Contributor I

ClearPass Guest w/ MAC caching + IAP

We have a customer facing an issue with Guest + MAC caching where after account expiry they are not redirected back to captive portal page.


Per the templated service, if an account is valid but isn't assigned the [MAC Caching] it should be placed in the 'captive portal role'.


This role exists on the IAP, but the captive portal profile is associated with the SSID itself under security settings, and not tied to a role.


Should a rule to 'enforce captive portal profile' be associated with the role to deal with this scenario?


Has anyone else had similar problems or working without this in the configuration?





Guru Elite

Re: ClearPass Guest w/ MAC caching + IAP

Yes, you should create a preauth role with captive portal attached.

Tim Cappalli | Aruba Security
@timcappalli | | ACMX #367 / ACCX #480
Search Airheads
Showing results for 
Search instead for 
Did you mean: