I'm working on correcting and improving our 802.1x/MAB system and encountered a curious issue. In looking at the endpoint database and checking for conflicts I found a fair number of devices showing as having reported profile conflicts (about 7%)! Digging into them, it seems that at some point a number of devices were profiled with Device Category: SmartDevice, Device OS Family: Apple, Device Name: Apple iPhone. This either shows as their first profiling (and the correct profile information being the conflict), or some point later (with the Apple data showing as the conflict).
The only thing that I can think of as being related is that it looks like many of these have connected to our guest network at some point, using Clearpass Guest for the captive portal and Mobility Access Controllers for the wifi. The DHCP, Mobility Controller, and Clearpass are the same as for the corporate access, and I'm not seeing any obvious red-flags at the moment. On a related note, is there a particular log that shows when a new conflict arrises? It would make it easier to try to track down specifically what's happening to cause a conflict.