Hi All,
I had thought this might be simple, but now I'm not sure.
I have a scenario where there is a captive portal service with mac-caching. The initial web-logins are authenticated against AD, and an endpoint entry gets created (which contains the AD username used in the first place).
As an extension to this, I'm now trying to add something to the mac-auth service, which will go back to AD and check that the user's account (which originally was used on the endpoint) simply "exists" and isn't disabled.
I assumed this might be achieved by way of an authorization configuration or similar, but I can't get it to work, and my efforts would be nonsense if I posted them here.
For a number of complicated reasons, I can't use the service templates. The service has been setup bit-by-bit.
Any suggestions would be great.