A new feature added to ClearPass 6.3 is the ability to use the ClearPass Policy Manager as a SAML IdP within a SSO deployment to leverage a users network login to automatically sign them into authorized SSO apps. This is a cool way of helping make the most of SSO while providing a better user experience by eliminating redundant logins. It can be deployed as your SSO IdP or in-line with Ping, Okta, IBM and other identity management engines.
To enable this, you need to configure a new ClearPass SAML IdP service as well as make sure that SSO is enabled on the Aruba Mobility Controller. There's a new video that highlights the Auto Sign-On feature and also provides information on how to set it all up. The video can be found here. Take a look and feel free to share your thoughts and/or experiences leveraging this new capability within your network.