06-17-2017 11:04 AM
Hi all. I am wondering if someone can help me with a role override issue I am having with a Guest Self-Registration. I have a role override set on the self-registration configuration but it is not triggering a CoA to change the user's role on the controller. I have a CoA enforcement profile in my guest login policy (below) with the name exactly matching my role that I selected on the guest side in brackets.
As I understand, these are the requirments for changing authorization once the account is approved. The problem is that I am not seeing any CoA sent from CPPM in Access Tracker so of course the role for the guest user is not changing. When I look in the Guest Application Log, I see the account approved and the role changed but nothing about a CoA from there either, which I would expect to see some sort of notification that the Guest module at least tried to initiate a CoA. Has anyone gotten this to function the way they want to? If so, can you see what I am missing? I am happy to include more screen shots if necessary.
Solved! Go to Solution.
06-19-2017 07:58 PM - edited 06-19-2017 07:59 PM
a month ago
Hi Tim. Yes, I do. Please see screen shot below. And you can see in the previous screenshot where this is being applied in the Enforcement Policy. I also have a user role on my controller called Registered-Guest. I would think that I should be able to see something in the Application Log on the Guest side when the account is approved that the CoA is triggered but I am not finding anything helpful there.