Hi Folks. I am trying to do wired guest with ClearPass and Aruba 3810M access switches. I have two services on CPPM to accomplish this:
1. First service is Allow All MAC AUTH. If EndPoint is Unknown, it returns dynamic ACL along hpe-captive-portal-url attribute to the switch. If endpoint is know, an unrestricted profile is sent to the switch.
2. Second service is Web-auth to authenticate the captive portal user.
Everything seems to be working as aticipated. If an unknown endpoint comes on the network, I can see radius ACL assinged on the port (show access-list radius port id) and captive portal URL receied by the switch (show port-access clients detailed). Somehow, client is not being automatically redirected to the captive portal page. End to end flow works fine if I manually type the registration page URL and register/login.
I do have L3 interface on guest VLAN creatd on the switch. Running out of options to troubleshoot this issue further. Any help would be appreciated.
I also have a TAC case opened, but havent progressed bit in last 4 days unfortunately.