Our current staff wireless network uses radius via clearpass to authenticate Active directory credentials. The problem is that everytime a user is forced to change passwords their mobile device is causing their account to be locked out which is becoming a headache for the lower tier support groups.
I have seen in other organizations that instead of using a constant authorization to connect to wifi, they instead had a captive portal that used your AD password and username to authenticate a device and that device's mac address the first time you connected to their wireless network. The user would no longer have to present AD credentials and that device was allowed to connect until account termination.
Is there a way I can do this with clearpass and a cisco WLC? Is it compatible with a hidden network?
No comments:
Post a Comment