10-02-2014 10:19 AM
Solved! Go to Solution.
10-02-2014 10:46 AM
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
10-02-2014 10:57 AM - edited 10-02-2014 10:57 AM
PEAP-Public is an option.
Instead of a PSK, the user would enter the key as both the username and password. You could then direct them to a captive portal to register.
It's not open, but is a public access method with enables their traffic to be encrypted.
Otherwise you will need to use two SSIDs.
10-02-2014 11:32 AM
Thank you for the responses! I did want to further expand on what we are trying to accomplish as my first post was rather rushed. Essentially, we want users to connect to a single SSID and use ClearPass as the decision maker as to whether or not they will utilize EAP-TLS (with certificates) or be sent to a captive portal if they do not to register as a guest user (or login with AD credentials).
From what I have seen, I believe we would still need multiple SSID's, but I wanted to confirm that is the case.
10-02-2014 11:40 AM