11-09-2016 01:48 AM
as per tac.You will need to make changes on the controller user-roles, so that the authenticated users can gain access to internet and other network resources. Currently you have created 3 post-authentication roles, but they all contain the ACLs which are usually used to configure a pre-authenticated captive portal based user role.
Unless the changes on these 3 roles are made, authenticated users will not be able to access anything except ClearPass page.
11-09-2016 02:13 AM
Get Outlook for iOS
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
11-09-2016 03:48 AM
11-09-2016 04:28 AM
11-09-2016 08:40 AM - edited 11-09-2016 08:40 AM
Couple of things to check:
Check your post-auth role in your Captive Portal profile; and share with us the following:
show rights <role name>
Also, on CPPM, are you sure you see the authentication hitting a service (in Access Tracker)? If not, confirm that you have changed your AAA Server Group under the Captive Portal Profile. This is often missed and defaults to the internal server group; in this case, authentiation would fail and revert to the "initial role" which would bring back the captive portal page.
Systems Engineer, Northeast USA
ACCX | ACDX | ACMX