Wireless Access

Reply

multiple user roles within captive portal ssid

what are the possibilities of multiple user roles within one captive portal ssid? when i provision a user being the guest provisioning user they become user role guest by default, is this changable? is this overwritten by the default guest role on the captive portal profile anyway?

 

when i create a user as admin i can select a role, does that have an effect with a captive portal ssid or is it overwritten?

Aruba

Re: multiple user roles within captive portal ssid

The default server group used in a captive portal profile is "Internal".    This group has a server derived rule that states:

 

set role condiction role value-of

 

When a guest account is created in the internal database through the provisioning portal, they have a role of guest by default (I don't think you can change this); thus the server derived rule above will put them in the guest role (this overwrites the default roles in the profile).    I usually create a new "internal" server without this rule and use it on captive portal profiles.  This way you can use the default roles in the captive portal profile itself to dictate role assignment rather than everyone getting "guest".

 

If you create the accounts through the Internal DB outside of the provisioning portal, you can specifiy a different role; and if the above rule is in place, they will get that role; however if you remove the above rule, they'll get what is assigned in the CP profile for default roles.  Alternatively, you can use other source for your user accounts; CP Guest, AD, other DBs and use server derived rules to assign varous roles.

 

 

------------------------------------------------
Systems Engineer, Northeast USA
ACCX | ACDX | ACMX

Re: multiple user roles within captive portal ssid

 of course, thank you.

 

i got the best of both worlds by creating the rule that changes role guest into what i want it to be and a second rule that does keeps the other roles as they have been set.

 

how to make such a default value-of rule as it exists on the default server group via the GUI, the keyword "role" doesnt seem to exist in the list and when i fill it in no line is added. via the CLI i can get it done, but via the GUI it doesn't work.

Aruba

Re: multiple user roles within captive portal ssid

Just type in Role in the attributes field, select "value-of" and select "set role"   and click Add/Apply/etc....

 

See attached JPEG

------------------------------------------------
Systems Engineer, Northeast USA
ACCX | ACDX | ACMX

Re: multiple user roles within captive portal ssid

yes it indeed took that, im quiet sure i tried that before and it just dissapeared. ah well, issue solved.

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: