Hi All,
I have post the same query under clearpass section also. I apology if i
made a mistake. Not sure where to ask this quetion.
We have a very large Aurab Wifi Network in our enterprise. I am dealing with a situation where users are complaining that they can't access corporate emails using Wifi . This happen interminttently . After doing some research I find out the cause it happen only when their devices moves from Corp SSID to Guest SSID.automatically switch over.
The only work around is to click on the Guest SSId and select Forget this network. But then some other complain the same issue.
Our Corp SSID is 802.1x auth and all the mobile devices ( Android , IOS) are contolled and profiled by Airwatch.
Guest SSID is open and allow the device gets IP address it get authenticaed by Captive portal on Clearpass.
I am working to find out the solution if there is any rule or polices we can configure on controller/clearpass to stop them moving from CORP SSID to Guest SSID automatically, which will stop them giving an IP address from the DHCP scope which is resereved for Guest user
The reason is , lets say if the user is by mistake connected to Guest and if he try back to CORP SSID manually , his Wifi still doesn't work becuase on the Controller now i see 2 profiles. Guest role and Corp-SSID user role. The only work around is to delete the user cache profile and push him back to connect again on Corp SSID.
I would really appreciate Aruab community memeber if they can suggest me better solution to fix this issue.