Security

Any instructions, videos, out there to show this?
We are strictly an Aruba shop. Is it possible for the Aruba products to pass the MAC in the redirect URL?

This is mainly for game consoles.

https://www.arubanetworks.com/techdocs/ClearPass/6.10/Guest/Content/GuestManagement/MACCreationModes_pairedAccts.htm?Highlight=pairing

Mobility Master 8.8.0.0-FIPS - HA
Controller 8.8.0.0-FIPS - HA
CPPM 6.10

TIA





------------------------------
Greg Crockett
------------------------------

Hi

In default configuration for External Captive Portal the controller add mac address which is sent to Clearpass. Check URL but you should have "&mac=<mac-address>".
You don't need to configure anything.

If you would like to add MAC Pairing you need only add "mac" and "mac_auth_pair" as hidden field to register page, because Clearpass must add MAC address to guest account attribute. You have everything in links which you send
https://www.arubanetworks.com/techdocs/ClearPass/6.10/Guest/Content/GuestManagement/MACCreationModes_pairedAccts.htm?Highlight=pairing


Regards



------------------------------
Piotr Filip

ACEX#41/ACCX/ACDX/ACMX/CWNA/CWSP
------------------------------

Original Message:
Sent: May 19, 2021 05:00 PM
From: Greg Crockett
Subject: Register other MAC addresses at the same time guest use self-registration - using the same form


Any instructions, videos, out there to show this?
We are strictly an Aruba shop. Is it possible for the Aruba products to pass the MAC in the redirect URL?

This is mainly for game consoles.

https://www.arubanetworks.com/techdocs/ClearPass/6.10/Guest/Content/GuestManagement/MACCreationModes_pairedAccts.htm?Highlight=pairing

Mobility Master 8.8.0.0-FIPS - HA
Controller 8.8.0.0-FIPS - HA
CPPM 6.10

TIA





------------------------------
Greg Crockett
------------------------------

Hello,

Thanks, for responding, Piotras.

Are you referring to the "Host:" and or "Page:" fields under Roles & Policies/<role name>/Captive Portal/Captive Portal Options for the &mac=<mac-address> entry? I did find an entry to add the AP's Mac address under Authentication/l3 Authentication/Captive Portal Authentication/<captive portal name>.
Adding AP's MAC address in redirection URL:

TIA

Greg

------------------------------
Greg Crockett
------------------------------

Original Message:
Sent: May 20, 2021 03:56 AM
From: Piotr Filip
Subject: Register other MAC addresses at the same time guest use self-registration - using the same form

Hi

In default configuration for External Captive Portal the controller add mac address which is sent to Clearpass. Check URL but you should have "&mac=<mac-address>".
You don't need to configure anything.

If you would like to add MAC Pairing you need only add "mac" and "mac_auth_pair" as hidden field to register page, because Clearpass must add MAC address to guest account attribute. You have everything in links which you send
https://www.arubanetworks.com/techdocs/ClearPass/6.10/Guest/Content/GuestManagement/MACCreationModes_pairedAccts.htm?Highlight=pairing


Regards



------------------------------
Piotr Filip

ACEX#41/ACCX/ACDX/ACMX/CWNA/CWSP

Original Message:
Sent: May 19, 2021 05:00 PM
From: Greg Crockett
Subject: Register other MAC addresses at the same time guest use self-registration - using the same form


Any instructions, videos, out there to show this?
We are strictly an Aruba shop. Is it possible for the Aruba products to pass the MAC in the redirect URL?

This is mainly for game consoles.

https://www.arubanetworks.com/techdocs/ClearPass/6.10/Guest/Content/GuestManagement/MACCreationModes_pairedAccts.htm?Highlight=pairing

Mobility Master 8.8.0.0-FIPS - HA
Controller 8.8.0.0-FIPS - HA
CPPM 6.10

TIA





------------------------------
Greg Crockett
------------------------------

Hi

MAC pairing is used to correlate the user's MAC address with the guest account, so you can use the same attributes for both web and mac authentication.

The controller automatically adds attributes to URL which redirect to ClearPass via HTTP GET. Example: https://cppm.acme.local/guest/guest_register.php?cmd=login&mac=00:24:d7:ed:84:14&ip=10.15.104.13&essid=example-test-tunnel&apname=ap135&apgroup=example&url=http%3A%2F%2Fwww%2Egoogle%2Ecom%2F

In this URL you should see User MAC address, ESSID, ap-group and ap-name. This information you will have match to fields in form on the same name, so you can user AP-Name if you need. Unfortunately it is not possible to add ap-mac.

Regards

------------------------------
Piotr Filip

ACEX#41/ACCX/ACDX/ACMX/CWNA/CWSP
------------------------------

Original Message:
Sent: May 21, 2021 12:23 PM
From: Greg Crockett
Subject: Register other MAC addresses at the same time guest use self-registration - using the same form

Hello,

Thanks, for responding, Piotras.

Are you referring to the "Host:" and or "Page:" fields under Roles & Policies/<role name>/Captive Portal/Captive Portal Options for the &mac=<mac-address> entry? I did find an entry to add the AP's Mac address under Authentication/l3 Authentication/Captive Portal Authentication/<captive portal name>.
Adding AP's MAC address in redirection URL:

TIA

Greg

------------------------------
Greg Crockett

Original Message:
Sent: May 20, 2021 03:56 AM
From: Piotr Filip
Subject: Register other MAC addresses at the same time guest use self-registration - using the same form

Hi

In default configuration for External Captive Portal the controller add mac address which is sent to Clearpass. Check URL but you should have "&mac=<mac-address>".
You don't need to configure anything.

If you would like to add MAC Pairing you need only add "mac" and "mac_auth_pair" as hidden field to register page, because Clearpass must add MAC address to guest account attribute. You have everything in links which you send
https://www.arubanetworks.com/techdocs/ClearPass/6.10/Guest/Content/GuestManagement/MACCreationModes_pairedAccts.htm?Highlight=pairing


Regards



------------------------------
Piotr Filip

ACEX#41/ACCX/ACDX/ACMX/CWNA/CWSP

Original Message:
Sent: May 19, 2021 05:00 PM
From: Greg Crockett
Subject: Register other MAC addresses at the same time guest use self-registration - using the same form


Any instructions, videos, out there to show this?
We are strictly an Aruba shop. Is it possible for the Aruba products to pass the MAC in the redirect URL?

This is mainly for game consoles.

https://www.arubanetworks.com/techdocs/ClearPass/6.10/Guest/Content/GuestManagement/MACCreationModes_pairedAccts.htm?Highlight=pairing

Mobility Master 8.8.0.0-FIPS - HA
Controller 8.8.0.0-FIPS - HA
CPPM 6.10

TIA





------------------------------
Greg Crockett
------------------------------