Thank you, but yes I already have ClearPass set up as a SAML SP and its working well for admin login and guest portal preauth using our SAML IdP, however still not quite what I am looking for here...
Another point I have noticed: When I create a Guest user account with the self-service portal it will set the sponsor_name field on the created account to my SAML username, however the Guest user account username is set to whatever I type into the email field during self-registration. Is there a way for self-registration to automatically set the Guest user account username to be the same as the sponsor_name field and then just prevent them from setting their own username? This would allow us to ensure that the Guest username is the same as the SAML username, which is our desired outcome.
I do not have "require sponsor confirmation" enabled by the way, it appears that this sponsor_name is just being auto-populated from the preauth SAML authenticaiton.