I don't really need to use different VLAN.
Yes, I have made a Guest Self-registration and a Guest Self-sponsorship with the Aruba Instant in combination with Clearpasst (using the way you describe, external auth) but the real resultat that I need is:
-- User connects to the guest ssid.
-- Instant AP redirects to the Guest-Self registration page.
-- Clearpass send an email to the address that user typed.
-- User have a role that permit navigation during 10 minutes, grace period for navigate to the webmail and validate the connection (self-sponsorship).
I don't know how to do the grace-period of 10 minutes without using a Aruba Controller (Change of Authority feature).
Thank you,
Best Regards