Hi Folks,
i'm going crazy with walled garden on iap running firmware 6.5.3.1-6.5.3.1_6033. The IAP is managed by Airwave and i've set up a ssid with a external captive portal. The inital login role inludes the "enforce captive portal <externe cppm profile name>" rule. Until here everything works fine. Redirect to captiveportal and the authentication with clearpass as well.
But when a user is on the captivepotal, he should be able to use whitelisted urls/domains without authentication. The enforce captiveportal rule is always the top rule in the role. it's impossible to change this. So, all http requests are redirected to the captiveportal even if they're whitelisted.
What is my mistake. I think i overlook something.
thanks in advance
markus