Hi Charlie,
I tried to setup what you sugessted; an external captive portal that never authenticates users. So users remain unauthenticated state on aruba controller and always redirected to external portal page.
This concept worked well for our Extreme Networks Controllers. But I could not make it work on Aruba 7030 v8.3. I am familiar with Extreme Networks' captive portal mechanism; you write policy rules that permits DNS, DHCP traffic and permit HTTP/HTTPS traffic to external portal IP address. Than Deny anything. So Extreme Networks controller redirects denied HTTP/HTTPS traffic to external captive portal url. This is working as expected.
I admit I don't have a full grasp on how Aruba v8 redirects to external captive portal. I attach the screenshots of the configuration below.
1. When I select external captive portal, it also asks me CPPM server information. But we don't use CPPM only need to setup external CP. How should I fill these fields? This page also askes for Radius servers. Is this necessary as I don't want any authentication?
2. When I look to automatic created role "eduroam-kurulum-guest-logon", there are so many rules compared to what I use on Extereme Networks. What is destination "eduroam-kurulum" alias? Why I can not use external portal IP address here? How does Aruba decides what traffic to redirect to external portal? Is it special "captive" action?
3. And for the last, why this setup is not working? When I browse any http page, it is not redirected to external portal url and timeouts. But if I browse external portal url "https://kablosuz.artvin.edu.tr" directly, it opens the page without any error.
Regards,
Rahman