BYOD Device

The BYOD Access BYOD Device Screen displays all authenticated online BYOD devices as well as all BYOD devices that were previously on the network and are stored in UPAM.

Online Device List

The Online Device List displays all authenticated online BYOD devices.

Basic info

• Account Name - User name of the employee account. For MAC authentication, Account Name will be device MAC.
• Device MAC - MAC address of the employee device.
• Client IPv4 - IPv4 address of the employee device.
• Client IPv6 - IPv6 address of the employee device.
• Remembered - Indicates whether the online device was stored by UPAM and added into the BYOD remembered list. A remembered item can be utilized for MAC authentication.
• Device Category - Category of the BYOD device:
• Computer
• Mobile
• Tablet
• Game console
• Digital media receiver
• Others
• Device Family - Production vendor of the BYOD device:
• Alcatel-Lucent Enterprise
• Apple
• Samsung
• Huawei
• Microsoft
• LG
• Lenovo
• HP
• IBM
• Nokia
• MI
• HTC
• Sony
• Blackberry
• Others
• Device OS - OS running on the BYOD device
• Linux
• Windows
• MacOS
• Android
• IOS
• Others
• Authentication Type - Authentication type from the user requesting access, including: MAC authentication and Captive Portal authentication
• Auth Resource - User profile database used in the authentication, including: None, Local Database, LDAP/AD and external RADIUS server.
• Authentication Strategy - Authentication strategy applied to the BYOD device.
• Access Policy - Access Policy that the BYOD device matches.
• Session Start - The date and time when the device connection session was  created.
• Access Role Profile - Access Role Profile applied to the BYOD device.
• Final Access Role Profile - Access Role Profile assigned to the BYOD device by NAS, before the Access Role Profile returned by UPAM. 
• Policy List - Policy List applied to the BYOD device.
• Redirect URL - Redirect URL returned to the BYOD device by UPAM. 

Authenticate

• Access Device MAC - MAC address of the NAS to which the BYOD device is attached.
• Access Device Name - System name of the NAS to which the BYOD device is attached
• Access Device SSID - Wireless service broadcast by the NAS and used for connection to the BYOD device (only valid for wireless access).  
• Access Device Location - Location of the NAS.
• Called Station ID - Allows the NAS to send the phone number that the user called in the Access-Request packet, using Dialed Number Identification (DNIS) or similar technology.
• For Switch - The switch MAC Address
• For AP - radio_MAC_address:SSID_NAME
• NAS Port Type - The type of physical port on the NAS that authenticated the device
• Wireless-IEEE 802.11
• Ethernet
• NAS Port - The physical port number of the NAS which authenticated the device.
• For Switch - if index
• For AP - Wireless radio index
• NAS Port ID – Port of the NAS that authenticated the device. The  attribute can be configured on the  Unified Access - Unified Profile – Template - AAA Server Profile Screen
• For Switch - Chassis/slot/port
• For AP - WLAN service
• NAS ID - NAS identifier, identifying the NAS originating the Access-Request. (Can be configured on the Unified Access - Unified Profile – Template - AAA Server Profile Screen)
• NAS IP Address - IP Address of the NAS
• Slot Port - Port number on the switch slot to which the device is connected (only for wired access).
• Port Desc/Wlan Service
• For Switch: Port description
• For AP: WLAN service
• Framed MTU - Maximum Transmission Unit to be configured for the user, when it is not negotiated by some other means (e.g., PPP). It is a fixed value = 1400.
• Reject Reason - Reason for rejecting the request from the BYOD device:
• Overdue license
• Invalid username or password
• Cannot match access policy according to the authentication request

Account

• Acct Status Type -Indicates whether this Accounting-Request marks the beginning of the user service (Start) or the end (Stop). Values: Start (1), Stop (2), Interim-Update (3), Accounting-On (7) Accounting-Off (8).
• Acct Session Time - Indicates how many seconds the user has received service, and can only be present in Accounting-Request records where the Acct Status Type is set to Stop.
• Acct Session ID - A unique Accounting ID that makes it easy to match start and stop records in a log file. The start and stop records for a given session MUST have the same Acct Session ID.
• Termination Action - Fixed with “Radius-Request”. When the session is timeout, user needs to be re-authenticated.
• Session Timeout - Maximum number of seconds of service provided prior to session termination.
• Acct Interim Interval - Number of seconds between each interim update for this specific session.
• Tunnel Private Group ID - Used to support the legacy VLAN assignment from RADIUS (ID=VLAN ID).
• Acct Terminate Cause - Indicates how the session was terminated, and can only be present in Accounting-Request records where the Acct-Status-Type is set to Stop.
• 1 - User Request: User logout
• 4 - Idle Timeout: User activity logout (only applicable for MAC based or Captive Portal users)
• 6 - Admin Reset: Operator logout/flush operation
• 7 - Admin Reboot: Operator reboot operation
• 8 - Port Error: Port down, NI down
• 9 - NAS-Error:  Any software notification that the user is no longer authenticated

Remembered Device List

The Remembered Device List displays all authenticated BYOD devices saved in UPAM and can be utilized for MAC authentication.

• Employee Account - The account used for login by the BYOD device
• Device MAC - MAC address of the BYOD device
• Device Category - Category of the BYOD device:
• Computer
• Mobile
• Tablet
• Game console
• Digital media receiver
• Others
• Device Family - Production vendor of the BYOD device:
• Alcatel-Lucent Enterprise
• Apple
• Samsung
• Huawei
• Microsoft
• LG
• Lenovo
• HP
• IBM
• Nokia
• MI
• HTC
• Sony
• Blackberry
• Others
• Device OS - OS running on the BYOD device.
• Linux
• Windows
• MacOS
• Android
• IOS
• Others
• Browser Type - Browser of the BYOD device
• Activity Status - Indicates whether the BYOD device is online or offline.
• Expiry Time - The expiration time of the BYOD device. When it is expired, the device will be deleted from the BYOD remembered list in UPAM.
• Remembered Time - Date and time when the BYOD device was first connected to the network.
• Last Access Time – Date and time when the BYOD device latest accessed the network.
• Last Access Device Location - Location of the NAS that the BYOD device last accessed.
• Last Access Device MAC -  MAC address of the NAS that the BYOD device last accessed.
• Last Access Device Name - System Name of the NAS that the BYOD device last accessed.
• Last Access Device SSID - SSID of the NAS that the BYOD device last accessed.
• Web Access Strategy - The Access Strategy used for the device. One device can login through multiple BYOD Access Strategies.
• Remember Method - Indicates whether the device was manually added to the list (Static) or automatically added through Captive Portal Authentication (Auto).
• Active Status - Indicates whether the remembered device was ever logged into the network. " Actived" means the device was. at one time, logged into the network. :Inactive means the device was manually added, but never logged into the network. Only " Actived" devices consume a BYOD license.