Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

ClearPass Guest w/ MAC caching + IAP

This thread has been viewed 3 times

  • 1.  ClearPass Guest w/ MAC caching + IAP

    Posted Dec 17, 2017 06:42 PM

    We have a customer facing an issue with Guest + MAC caching where after account expiry they are not redirected back to captive portal page.

     

    Per the templated service, if an account is valid but isn't assigned the [MAC Caching] it should be placed in the 'captive portal role'.

     

    This role exists on the IAP, but the captive portal profile is associated with the SSID itself under security settings, and not tied to a role.

     

    Should a rule to 'enforce captive portal profile' be associated with the role to deal with this scenario?

     

    Has anyone else had similar problems or working without this in the configuration?

     

    1.png

     

     



  • 2.  RE: ClearPass Guest w/ MAC caching + IAP
    Best Answer

    EMPLOYEE
    Posted Dec 17, 2017 06:46 PM
    Yes, you should create a preauth role with captive portal attached.