hey ,
my issue is when guest try to connect ssid for guest users he needs a user name and password at this stage he can reach cppm page!! with out put any us or ps he is already open cppm.
how can i solve this issue , i tried to make restriction from iap(vc) from network-based and roles and prevention subnets from clearpass , all of this worked but after guest log in to network before that he obtained an ip just to reach captive portal , but he also reach to cppm page . i dunno who!!