Hello,
We have a customer who need to return specific role following devices :
- devices in AD
- devices in Airwatch
- others devices
How we can do that with 1 SSID ? Actualy they use forescout and virtual firewalling to do that.
With Aruba controller and clearpass we need to use aruba role returned by clearpass.
- 802.1x : If we use 802.1x we will have problem with "others devices" because we don't know these devices and we can't setup properly wifi profile.
- Mac-authentification : Maybe is possible to cheat with mac-authentification. Force client to pass go throught clearpass but is it possible to have mac-auth always true (maybe with time source or other authentification source)?
- Captive portal : Need licence and it needs to be transparent (use auto login)
What do you think ? have you any ideas ?
Thanks for your help