Hi Team ,
I had deployed a Clearpass Guest self registeration with sponsor based approval for wired guest users . Sol :- if user connect to the switch port , it will redirect to capitive portal and user need to register the required feild and submit the request for sponsor approval . once the sponsor approved the request , account will get enable and credential will trigeer to the user and authenticate with same in clearpass server for network access.
Switch Configuration :-
I have enabled mac-based authentication in switch port , policy for limited access with http, https, DHCP and DNS . Pre-auth role and post auth role of HP-user role . Pre-auth role with capitve portal URL .
CPPM SERVICE :-
Two service configured
1. MAC AUthentication :- Refer first Screen shot
2. Web authentication :- refer second screen shot
How the service will work , User first hit the MAC authetication and cpitive portal profile will enforce to user then the user is submitting the credential ( user name and Password ) , how it will validate and catergorize the request to web auth service and enforce the HPE bounce back profile .