Security

Hi Experts,

Deeply appreciate if you guys can point me in the right direction. I have been searching online but simply cannot find a solution.

What I want to achieve is, instead of being presented with the usual default fields for Guest User self-registration:

Hi Jackgarnell,

You can create the guest service with authentication source as Guest user and AD repository  and kindly give network login page URL on WLC side for redirection.

Thanks
Nilesh
Original Message:
Sent: Jul 04, 2022 05:55 AM
From: Jack Garnell
Subject: ClearPass Guest Self-Registration Using AD Credentials

Hi Experts,

Deeply appreciate if you guys can point me in the right direction. I have been searching online but simply cannot find a solution.

What I want to achieve is, instead of being presented with the usual default fields for Guest User self-registration:

The user (employee in this instance) is prompted to use his/her AD credentials to login to the Guest User Self-Registration page instead:

And upon successful login, the "guest user" is created automatically in the Guest User database along with the Guest Device info upon clicking on the "Create" button:

Thanks!

Thanks Nilesh, I know how to create the services on the CPPM side but how do I change the fields on the Guest side to AD username & password? The username & password fields for the Guest self-registration page seem to look for local credentials from the Guest DB.
Original Message:
Sent: Jul 05, 2022 01:45 AM
From: Nilesh Wagh
Subject: ClearPass Guest Self-Registration Using AD Credentials

Hi Jackgarnell,

You can create the guest service with authentication source as Guest user and AD repository  and kindly give network login page URL on WLC side for redirection.

Thanks
Nilesh
Original Message:
Sent: Jul 04, 2022 05:55 AM
From: Jack Garnell
Subject: ClearPass Guest Self-Registration Using AD Credentials

Hi Experts,

Deeply appreciate if you guys can point me in the right direction. I have been searching online but simply cannot find a solution.

What I want to achieve is, instead of being presented with the usual default fields for Guest User self-registration:

The user (employee in this instance) is prompted to use his/her AD credentials to login to the Guest User Self-Registration page instead:

And upon successful login, the "guest user" is created automatically in the Guest User database along with the Guest Device info upon clicking on the "Create" button:

Thanks!

You need to add AD as an authentication source in the service that handles the web login for the captive portal.
Original Message:
Sent: Jul 05, 2022 04:50 AM
From: Jack Garnell
Subject: ClearPass Guest Self-Registration Using AD Credentials

Thanks Nilesh, I know how to create the services on the CPPM side but how do I change the fields on the Guest side to AD username & password? The username & password fields for the Guest self-registration page seem to look for local credentials from the Guest DB.
Original Message:
Sent: Jul 05, 2022 01:45 AM
From: Nilesh Wagh
Subject: ClearPass Guest Self-Registration Using AD Credentials

Hi Jackgarnell,

You can create the guest service with authentication source as Guest user and AD repository  and kindly give network login page URL on WLC side for redirection.

Thanks
Nilesh
Original Message:
Sent: Jul 04, 2022 05:55 AM
From: Jack Garnell
Subject: ClearPass Guest Self-Registration Using AD Credentials

Hi Experts,

Deeply appreciate if you guys can point me in the right direction. I have been searching online but simply cannot find a solution.

What I want to achieve is, instead of being presented with the usual default fields for Guest User self-registration:

The user (employee in this instance) is prompted to use his/her AD credentials to login to the Guest User Self-Registration page instead:

And upon successful login, the "guest user" is created automatically in the Guest User database along with the Guest Device info upon clicking on the "Create" button:

Thanks!

Sorry but adding AD as an authentication source does not change the fields to "Username" & "Password" for the Guest Self-Registration Page:

1) Created a "Test" Self-Registration page with just the defaults & only the following value changed:

2) Created using Service Templates - Guest Access - Web Login:

Original Message:
Sent: Jul 05, 2022 07:56 AM
From: Unknown User
Subject: ClearPass Guest Self-Registration Using AD Credentials

You need to add AD as an authentication source in the service that handles the web login for the captive portal.
Original Message:
Sent: Jul 05, 2022 04:50 AM
From: Jack Garnell
Subject: ClearPass Guest Self-Registration Using AD Credentials

Thanks Nilesh, I know how to create the services on the CPPM side but how do I change the fields on the Guest side to AD username & password? The username & password fields for the Guest self-registration page seem to look for local credentials from the Guest DB.
Original Message:
Sent: Jul 05, 2022 01:45 AM
From: Nilesh Wagh
Subject: ClearPass Guest Self-Registration Using AD Credentials

Hi Jackgarnell,

You can create the guest service with authentication source as Guest user and AD repository  and kindly give network login page URL on WLC side for redirection.

Thanks
Nilesh
Original Message:
Sent: Jul 04, 2022 05:55 AM
From: Jack Garnell
Subject: ClearPass Guest Self-Registration Using AD Credentials

Hi Experts,

Deeply appreciate if you guys can point me in the right direction. I have been searching online but simply cannot find a solution.

What I want to achieve is, instead of being presented with the usual default fields for Guest User self-registration:

The user (employee in this instance) is prompted to use his/her AD credentials to login to the Guest User Self-Registration page instead:

And upon successful login, the "guest user" is created automatically in the Guest User database along with the Guest Device info upon clicking on the "Create" button:

Thanks!

Hi Jackgarnell,

Your using Self registration page. How you will see the network login page,you will only see the registration page.

If you want to login with AD crediantials just click on already have an account?sign in 
then try logging with AD crediantials.You will be able to login if you have service with AD source.


Thanks
Original Message:
Sent: Jul 05, 2022 11:29 PM
From: Jack Garnell
Subject: ClearPass Guest Self-Registration Using AD Credentials

Sorry but adding AD as an authentication source does not change the fields to "Username" & "Password" for the Guest Self-Registration Page:

1) Created a "Test" Self-Registration page with just the defaults & only the following value changed:

2) Created using Service Templates - Guest Access - Web Login:

3) AD added as Authentication Source:

4) Default Roles assigned:

5) Default Enforcement Policy allowing logins only during weekdays:

6) Default fields still shown (Your Name, Email Address, Confirm) in Self-Registration page; does not change to "Username" & "Password" to authenticate using AD credentials:

Any other advice is appreciated. Thanks!

Original Message:
Sent: Jul 05, 2022 07:56 AM
From: Unknown User
Subject: ClearPass Guest Self-Registration Using AD Credentials

You need to add AD as an authentication source in the service that handles the web login for the captive portal.
Original Message:
Sent: Jul 05, 2022 04:50 AM
From: Jack Garnell
Subject: ClearPass Guest Self-Registration Using AD Credentials

Thanks Nilesh, I know how to create the services on the CPPM side but how do I change the fields on the Guest side to AD username & password? The username & password fields for the Guest self-registration page seem to look for local credentials from the Guest DB.
Original Message:
Sent: Jul 05, 2022 01:45 AM
From: Nilesh Wagh
Subject: ClearPass Guest Self-Registration Using AD Credentials

Hi Jackgarnell,

You can create the guest service with authentication source as Guest user and AD repository  and kindly give network login page URL on WLC side for redirection.

Thanks
Nilesh
Original Message:
Sent: Jul 04, 2022 05:55 AM
From: Jack Garnell
Subject: ClearPass Guest Self-Registration Using AD Credentials

Hi Experts,

Deeply appreciate if you guys can point me in the right direction. I have been searching online but simply cannot find a solution.

What I want to achieve is, instead of being presented with the usual default fields for Guest User self-registration:

The user (employee in this instance) is prompted to use his/her AD credentials to login to the Guest User Self-Registration page instead:

And upon successful login, the "guest user" is created automatically in the Guest User database along with the Guest Device info upon clicking on the "Create" button:

Thanks!

Hi Nilesh,

That's the problem. From this Youtube video (Aruba ClearPass Onboarding using Device Registration - YouTube), the user performed the following:

1) Connected to SSID & entered AD credentials for RADIUS authentication. ClearPass service checks if user / user's device is in Guest repo (MAC caching perhaps) & if it is, allows access. If not, a Device Registration role is returned.

2) If user is assigned a Device Registration role, he/she will be redirected to a Captive Portal when attempting to surf the Internet.

3) The Captive Portal seems like a modified version of the Guest Self-Registration page, with "Username" & "Password" fields instead of the default fields (Your Name, Email Address, Confirm).

My query is, how this Youtuber did no.3, if you happen to know.

Much appreciated! Thanks!​
Original Message:
Sent: Jul 05, 2022 11:44 PM
From: Nilesh Wagh
Subject: ClearPass Guest Self-Registration Using AD Credentials

Hi Jackgarnell,

Your using Self registration page. How you will see the network login page,you will only see the registration page.

If you want to login with AD crediantials just click on already have an account?sign in 
then try logging with AD crediantials.You will be able to login if you have service with AD source.


Thanks

Nilesh 

Original Message:
Sent: Jul 05, 2022 11:29 PM
From: Jack Garnell
Subject: ClearPass Guest Self-Registration Using AD Credentials

Sorry but adding AD as an authentication source does not change the fields to "Username" & "Password" for the Guest Self-Registration Page:

1) Created a "Test" Self-Registration page with just the defaults & only the following value changed:

2) Created using Service Templates - Guest Access - Web Login:

3) AD added as Authentication Source:

4) Default Roles assigned:

5) Default Enforcement Policy allowing logins only during weekdays:

6) Default fields still shown (Your Name, Email Address, Confirm) in Self-Registration page; does not change to "Username" & "Password" to authenticate using AD credentials:

Any other advice is appreciated. Thanks!

Original Message:
Sent: Jul 05, 2022 07:56 AM
From: Unknown User
Subject: ClearPass Guest Self-Registration Using AD Credentials

You need to add AD as an authentication source in the service that handles the web login for the captive portal.
Original Message:
Sent: Jul 05, 2022 04:50 AM
From: Jack Garnell
Subject: ClearPass Guest Self-Registration Using AD Credentials

Thanks Nilesh, I know how to create the services on the CPPM side but how do I change the fields on the Guest side to AD username & password? The username & password fields for the Guest self-registration page seem to look for local credentials from the Guest DB.
Original Message:
Sent: Jul 05, 2022 01:45 AM
From: Nilesh Wagh
Subject: ClearPass Guest Self-Registration Using AD Credentials

Hi Jackgarnell,

You can create the guest service with authentication source as Guest user and AD repository  and kindly give network login page URL on WLC side for redirection.

Thanks
Nilesh
Original Message:
Sent: Jul 04, 2022 05:55 AM
From: Jack Garnell
Subject: ClearPass Guest Self-Registration Using AD Credentials

Hi Experts,

Deeply appreciate if you guys can point me in the right direction. I have been searching online but simply cannot find a solution.

What I want to achieve is, instead of being presented with the usual default fields for Guest User self-registration:

The user (employee in this instance) is prompted to use his/her AD credentials to login to the Guest User Self-Registration page instead:

And upon successful login, the "guest user" is created automatically in the Guest User database along with the Guest Device info upon clicking on the "Create" button:

Thanks!