- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
Guest Captive Portal and DNS Cache
Guest Captive Portal and DNS Cache
07-13-2017 11:21 AM
Suggestions on a workaround.
Problem:
Users not receiving captive portal page if previous browser session open and reassociating to guest network.
Scenario:
User initially associates to Guest network. They receive the captive portal, and can authenticate (or accept user terms). Guest disconnects, or leaves, and user table entry times out; however, they do not close their browser.
User returns and associates again. Place in initial role for guest (guest-logon); however, they are not provided the captive portal.
We think the DNS entry (e.g., Google.com) is being cached, and therefore the traffic is not hitting the captive portal rule. If this is the case, then this would be a client adjustment and nothing to be done on the wireless infrastructure side.
If not, I'm not sure what should/could be done to force the CP on the client. The rules seem to be correct (just copied default and added rule to allow HTTP/HTTPS to the clearpass server.
Any suggestions/comments/input?
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Alert a Moderator
Re: Guest Captive Portal and DNS Cache
Re: Guest Captive Portal and DNS Cache
07-13-2017 11:24 AM
They need to navigate to an HTTP page. Chances are the page they have up is HTTPS.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Alert a Moderator
Re: Guest Captive Portal and DNS Cache
Re: Guest Captive Portal and DNS Cache
07-13-2017 11:29 AM
Can you elaborate. Should the policies in the user role catch redirect whether it is HTTP or HTTPS?
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Alert a Moderator
Re: Guest Captive Portal and DNS Cache
Re: Guest Captive Portal and DNS Cache
07-13-2017 11:45 AM
It will catch HTTPS, but the user will receive a certificate warning.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Alert a Moderator