Technical Guides
Deep, expert-led technical guides on guest WiFi, analytics, captive portals, and venue technology.
505 guides
Hotel Guest WiFi Management: Integrating PMS, Portals, and Brand Standards
This technical guide details how to architect enterprise-grade hotel WiFi networks, focusing on VLAN segmentation, PMS integration for automated session management, and captive portal optimisation for GDPR-compliant data capture.
Captive Portal Best Practices: Designing for High Conversion and Compliance
This technical guide gives IT managers, network architects, and venue operations directors a complete blueprint for deploying captive portals that balance network security with high user conversion. It covers the full architecture from VLAN segmentation and RADIUS authentication to GDPR-compliant consent design and authentication method selection. Drawn from Purple's operational experience across 80,000+ venues and 440 million logins in 2024, every recommendation is grounded in real deployment data.
How to Optimize Captive Portals for Maximum Network Security and User Conversion
This guide provides a complete technical blueprint for optimising captive portals across enterprise venues, covering network segmentation architecture, authentication method selection, GDPR-compliant consent design, and conversion optimisation. It is written for IT managers, network architects, and CTOs at hotels, retail chains, stadiums, and public-sector organisations who need to balance network security with first-party data capture. Purple operates captive portal infrastructure across 80,000+ venues with 440 million logins in 2024, and the frameworks here reflect that operational experience.
Hotel Guest WiFi Architecture: PMS Integration, Captive Portals, and Bandwidth Control
This guide provides a comprehensive framework for architecting enterprise-grade hotel WiFi networks. It details the technical requirements for VLAN segmentation, PMS integration via FIAS, captive portal design, and per-client bandwidth control to ensure security, compliance, and optimal performance.
How to Configure SCEP for Automated Enterprise WiFi Certificate Enrollment
This guide explains how to configure SCEP (Simple Certificate Enrollment Protocol) for automated enterprise WiFi certificate enrollment, covering the full architecture from PKI and NDES through to MDM profile deployment and RADIUS validation. It is aimed at IT managers, network architects, and CTOs at hotels, retail chains, stadiums, conference centres, and public-sector organisations who need to move beyond pre-shared keys and implement scalable, identity-based 802.1X EAP-TLS authentication. Purple's hardware-agnostic, cloud overlay platform integrates directly with this architecture, providing the guest and BYOD WiFi layer that sits alongside your certificate-authenticated staff network.
Mean time to innocence: how to prove it's not the WiFi
Mean time to innocence (MTTI) is the critical metric defining how long IT teams spend proving a network issue is not their fault. This guide details a five-step observability methodology to eliminate the blame game in multi-tenant environments, replacing finger-pointing with shared evidence to drive down mean time to resolution (MTTR).
The Enterprise Guide to SCEP: Deploying Simple Certificate Enrollment Protocol for Automated Campus WiFi Security
This technical reference guide provides a definitive architectural blueprint and step-by-step implementation strategy for enterprise WiFi certificate deployment using SCEP. It covers the critical differences between SCEP and PKCS, the exact deployment sequence required for success, and real-world risk mitigation strategies for IT leaders.
Why Is My Guest WiFi Not Connecting? Troubleshooting Captive Portal Issues
This authoritative technical reference guide explains the underlying mechanics of captive portal detection and details the six primary failure modes that prevent guest WiFi from connecting. It provides IT managers and network architects with a practical troubleshooting framework to resolve HTTP redirect issues, DNS conflicts, and MAC randomisation challenges.
How to Implement SCEP for Automated WiFi Certificate Enrollment
This guide explains how to implement SCEP (Simple Certificate Enrollment Protocol) for automated WiFi certificate enrollment across enterprise venues. It covers the full architectural blueprint - from PKI design and MDM integration to the mandatory three-step deployment sequence - and shows IT managers and network architects how to eliminate shared credentials, automate certificate lifecycle management, and satisfy PCI DSS and GDPR requirements at scale.
GDPR and Guest WiFi: Compliance Guide for Venue Marketers and IT
This guide provides IT managers and venue operators with a practical framework for ensuring Guest WiFi services are fully GDPR compliant. It covers technical architecture, consent mechanics, data retention, and how to transform compliance into a secure first-party data asset.
Integrating WeChat Authentication with Guest WiFi Captive Portals
This guide explains how to integrate WeChat OAuth 2.0 authentication into enterprise guest WiFi captive portals. It covers the dual-platform registration requirements, scope selection for first-party data capture, network enforcement via RADIUS Change of Authorization, and compliance with GDPR and China's PIPL. Venue operators in hospitality, retail, and events will find concrete implementation steps, real-world case studies, and security hardening guidance to deploy WeChat login guest wifi at scale.
Understanding Cisco SUDI: Hardware-Based Device Identity in Network Access Control
This guide details the technical architecture of Cisco SUDI, explaining how hardware-anchored identity secures network access control. It provides actionable implementation steps for IT leaders to deploy 802.1X EAP-TLS authentication and automate Zero Touch Provisioning across enterprise venues.
Automating Enterprise WiFi Security: The SCEP Certificate Deployment Guide
This technical guide explains how to automate enterprise WiFi security using SCEP certificate deployment. It provides a detailed architectural blueprint and implementation steps for deploying 802.1X EAP-TLS authentication across corporate and guest networks.
How to Configure a Ruijie Captive Portal for Guest WiFi
This technical guide details the configuration of guest WiFi and captive portals on Ruijie Networks hardware, covering both native cloud portals and external RADIUS integrations. It provides IT managers and network architects with actionable steps for VLAN isolation, walled garden setup, and third-party platform integration to drive analytics and revenue.
The Compliance Playbook: GDPR and Guest WiFi Data Privacy
This comprehensive guide provides IT managers and venue operators with a technical framework for architecting GDPR-compliant guest WiFi networks. It details consent mechanics, network segmentation, automated data retention, and how to transform compliance from a regulatory liability into a defensible first-party data asset.
How to Set Up Guest WiFi: A Secure Enterprise Configuration Guide
This authoritative guide provides IT leaders and network architects with a definitive blueprint for deploying secure enterprise guest WiFi. It covers essential architecture, WPA3 migration, VLAN segmentation, and captive portal integration to protect internal systems while capturing compliant first-party data.
Integrating WeChat WiFi Authentication: Captive Portal Onboarding for APAC Customers
WeChat has 1.41 billion monthly active users, making it the primary digital identity for Chinese consumers globally. This guide explains how to integrate WeChat OAuth 2.0 authentication into enterprise captive portals for APAC venues, covering platform registration, scope selection, RADIUS Change of Authorisation enforcement, and dual-framework compliance with GDPR and China's PIPL. It is aimed at IT managers, network architects, and venue operations directors who need to act this quarter.
Configuring Captive Portal Redirection on Enterprise Network Controllers
This authoritative guide details the technical architecture and vendor-specific configuration steps required to implement captive portal redirection on enterprise network controllers. It provides actionable guidance for IT teams on configuring walled gardens, integrating RADIUS authentication, and ensuring compliance with GDPR and PCI DSS.
Step-by-Step Guide: Configuring Ruijie Wireless Controllers for Guest WiFi Captive Portals
This guide provides a complete technical walkthrough for configuring Ruijie wireless controllers and gateways to deploy enterprise-grade guest WiFi captive portals. It covers VLAN segmentation, external RADIUS authentication via WISPr protocol, walled garden configuration, and seamless integration with Purple's Identity-Based Networks platform to capture first-party data and drive measurable business value across hospitality, retail, and public-sector environments.
How to Configure SCEP for Secure BYOD and 802.1X Network Authentication
This guide provides a comprehensive technical reference for configuring SCEP to deploy certificate-based 802.1X network authentication. It covers the architectural shift from shared passwords to EAP-TLS, Mobile Device Management integration, and strict network segmentation for secure BYOD access in enterprise environments.
Enterprise Guest WiFi Setup Guide: VLAN Segmentation, Security, and Captive Portals
This guide provides a technical blueprint for enterprise guest WiFi deployment, focusing on VLAN segmentation, security protocols, and captive portal architecture. It details how to isolate traffic, enforce encryption standards, and capture first-party data securely across complex venues.
Grandstream GWN Access Points Integration with Purple WiFi
This authoritative technical reference guide details how to integrate Grandstream GWN access points with Purple's Guest WiFi and analytics platform. It covers Grandstream captive portal configuration, RADIUS AAA settings, walled garden setup, secure staff 802.1X authentication with dynamic VLAN steering, and multi-tenant PPSK segmentation - providing actionable, step-by-step guidance for MSPs and IT teams deploying guest and staff WiFi at scale.
Staff WiFi Terms and Conditions: Legal and Compliance Essentials
This guide covers the legal and technical essentials of drafting and enforcing staff WiFi terms and conditions for enterprise venues. It details what to include in an Acceptable Use Policy (AUP), how to meet GDPR and PCI DSS requirements, and how to deploy identity-based authentication and network segmentation to protect corporate assets. IT managers, HR teams, and operations directors at hotels, retail chains, stadiums, and public-sector organisations will find actionable guidance they can implement this quarter.
Managing Bandwidth for Staff WiFi: Shaping, QoS and Reducing Traffic
This guide details practical methods for managing bandwidth for staff WiFi in enterprise venues. It covers traffic shaping, QoS implementation, and how deploying Purple Shield reduces network load without requiring infrastructure upgrades.