We are using Clearpass for GUest access on our Customers wired ports and we have been using Solution within the ASE and also the Clearpass_Solution-Guide_Wired-Policy-Enforcement. We are using sponsporship for guest and the problem we are having is that once the user click login after sponsor authorisation the user cannot connect to anything. This seems to be because although the correct enforcement profiles are sent they don't seem to be picked up by the switch to change them (I have tried to both bounce the port and reauthenticate session). If the user physically unplugs after this then the correct policy is picked up and DaCL applied, It just seeems to be after the initial webauth. I have attached a log. Any ideas?
Looks like the Radius disconnect/CoA did not succeed. You need to check the the MAC(Layer 2 ) authentcation request of the client in Access Tracker before the WebAuth and see if the radius disconnect/CoA suceeded. You can try disconnecting the client by using the "Change Status" option in the Access Tracker and see if that works.
This was the Issue.
Within the Network Device setting the Vendor Name was set as Aruba and not Cisco.
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2020 Hewlett Packard Enterprise Development LPAll Rights Reserved.