Lab — Stand Up a Guest BYOD Wireless Network

Aperture WX‑300WIRELESS CONTROLLER 10.30.0.4 not signed in online

CONFIGURE PROVISION & TEST REVIEW

Sign in to the controller

Reach the management console at 10.30.0.4 and authenticate as the administrator.

Administrator username (case sensitive)

Password

Define how visitors authenticate and what they may reach. Name it, set the post‑login behavior, and confirm the corporate network is shielded.

Service name

Guest authentication method

A guest pass is a short‑lived code an authorized host hands to a visitor.

After the visitor accepts the terms of use

Show a terms‑of‑use statement before granting access The visitor must accept the acceptable‑use policy first.

Restricted subnets

Traffic to these ranges is blocked for guests. Confirm the corporate range is listed.

Broadcast an open guest SSID, bind it to your guest access service, and isolate guest devices from one another.

WLAN name (internal)

ESSID (broadcast)

WLAN type

Authentication

Encryption method

Guest access service

Isolate guest clients on this WLAN Block station‑to‑station traffic so guest devices can't reach each other or other clients on the access point.

Open the guest‑pass portal in a separate window and, as an authorized host, generate a pass for a visitor.

10.30.0.4/passes

Host username (case sensitive)

Password

Bound to service Visitor_Net.

Visitor full name

Visitor pass key

—

Hand this key to the visitor. You'll enter it on Foyer‑PC to test.

On the lobby laptop, join the guest SSID and authenticate with the pass key.

Available networks

Enter your visitor pass key

Three questions on the security reasoning behind what you just configured. Pick the best answer.