Sonar has a cool Guest feature which allows outside users (users not on the domain) to jump straight on your network without any prompt for authentication, no need for an extra settings to connect to Sonar, and their web traffic is filtered. This is great for Open Days or when you have Visitors that require access to the internet, but you don't have the time to go through and add new users, new groups and settings for them to be able to connect.

The first thing you'll have to do though when setting up a Guest Group is designate an IP range for the Guest users. Once you have set that up, we'll create a Network Object in Sonar for that range/subnet. 

  1. In the Sonar GUI, go to Network -> Objects -> Network Objects tab
  2. Click "Add New" and the creation window will open.
  3. Add a name for this object, preferably something related, such as "LAN-GUEST" or "GUEST-SUBNET". 
  4. In the 'Real IP' field, add in the subnet you have designated to the Guest Network. Make sure the "Net" radio button is selected, as it is a subnet.
  5. If you need any outbound or inbound NAT rules, configure those as needed.


Now that we've got the object configured, let's set up the Guest authentication type. If you navigate to Network -> Authentication Servers -> Authentication Type, we can set up the Auth Type for that subnet.

SETTING UP GUEST AUTHENTICATION

  1. Once you're in the right tab, you'll see a list and two "drop-down" menus. 
  2. In the left hand drop-down menu, select the auth type "Guest".
  3. In the right hand drop-down menu, select the subnet from the object you created earlier. 
  4. Then click the "Add" button to add it to the list. This means anyone logging into an IP on this subnet will be authenticated as "Guest".


The list below can be populated with different authentication types for different subnets, where they are on the list depends on the priority. You can organise priority with the arrows on the right hand side.

CREATING THE GUEST GROUP


Now we can create the Guest Group itself, where the Guest users will be authenticated against. In the Sonar GUI, double click on "Groups". This will bring up the Maintain Groups window. 

  1. Click "Add New" down the bottom, this will allow you to add a new Group into Sonar
  2. Name the group something appropriate, such as "Guest".
  3. Group type should be "Authenticated".
  4. Make sure that the "Default Group" option is ticked (this is what makes the group the Guest Group).
  5. Click "OK". The group is now created.


Users who authenticate as Guest will now be automatically logged into this Group. There is one more setting that we need to add now, to ensure that this Group is restricted ONLY to Guests. 


  1. In the Guest Group, go to Settings -> Constraints
  2. Click the ellipsis button [...] next to IP Restrictions
  3. Look for the Guest Subnet object you created earlier and move that to the box on the top called "selected network objects" using the "add" button. This will ensure ONLY users authentication to this IP Subnet will be able to use the Guest Group.


And that should be it! The Guest Group is now created and ready for use. If you have any issues or need any assistance setting this up, please contact Blue Reef Support.