Hi Gary,
Please let me know the ClearPass version.
Do you have the following enforcement profiles mapped/applied in the guest user authentication service in policy manager?
xxx Guest Do Expire
xxx Guest Expire Post Login
The "expire post login enfircement profile" is the one which will mark the guest expiry based on account lifetime after the guest user first login. These profiles will be created automatically when you create the gueste authentication service using the service templates.
Guest Expire Post Login(Template:ClearPass Entity Update Enforcement).
| Type | Name | | Value |
1. | Expire-Time-Update | GuestUser | = | %{GuestUser:expire_postlogin} |
Guest Do Expire(Template:Session Restirction Enforcement).
| Type | Name | | Value |
1. | Expiry-Check | Expiry-Action | = | %{GuestUser:do_expire} |