11-24-2015 12:32 PM
For some reason Guest role mapping is not working on our production CP server, but works on our test server.
1. Created role "Campus Device"
2. Added to the role [Guest Roles] Role mapping policy.
3. Created a device in CPG with the Role "Campus Device"
4. Have an enforcement policy that only allows access if the device has the tips role of "Campus Device".
Again it works fine on our test server, but not our production server.
I've done a screen by screen comparison of the Service, Role Mapping, and Enforcement Policies between the Production and Test Servers and can't find a difference.
Solved! Go to Solution.
11-24-2015 12:34 PM
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
11-24-2015 12:37 PM
Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
11-24-2015 02:13 PM
Just spent an hour on the phone with our promoted SE.
Turns out that you should NOT use the Default [Guest Roles] Mapping in Service rules, but create a new, separate Role Mapping (at least that fixed it for us).