Manual provisioning per account
Create the account, hand-type the password, ship it via email. Repeat for every contractor.
Provision named accounts, set per-account access policies, and audit who's connected when. The right tool for the cases SAML can't reach — long-term contractors, kiosks, branch sites without SSO.
Most organizations end up with a parallel directory of Wi-Fi accounts that nobody owns. Half are stale. None have policies. Cleanup is impossible because there's no data on who's still using what.
Create the account, hand-type the password, ship it via email. Repeat for every contractor.
Everyone gets the same access window, the same VLAN, the same everything. No nuance.
The contractor leaves; the account stays. Six months later it's still working from somewhere.
"Did this account log in last week?" is unanswerable. So nobody dares delete anything.
Username, initial password, end date, group. Self-service password change for the user.
Familiar credentials on the captive portal. Per-account policy applies — VLAN, ACLs, redirects.
Account auto-disables on the configured date. No drift between contract end and access end.
Each account has an owner, an end date, and a policy. Self-service password change so users don't ping IT for every reset. Inactivity tracking so cleanup becomes a list, not a project.
Every login attached to a named account. No anonymous shared credentials.
Account auto-disables on the configured date. No drift between contract end and access end.
Per-account device list. Spot account sharing (multiple unrelated devices), enforce quotas if needed.
Site, building, AP. Confirm the contractor only logs in at the sites they're contracted for.
Filter accounts that haven't logged in for 30, 60, 90 days. Cleanup becomes a list, not a project.
Per-period reports tied to named identities. Compliance gets the full story per user.
People who need access for months but aren't in your IdP — named accounts beat shared passwords.
Each device runs as a named account so usage is attributable and auditable.
Smaller sites that haven't joined the central IdP yet — credentials with policies bridge the gap.
Headless systems that need credentials. Named, scoped, audited like everything else.
Cookies help us improve your experience on this site. With your consent we also use first-party cookies to measure how the site is used (no advertising). Read our Privacy Policy for more.
When you visit our website it may store or retrieve information in your browser, mostly as cookies. This information is used to make the site work as you expect and, with your consent, to understand how it is used. Because we respect your privacy, you can choose not to allow some cookies. Note that blocking some of them may affect your experience.
These cookies are needed for the website to function and cannot be switched off. They are usually set only
in response to actions you take, such as signing in to internal areas or filling in a form. They store no
information that identifies you personally (cookie: ng_learn_session).
With your consent, first-party cookies help us understand how the site is used: unique and returning
visitors, approximate city and region, time on a page, and entry and exit pages. We never store your IP
address (cookies: ng_consent, ng_vid, ng_sid). If you do not allow
them, we use only privacy-friendly, cookieless measurement.