External Authentication via REST API

This page explains how to format and handle external authentication messages using the REST API.

Overview

During authentication, the REST API connector sends a POST request to your web server (API endpoint) in JSON format. The content of the request depends on the authentication method used (e.g., PAP, MS-CHAP, TTLS-PAP).

Note: Each request includes an API token in the

Authorization

header as a Bearer token.

Request Parameters

Parameter	Description
login	The user's username
password	The user's password (only available with PAP or TTLS+PAP)
auth_port	RADIUS server authentication port that received the request
mschap_challenge	MS-CHAP challenge (only if using MS-CHAP)
mschap_response	MS-CHAP response (only if using MS-CHAP)

Sample Request

Response Handling

✅ Success (2xx Status Code)

A

2xx

response indicates successful authentication. Attributes in the response will be added to the RADIUS reply and forwarded to the Wireless Controller.

❌ Failure (4xx Status Code)

A

4xx

response indicates authentication failure. The error message in the body will be used to reject the access request.

Related Topics

• REST API Overview
• API Authentication
• Connectors
• Users