I have the following scenario I'm trying to resolve but not sure it's even feasible. I have several remote sites that have AP 135s provisioned as RAPs so that the corporate SSID and the guest SSID are bridged to the local LAN. The guest SSID vlan is typically feed by a local cable or DSL modem. I'm looking for a way to present these guest users a capitve portal page from clearpass. I setup a user role that uses routing/src nat to get to the CPPM server. This role works for ICMP traffic but I cannot get to the CPPM server using HTTP. I'm guessing this is because of the logon and captiveportal ACLs.
Any suggestions or others who have this scenario?