Hi!
@yuxin.zou and maybe @alzhao
Can you please add feature to make password for each client on guest network different?
For example I operate cafe or just having some random party and I don’t need some persons to connect to my network 24/7.
For example:
Guest 1 uses password “Password1” - which set to infinite session
Guest 2 uses password “Password2” - which set to 120 minutes after which password becomes invalid
This cannot be done using psk which is the current encryption method. You need EAP if you want each person has its own credentials and do control.
Are you doing business? We are working on open roaming which you can give each user a profile to connect to your WiFi. We can talk about more about your needs.
Maybe try to implement something like this:
Is it RADIUS? Will it be free? Also I prefer local auth, without server
You could run your RADIUS server on the same system.
Directly on router? Any instructions?
@alzhao maybe you guys will just add captive portal which will ask password per client to make it work with PSK?
I think that you bought a router for home/office only.
For business or big company it is cisco 
or other business hardwares.
@slesar no I am not.
I have two identical routers. One for home and one for business.
It is small cafe (3 tables). I just want people not connect to my WiFi if they was here but not ordering anything
I understand.
Try use mini pc or raspberry pi and install server radius (captive portal).
Sorry, I am not sure that could be work. 
I am not sure if wpa_psk_file can achieve what you need. Will do a research.
But it seems not enough to just give different passphrase. You need to control your network which still need a little more complicated settings.
Check this post Script: multipsk for OpenWrt 23+ snapshots