Security

 View Only

  • 1.  CoA and downloadable user roles

    Posted May 13, 2019 05:31 AM

    Please ignore, solution is to do not return the user role but to simply reset the connection and return what you want with the subsequent MAC auth.

     

    ------

    Doing a wired setup, all done with downloadable user roles from Clearpass.

     

    Now arrived at the wired guest (captive portal) part.

    Using DUR to return the initial logon-role works, but then..

     

    Is it possible to use DUR in a CoA? Is there another way to keep my DUR? Or does my entire single point of user-role config fall apart here?



  • 2.  RE: CoA and downloadable user roles

    Posted May 13, 2019 08:17 AM

    During the guest logon you will need to assign the post-authentication profile (assign guest-role/mac caching) and also return the ArubaOS switch terminate session (CoA) , which will force the user to reauth (mac authentication) and at that point you can return the final guest-dur



Related Content