08-21-2014 02:26 AM
I have just set up airgroup and the integration works great. In my scenario I would like to permit the use of an appletv to a presenter and deny it to guests.
Where im stuck is how to distiguish the presenter from the guests (guest role id was my first guess) and then how to enforce that seperation.
I know the airgroup-operator and airgroup-admin roles can do this on a seperate page, but that seems a bit clunky for this use case.
08-21-2014 03:40 AM
08-21-2014 03:47 AM - edited 08-21-2014 03:48 AM
Well, thats what I'm trying to understand.
Ideally I would like the Presenter to register (using Guest Self-Registration) and have reception add them into the Presenter Role. This would give them access to the Guest network (along with everyone else) with the added function of AirPlay.
What I don't understand is how the mapping of the 'Presenter' role matches up to, and validates, the AirGroup shared role (which is owned by the Instant/Controller AirGroup setting).
Does that make sense?
Perhaps someone has a sample config?
08-21-2014 04:47 AM
You'd also need to create the necessary logic in your enforcement policy to put the user into the user role (TIPS role equals presenter --- presenter-role-enf)
08-21-2014 06:05 AM
I'll give that a go in the morning. Its similar to what I already had, except I was using Endpoint:Guest Role ID instead of Tips:Role and Enforcement Profiles to map back to the Roles.
08-21-2014 06:18 AM