Wondered what was the best practice to have a Single Guest Wireless SSID to handle most guest users via Captive Portal but some guest users to be handled by MAC Address. The same controller does handle an Employee Wireless SSID using 802.1x authentication. Looking mostly to handle vendors that are at our location for months and only need internet access to not have to authenticate daily via Captive Portal but for everyone else that is just passing through to authenticate via Captive Portal. Currently running Aruba OS 6.4.2.4.
I had initially thought of using MAC Authentication which would give me the option to expire the MAC address after awhile but of course that requires a bit of setup. I did see mention of using a UDR to set the role based on MAC but wondered if that would only be leveraged for the Guest SSID or would that be leveraged for both the Guest SSID and Eployee SSID? I assume the UDR would require manual removal and couldn't have a set expiration date?