WiFi Hardware Guide for Marketing Resellers: Every Vendor Compared

A WiFi marketing reseller in Atlanta lost a 12-location hotel deal because their platform didn't support Aruba Networks — the vendor the hotel chain had standardized on across all properties. The hardware was already installed. The platform couldn't talk to it. Deal dead.

Hardware compatibility isn't a technical footnote. It's a sales qualification criterion. If you can't support whatever WiFi hardware is already in the building, you can't close the deal. And since replacing a hotel's WiFi infrastructure to accommodate your marketing platform is never going to happen, you need a platform — and a working knowledge of hardware — that covers the field.

This guide compares every WiFi hardware vendor that matters for marketing resellers. Not from a network engineering perspective (there are plenty of those guides), but from the marketing integration perspective: can the platform connect to this hardware, how deep is the integration, and what data can you extract for analytics and campaigns?

---

The Three-Tier Hardware Model

WiFi hardware for marketing purposes falls into three tiers based on deployment context, price point, and integration depth.

Enterprise Tier

High-performance, cloud-managed access points designed for large deployments: hotels, airports, stadiums, hospitals, corporate campuses. Price per AP: $400–$1,500. These vendors invest heavily in APIs and analytics capabilities, making them the richest data sources for WiFi marketing.

SMB Tier

Cloud-managed or self-hosted access points for small to mid-size venues: restaurants, retail stores, cafes, gyms, small hotels, coworking spaces. Price per AP: $100–$400. The dominant tier for most WiFi marketing resellers by volume. UniFi is the clear leader in install base.

Edge Tier

Budget-conscious, specialized, or open-source hardware for custom deployments, temporary setups, or specific use cases. Price per AP: $20–$200. Includes MikroTik (budget enterprise), OpenWRT (open source), TP-Link Omada (budget cloud-managed), and Cradlepoint (LTE/5G failover).

---

Enterprise Tier Vendors

Cisco Meraki

Integration method: Meraki Cloud Dashboard + CMX Scanning API Marketing integration depth: Deep Presence analytics: Yes (CMX Scanning API provides probe request data, client session data, and zone-level location)

Meraki is the most-deployed enterprise WiFi platform in the WiFi marketing channel. The cloud-first architecture makes it straightforward to integrate: the captive portal redirect is configured directly in the Meraki dashboard (Wireless > Access Control > Splash page > Custom splash URL), and the API provides rich session and presence data.

What makes it great for marketing:

• •CMX Scanning API delivers real-time device data including signal strength for presence analytics and zone-level heatmaps
• •Cloud-managed captive portal redirect — no controller or appliance to manage
• •Real-time location analytics at the AP level
• •Automatic device inventory with OS, manufacturer, and model detection
• •Dashboard-level guest network segmentation (separate SSID for guest vs. staff)

What to watch for:

• •Meraki APs require an active Meraki license (typically $150–$300/AP/year). If the client's license lapses, the AP stops working entirely — not just the marketing features, the entire AP. This licensing dependency is the most common source of "my WiFi marketing stopped working" tickets for Meraki deployments.
• •CMX API requires a Meraki Advanced license tier. Basic licenses may not include scanning API access.

MSP-friendliness: Excellent. Meraki Dashboard supports multi-organization management. MSPs can manage dozens of clients from a single Meraki account. The API is well-documented and stable.

Price range: $300–$1,200 per AP (plus annual license)

For a detailed setup guide, see Cisco Meraki Captive Portal Setup.

---

Aruba Networks (HPE)

Integration method: Aruba Central cloud controller Marketing integration depth: Deep Presence analytics: Yes (ClearPass provides guest management and analytics)

Aruba's enterprise WiFi platform is dominant in hospitality and campus environments. Aruba Central provides cloud management for APs, switches, and gateways. ClearPass (Aruba's NAC product) handles guest access management, which can integrate with external captive portal platforms.

What makes it great for marketing:

• •ClearPass guest management provides enterprise-grade authentication workflows
• •AI-powered RF optimization ensures reliable WiFi connections in dense environments
• •Multi-site management through Aruba Central — single pane of glass for hotel chains
• •WPA3 Enterprise support for venues with high-security requirements
• •Strong in hospitality — many hotel PMS integrations available

What to watch for:

• •ClearPass is a separate product from Aruba Central. Full guest management requires both.
• •Configuration is more complex than Meraki. Enterprise IT experience is helpful.
• •Aruba APs use a controller-based architecture that requires either an on-premise controller (Mobility Controller) or Aruba Central cloud.

MSP-friendliness: Good. Aruba Central supports multi-tenant management. The Managed Service Provider Portal provides partner-level access to client networks.

Price range: $400–$1,500 per AP (varies significantly by model and licensing)

For a detailed setup guide, see Aruba Networks Captive Portal.

---

Juniper Mist

Integration method: Mist Cloud API (location + analytics) Marketing integration depth: Medium-Deep Presence analytics: Yes (best-in-class location API with zone occupancy and dwell time)

Juniper's Mist platform brings AI-driven WiFi management with the best location services API in the enterprise market. Mist's virtual BLE (vBLE) technology enables meter-level indoor location accuracy without dedicated BLE beacons — the AP itself functions as a beacon.

What makes it great for marketing:

• •AI-powered network optimization reduces connectivity issues that kill captive portal conversions
• •vBLE provides indoor location accuracy of 1–3 meters — the most accurate WiFi-based positioning available
• •Zone occupancy and dwell time APIs provide rich presence analytics
• •Predictive AI models for capacity planning and congestion forecasting
• •OpenAPI specification — well-documented, developer-friendly

What to watch for:

• •Mist is positioned for large enterprise and campus deployments. Pricing reflects this.
• •The vBLE features require Mist Premium license.
• •Smaller venues may not justify the cost unless they need the precision location capabilities.

MSP-friendliness: Good. Mist supports multi-organization management and has an MSP portal.

Price range: $500–$1,500 per AP (plus licensing)

For a detailed setup guide, see Juniper Mist WiFi Analytics.

---

Ruckus (CommScope)

Integration method: SmartCell Insight (SCI) API Marketing integration depth: Medium Presence analytics: Yes (SCI analytics)

Ruckus is the go-to vendor for high-density environments: stadiums, convention centers, theme parks, and transportation hubs. The BeamFlex adaptive antenna technology handles environments where other vendors struggle — thousands of simultaneous clients in a confined space.

What makes it great for marketing:

• •BeamFlex adaptive antennas maintain connection quality at extremely high density — critical for captive portal conversion in stadiums and events
• •Proven at the largest venues (NFL stadiums, major airports, convention centers)
• •SCI (SmartCell Insight) provides analytics and reporting APIs
• •Strong portfolio of outdoor and specialty APs for non-traditional deployments

What to watch for:

• •Ruckus's cloud management story has been in transition following the CommScope acquisition. Cloud Ruckus (formerly Ruckus Cloud) is the cloud controller platform.
• •SCI requires a separate license and server deployment for analytics.
• •The channel model is traditional (VAR-focused), which aligns well with reseller sales motions.

MSP-friendliness: Moderate. Ruckus Cloud supports multi-tenant, but the platform is less mature than Meraki or Aruba Central for MSP workflows.

Price range: $400–$1,200 per AP

For a detailed setup guide, see Ruckus WiFi Marketing Integration.

---

Fortinet FortiAP

Integration method: FortiOS REST API + RADIUS Marketing integration depth: Medium Presence analytics: Limited (FortiPresence available as add-on)

Fortinet's WiFi portfolio is tightly integrated with their FortiGate security fabric. FortiAPs are managed by FortiGate firewalls, which means the WiFi, firewall, SD-WAN, and security policies are all managed from a single platform. This is appealing for security-conscious deployments.

What makes it great for marketing:

• •Security-first architecture — Zero Trust access policies, integrated firewall, IPS, and content filtering alongside WiFi marketing
• •FortiGate SD-WAN integration provides reliable WAN connectivity even at venues with poor ISP service
• •RADIUS authentication is well-supported, providing a clean integration path
• •Strong in verticals with security requirements: healthcare, finance, government

What to watch for:

• •Captive portal redirect is managed by FortiGate, not the AP directly. The FortiGate must be configured to redirect guest traffic to the external portal.
• •FortiPresence (the presence analytics product) is a separate SKU.
• •The ecosystem is security-focused, so marketing features are not the priority in product development.

MSP-friendliness: Excellent. FortiManager and FortiCloud support multi-tenant management. Fortinet has a strong MSP partner program.

Price range: $200–$800 per AP (FortiGate firewall required separately: $500–$5,000)

For a detailed setup guide, see Fortinet FortiAP Guest WiFi.

---

Alcatel-Lucent Enterprise (ALE)

Integration method: OmniAccess Stellar API Marketing integration depth: Medium Presence analytics: Yes (OmniVista analytics)

ALE is strong in European enterprise and hospitality markets. OmniAccess Stellar APs are managed through OmniVista Cirrus (cloud) or OmniVista 2500 (on-premise). The platform emphasizes GDPR compliance out of the box.

What makes it great for marketing:

• •GDPR-compliant by design — important for European deployments
• •OmniVista management provides guest portal API access
• •Hospitality-certified for hotel PMS integration
• •Strong presence in European markets where some competitors have limited availability

What to watch for:

• •Smaller ecosystem than Meraki or Aruba. Fewer third-party integrations.
• •Documentation is less comprehensive than tier-1 US vendors.

MSP-friendliness: Moderate. EU-focused MSP program.

Price range: $300–$900 per AP

---

SMB Tier Vendors

Ubiquiti UniFi

Integration method: UniFi Network Controller v5+ (self-hosted or cloud) Marketing integration depth: Deep Presence analytics: Limited (client statistics available, not full presence)

UniFi is the most-installed WiFi platform in the SMB WiFi marketing channel. Period. It's the hardware that 60%+ of WiFi marketing resellers encounter most frequently in client venues. The combination of low cost, reliable performance, and a rich ecosystem of APs, switches, and gateways makes it the default for small venues.

What makes it great for marketing:

• •Massive install base — if a client has WiFi APs, there's a good chance they're UniFi
• •Guest portal / Hotspot Manager feature provides the captive portal redirect natively
• •Full REST API for programmatic management
• •DPI (Deep Packet Inspection) statistics available for traffic analysis
• •Self-hosted controller option means no ongoing cloud subscription required
• •Price point makes multi-AP deployments accessible for small businesses

What to watch for:

• •The UniFi controller must be running and accessible for the captive portal to function. If the controller goes down (self-hosted server crashes, cloud controller offline), the portal redirect stops working. Monitor controller uptime.
• •UniFi's Hotspot Manager has gone through several iterations. Ensure the controller version (7.x+) supports external portal redirect.
• •No native presence analytics at the level of Meraki CMX or Mist — you get connected client data but not passive probe request scanning.

MSP-friendliness: Excellent. UniFi supports multi-site management through the controller. Multiple sites (client networks) can be managed from a single controller instance.

Price range: $100–$400 per AP (no ongoing license fee)

For a detailed setup guide, see Ubiquiti UniFi Guest WiFi Marketing.

---

Datto Networking (Kaseya)

Integration method: Datto Network Manager Marketing integration depth: Medium Presence analytics: Limited

Datto (now part of Kaseya) is built for MSPs. The Datto Network Manager integrates with Datto's RMM and PSA tools, creating a unified managed services stack. The networking products (formerly Open Mesh) are designed specifically for the MSP channel.

What makes it great for marketing:

• •Built for MSPs — billing integration, RMM integration, centralized management
• •Remote management from the Datto portal — no on-site visits needed for configuration
• •Zero-touch provisioning for AP deployment (ship to client, plug in, done)
• •Open Mesh APs are affordable and reliable for small venue deployments

What to watch for:

• •Kaseya's acquisition of Datto has created some product overlap and uncertainty in the networking product line. Check current product availability.
• •The networking product line is positioned as a complement to Datto's core RMM/PSA business, not a standalone offering. This means updates and feature development may be slower than dedicated networking vendors.

MSP-friendliness: Excellent (it's literally built for MSPs).

Price range: $100–$300 per AP

For a detailed setup guide, see Datto Networking MSP WiFi.

---

Extreme Networks

Integration method: ExtremeCloud IQ webhooks Marketing integration depth: Medium Presence analytics: Yes (client webhooks provide real-time data)

Extreme Networks serves campus and education environments. ExtremeCloud IQ provides cloud management with real-time client event webhooks that can feed WiFi marketing platforms with connection data.

What makes it great for marketing:

• •Real-time client webhooks provide instant notification of connect/disconnect events
• •Multi-vendor support — ExtremeCloud IQ can manage APs from multiple manufacturers
• •AI-driven analytics for network optimization
• •Strong in education and campus deployments

MSP-friendliness: Good. Multi-tenant cloud management.

Price range: $200–$600 per AP

For a detailed setup guide, see Extreme Networks Campus WiFi.

---

Other SMB Vendors

EnGenius Cloud — Cloud-managed APs for small and mid-size deployments. REST API available. Good for budget-conscious resellers who need cloud management without UniFi's controller dependency. Price: $80–$250 per AP. See EnGenius Cloud WiFi Marketing.

Sophos WiFi — MSP-managed WiFi with synchronized security (Sophos Firewall + AP coordination). Sophos Central provides the management portal. MSP-ready with partner portal access. Price: $150–$400 per AP. See Sophos WiFi Reseller Guide.

Peplink AP / Balance — Multi-WAN failover and SD-WAN with built-in captive portal. InControl2 cloud management. Favored by ISPs and MSPs for its WAN reliability. Price: $200–$500 per AP. See Peplink Multi-WAN Guest WiFi.

Cambium Networks — Focused on last-mile ISPs and outdoor deployments. cnMaestro cloud controller integration is in development (coming soon for WiFi marketing). Price: $100–$400 per AP. See Cambium cnMaestro Integration.

---

Edge Tier Vendors

MikroTik

Integration method: RouterBOARD direct API (RouterOS) Marketing integration depth: Medium Presence analytics: Limited

MikroTik is the budget enterprise option. RouterOS is powerful, flexible, and runs on inexpensive hardware. MikroTik's built-in Hotspot Server can be configured to redirect to an external captive portal.

What makes it great for marketing:

• •Extremely cost-effective — quality APs for $30–$150
• •RouterOS API is comprehensive and well-documented
• •Built-in Hotspot Server provides native captive portal redirect
• •Maximum flexibility — virtually every aspect of the network can be customized

What to watch for:

• •Configuration complexity is significantly higher than cloud-managed vendors. RouterOS scripting language has a steep learning curve.
• •No cloud management dashboard (MikroTik Cloud is limited). Management is per-device or via Dude/Winbox tools.
• •Not recommended for resellers who need to deploy and manage at scale unless they have RouterOS expertise.

MSP-friendliness: Low to moderate. Individual device management doesn't scale as well as cloud-managed platforms.

Price range: $30–$200 per AP/router

For a detailed setup guide, see MikroTik WiFi Marketing Setup.

---

OpenWRT

Integration method: Custom compatible firmware Marketing integration depth: Medium Presence analytics: Limited

OpenWRT is open-source router firmware that runs on hundreds of compatible routers. Custom firmware builds can include captive portal redirect to external platforms.

What makes it great for marketing:

• •Runs on virtually any compatible router — maximum hardware flexibility
• •Open source — no licensing fees, no vendor lock-in
• •Community-maintained firmware with regular security updates
• •Developer-friendly for custom integrations

What to watch for:

• •Requires firmware flashing, which voids warranty on most consumer routers.
• •No centralized management — each device is configured individually.
• •Reliability depends on the specific hardware and firmware build.
• •Not suitable for venues that need enterprise-grade support or SLA guarantees.

MSP-friendliness: Low. Best for technically sophisticated resellers who want maximum control at minimum cost.

Price range: $0 (firmware) + $20–$100 (compatible router hardware)

For a detailed setup guide, see OpenWRT Open Source WiFi Marketing.

---

TP-Link Omada

Integration method: Omada Cloud Controller API Marketing integration depth: Medium Presence analytics: Limited

TP-Link Omada is TP-Link's cloud-managed business WiFi line. It provides a Meraki-like cloud management experience at a fraction of the cost — making it attractive for budget-conscious deployments.

What makes it great for marketing:

• •Cloud-managed with a clean web interface (Omada Cloud Controller)
• •Built-in captive portal with external redirect support
• •Easy zero-touch provisioning
• •Competitive pricing makes multi-AP deployments accessible

What to watch for:

• •Omada Cloud Controller can be cloud-hosted (TP-Link's cloud) or self-hosted (hardware controller or software controller on a local server). Ensure the version supports external captive portal redirect.
• •API documentation is less comprehensive than Meraki or UniFi.

MSP-friendliness: Moderate. Cloud controller supports multi-site management.

Price range: $60–$250 per AP

For a detailed setup guide, see TP-Link Omada Captive Portal.

---

Cradlepoint

Integration method: NetCloud ECM Marketing integration depth: Medium Presence analytics: Limited

Cradlepoint specializes in LTE/5G connectivity — cellular WAN for locations without reliable wired internet. This makes Cradlepoint the go-to for temporary deployments (events, pop-up stores, construction sites), vehicle-mounted WiFi, and backup connectivity.

What makes it great for marketing:

• •LTE/5G primary or failover connectivity enables WiFi marketing in locations without traditional internet
• •NetCloud ECM (Endpoint Cloud Manager) provides centralized management
• •Event WiFi deployments — set up cellular-based guest WiFi at a festival or conference in minutes
• •Vehicle deployments — buses, food trucks, mobile retail units

What to watch for:

• •Cellular data costs are in addition to hardware and management fees.
• •Bandwidth may be limited compared to wired connections, which can affect captive portal load times and guest experience.
• •Hardware is more expensive than traditional APs because it includes cellular modems.

MSP-friendliness: Good. NetCloud ECM supports multi-tenant management.

Price range: $500–$2,000 per device (router + cellular modem)

For a detailed setup guide, see Cradlepoint 5G WiFi Marketing.

---

Other Edge Vendors

Cisco Enterprise (Controller-Based) — Large-scale enterprise controller networks. ISE integration, AireOS + IOS-XE. RADIUS authentication provides the captive portal integration path. For venues with existing Cisco enterprise infrastructure (not Meraki). Price: $500–$2,000+ per AP.

Nomadix — Hospitality gateway specialist. PMS integration, paid WiFi vouchers, HSIA (High-Speed Internet Access) gateway. Built specifically for hotels. Price: $1,000–$5,000 per gateway.

AdTran — Carrier-grade WiFi and broadband equipment. Bluesocket vWLAN provides the wireless controller with RADIUS integration. Common in ISP-managed WiFi deployments. Price: $200–$600 per AP.

---

The Hardware Decision Matrix

For quick reference, here's how each vendor scores on the factors that matter most to WiFi marketing resellers:

$ = Under $200/AP | $$ = $200–$500/AP | $$$ = $500+/AP

---

Practical Hardware Advice for Resellers

1. Don't lead with hardware. Your service is WiFi marketing, not WiFi installation. If the client has working WiFi, use it. Hardware replacement is a separate conversation (and potentially a separate revenue opportunity).

2. Know the top 5 by heart. 80% of your deployments will involve one of these five vendors: Meraki, UniFi, Aruba, Datto, or Fortinet. Master these five and you'll handle the vast majority of client hardware.

3. Keep spare MyWiFi hotspots. For clients with unsupported or unreliable hardware, deploying a MyWiFi white-label hotspot alongside existing equipment is the fastest path to going live. The hotspot broadcasts a marketing SSID while the existing hardware handles staff and operations traffic.

4. Test every new vendor in your lab. Before promising a client you can integrate with their hardware, test the full flow: captive portal redirect, authentication, session tracking, and reconnect behavior. Every vendor has quirks.

5. Document your configurations. Create a hardware configuration guide for each vendor you support. When onboarding client #20 with UniFi, you don't want to re-learn the controller settings from scratch. A documented, repeatable process saves hours.

---

Hardware Selection by Vertical

The right hardware depends not just on budget, but on the venue's operating environment.

Restaurants and Cafes (1–5 APs)

Recommended: Ubiquiti UniFi (best price-performance for small venues) or TP-Link Omada (budget option with cloud management)

Restaurants typically need 1–3 APs to cover the dining area and bar. A single UniFi U6 Lite ($99) covers up to 300+ square feet in a typical restaurant layout. For larger restaurants with outdoor seating, add a U6 Mesh for the patio.

Key consideration: Restaurant environments are electrically noisy (kitchen equipment, POS systems, LED signage). Place APs away from the kitchen and above the dining area for best coverage. PoE (Power over Ethernet) is strongly recommended to reduce cable runs.

Hotels (10–100+ APs per property)

Recommended: Cisco Meraki (full cloud management + CMX for presence), Aruba Networks (ClearPass for enterprise guest management), or Ruckus (high-density environments)

Hotels need an AP in every hallway (or every 2–3 rooms) and in common areas (lobby, restaurant, conference rooms, pool area). A 100-room hotel typically requires 25–40 APs. Enterprise-grade hardware is justified by the scale, the need for centralized management, and the guest experience requirements.

Key consideration: Hotel PMS (Property Management System) integration can link WiFi authentication to room assignments. The guest checks in, provides their room number and last name on the captive portal, and the PMS validates the credentials. This creates a high-quality data connection between the guest's identity and their stay details.

Retail Stores (2–8 APs)

Recommended: UniFi (price-conscious) or Meraki (if presence analytics are important)

Retail deployments benefit from presence analytics — counting passersby, measuring dwell time, and tracking foot traffic patterns. Meraki's CMX Scanning API provides this natively. UniFi provides connected client analytics but limited passive presence data.

Key consideration: In retail, AP placement determines analytics quality. Mount APs near entrances to capture arrival data, and distribute throughout the floor to enable zone-level dwell time measurement. A 3,000 sq ft retail store with 4 APs can produce meaningful zone-level analytics.

Shopping Malls (50–500+ APs)

Recommended: Meraki, Aruba, or Ruckus (enterprise-grade, multi-zone management)

Mall deployments are complex: multiple floors, hundreds of APs, diverse tenant environments, and high-density common areas. The hardware must support centralized management, zone-level analytics, and reliable captive portal redirect at scale.

Key consideration: Mall operators often require tenant-level traffic data — foot traffic in front of each store. This requires AP placement and zone configuration that maps to tenant boundaries. Work with the mall's facilities team to place APs at strategic points (corridor intersections, entrance/exit points, food court perimeters).

Events and Temporary Deployments

Recommended: Cradlepoint (cellular WAN for locations without wired internet), MyWiFi white-label hotspots (plug-and-play), or any portable AP with RADIUS support

Event WiFi is temporary by definition. The hardware needs to be deployable in minutes, reliable for the duration of the event, and removable without leaving infrastructure behind.

Key consideration: Cellular WAN (4G/5G via Cradlepoint) eliminates the dependence on the venue's internet connection, which may be unreliable, oversubscribed, or locked down by the venue's IT team. The trade-off is bandwidth: cellular connections may not support thousands of simultaneous users. For large events (1,000+ attendees), negotiate a dedicated internet drop from the venue or ISP.

---

The Hidden Hardware Compatibility Issues

Issue 1: HTTPS Redirect and Certificate Pinning

Modern browsers and operating systems increasingly refuse HTTP redirects in favor of HTTPS-only browsing. When a guest's first request after WiFi connection is HTTPS (which it almost always is), the AP's redirect mechanism must handle the TLS interception gracefully.

How different vendors handle it:

• •Meraki: Uses a DNS-based redirect that doesn't require TLS interception. Works reliably with HTTPS.
• •UniFi: Uses HTTP 302 redirect. May require the guest to visit an HTTP page first (the controller generates one at a special URL). Some browsers (especially Chrome) block this.
• •RADIUS-based: The AP allows the initial DNS resolution but blocks data traffic until authentication. The captive portal detection mechanism in iOS/Android handles the redirect.

The practical fix: Ensure your platform uses cloud-hosted portals with valid SSL certificates on a CDN. The AP redirects to a URL; the portal is served over HTTPS with a valid cert. This eliminates certificate warnings and browser blocking.

Issue 2: Apple Captive Network Assistant (CNA)

Apple devices detect captive portals and open a mini-browser (CNA) instead of full Safari. The CNA has limited capabilities:

• •Smaller viewport (approximately 320px wide)
• •No persistent cookie storage
• •Limited JavaScript support
• •Closes automatically after authentication (doesn't stay open for the redirect page)

What this means for resellers: Your captive portal must work in the CNA mini-browser. Test every portal design on a real iPhone. If the portal relies on heavy JavaScript, complex CSS animations, or wide layouts, it may break in CNA. Keep portals simple, mobile-first, and lightweight.

Issue 3: Android WiFi Authentication Variations

Android's captive portal detection varies by manufacturer and OS version:

• •Stock Android: Uses a connectivity check to connectivitycheck.gstatic.com. If the check fails (returns a non-204 response), the system shows a "Sign in to network" notification.
• •Samsung: Uses Samsung's own connectivity check endpoint in addition to Google's.
• •Huawei/Honor: Uses Huawei's endpoint.

If any of these connectivity check domains are blocked by the AP's firewall rules, the captive portal notification won't appear, and the guest will have a broken WiFi experience.

The fix: Ensure the AP's walled garden (the list of domains allowed before authentication) includes all major connectivity check domains: connectivitycheck.gstatic.com, www.google.com/generate_204, captive.apple.com, and connectivitycheck.platform.hicloud.com.

Issue 4: Dual-Band Steering Conflicts

Many modern APs have band steering enabled — they try to push 5GHz-capable devices to the 5GHz band instead of 2.4GHz. This is generally good for performance but can interfere with captive portal redirect if the steering mechanism disconnects and reconnects the device during the authentication flow.

The fix: Some platforms recommend disabling band steering on the guest SSID while keeping it enabled on the staff SSID. Alternatively, test the captive portal flow with band steering enabled and verify that the redirect survives the band transition.

---

Further Reading

• •WiFi Marketing: The Definitive Guide — Complete WiFi marketing resource
• •Captive Portal Guide — Portal design and hardware configuration
• •WiFi Marketing for MSPs — MSP hardware bundling strategies
• •Cisco Meraki Captive Portal Setup — Meraki-specific guide
• •Ubiquiti UniFi Guest WiFi Marketing — UniFi setup guide
• •Aruba Networks Captive Portal — Aruba configuration
• •Datto Networking MSP WiFi — Datto integration
• •Fortinet FortiAP Guest WiFi — FortiAP setup
• •Ruckus WiFi Marketing Integration — Ruckus deployment
• •MikroTik WiFi Marketing Setup — MikroTik configuration
• •TP-Link Omada Captive Portal — Omada guide
• •Cradlepoint 5G WiFi Marketing — Cellular WiFi
• •OpenWRT Open Source WiFi Marketing — Open source guide
• •Juniper Mist WiFi Analytics — Mist integration
• •Extreme Networks Campus WiFi — Extreme configuration
• •EnGenius Cloud WiFi Marketing — EnGenius setup
• •Sophos WiFi Reseller Guide — Sophos integration
• •Peplink Multi-WAN Guest WiFi — Peplink guide
• •Cambium cnMaestro Integration — Cambium setup
• •Guest WiFi Analytics Guide — Hardware affects analytics depth
• •White-Label WiFi Guide — Platform evaluation (hardware compatibility)