Wireless Access

last person joined: 18 hours ago 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

RAP + Controller + ClearPass - Captive Portal

This thread has been viewed 0 times

  • 1.  RAP + Controller + ClearPass - Captive Portal

    Posted Sep 27, 2017 12:24 PM

    Hi everyone. I need to install like 100 APs distributed in diferents parks (real big distances). I'll like to make a center node, with 2 HA Controllers and 2 HA ClearPass.

    The tricky part is that I need that all clients that want to connect to the SSID can't navigate till they login in to a Captive Portal hosted and managed by the ClearPass.

    I think that I need a initial role that block every trafic, except DHCP, DNS, and access to the Controller and the ClearPass (tunneled), and a second rol (authenticated) that permit navigate freely through the park ISP (not tunneled).

     

    Is this posible? Can the RAPs block and permit traffic with roles defined in the controller?

     

    Thanks everyone.

     

    Nicolás Cáceres.



  • 2.  RE: RAP + Controller + ClearPass - Captive Portal
    Best Answer

    Posted Sep 27, 2017 12:45 PM
    This is totally possible.

    The initial role will be a guest-logon role with the elements you mentioned with the additional captive portal redirect rules.

    The application of the role will happen at the controllers.


  • 3.  RE: RAP + Controller + ClearPass - Captive Portal

    Posted Sep 27, 2017 12:51 PM

    Awesome! I'm waiting for a new AP to test it ASAP.

     

    Thanks!