Hi,
I want one username+password combination (account) to use any device they want. But as soon as they login to another device the other session should be disconnected.
I followed the guide on http://community.arubanetworks.com/t5/Controller-Based-WLANs/How-to-deny-access-for-authentication-request-based-on-session/ta-p/183304 about checking on sessions using Insight.
I'm having trouble getting this to work and i wonder if with 6.5 there is better way?
I use captive portal with mac caching (created via wizard), so two services are created. I assume CoA is working probably because i can manually disconnect active sessions via the Guest manager and see accounting etc.
I removed the unique-devices rule that was generated from the wizard assuming this check is not what i need.
I added a first rule to the MAC Authentication Enforcement Policy to check for sessions.
Am i missing a step here? Do i need to send a radius coa disconnect for the old session?
CPPM 6.5.5.78974
IAP Version 6.4.3.4-4.2.1.2