Security

Reply
Contributor II

Clearpass Post Authentication Information Collection

Hi,

 

I have Clearpass configured in such a way whereby operators can create logins with usernames based on events and with very simple passwords. Such as, username: airheadsconference, password: airheadsconference, which then lasts for the duration of the conference.

 

End users connect to the conference SSID, hit captive portal, authenticate against a user authentication with MAC caching service and login with the simple credentials.

 

I'd like to collect the names and email addresses of the people using the shared username and password with some sort of HTML webpage that they get redirected to post authentication that then requests this information and adds it to the endpoint.

 

Is this possible?

 

Cheers

Shaun

Guru Elite

Re: Clearpass Post Authentication Information Collection

You would need to use a self-registration workflow instead of a web login.

Tim Cappalli | Aruba Security
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Contributor II

Re: Clearpass Post Authentication Information Collection

Hi Tim,

 

Thanks for the reply,

 

So my understanding of Self Registration is that it allows anyone to access the network by entering simple details and then a sponsor allowing them access.

 

We do not want to inundate the sponsor with 1000's of emails from prospective wireless users. We'd like them to authenticate with a pre defined guest account. How do we get around this?

 

Cheers

Shaun

Guru Elite

Re: Clearpass Post Authentication Information Collection

You do not have to enable sponsorship on a guest self-registration.

 

Just create a custom field with a validator to check the "code".


Tim Cappalli | Aruba Security
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Contributor II

Re: Clearpass Post Authentication Information Collection

Sorry Tim you've lost me - Can you elaborate please?

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: