Security

Reply
Contributor I

ClearPass Guest w/ MAC caching + IAP

We have a customer facing an issue with Guest + MAC caching where after account expiry they are not redirected back to captive portal page.

 

Per the templated service, if an account is valid but isn't assigned the [MAC Caching] it should be placed in the 'captive portal role'.

 

This role exists on the IAP, but the captive portal profile is associated with the SSID itself under security settings, and not tied to a role.

 

Should a rule to 'enforce captive portal profile' be associated with the role to deal with this scenario?

 

Has anyone else had similar problems or working without this in the configuration?

 

1.png

 

 

Guru Elite

Re: ClearPass Guest w/ MAC caching + IAP

Yes, you should create a preauth role with captive portal attached.

| Tim Cappalli | Aruba Security | @timcappalli | timcappalli.me |

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: