03-22-2018 11:25 AM
I have a customer that is needing to use ClearPass Guest to acknowledge terms and conditions and then fully get onto the guest network. They are also requesting that the ClearPass data/internal NIC is setup in the DMZ. They have a Cisco 5500 controller. Am I understanding that we MUST have connectivity (80/443) from the guest subnet to the ClearPass DMZ interface as well as DNS in order to lookup said interface aka the guest page (clearpass)?
What is common for this sort of setup?
Thanks in advance!
Solved! Go to Solution.
03-22-2018 02:52 PM - edited 03-22-2018 02:57 PM
Thats correct. The communication between WLC and CPPM will be on the management subnet & guest subnet will need access to CPPM DMZ interface @ 80/443. Also, the DNS servers guests will use should resolve to CPPM data interface (DMZ interface).
ACDX | ACCX| CCIE (RnS/SP,DC) | ACCP | ACMP | ACSA | ACMA | JNCIS | JNCIA
If the provided solution resolves your issue, please mark it as accepted solution to help others.