Can you clarify the products you are using? A "RAP" (RAP3, RAP109, RAP155) running Instant Code? Or a tradtional Campust AP deployed as a RAP (Remote Access Point) connected to a head end controller. (Yes we made that confusing for customers...:) )
In either case, you can tunnel corp traffic back to a anchor controller but enforce policy locally on the access point.
Of course you can secure either product using your corp AAA server etc and even bind policy to all users on the network using our ClearPass portfolio.
Cheers, Adam