Package Details

On this page

On this page