#CAPTIVE PORTAL REGISTER ACCESS REGISTRATION#
Subject: ClearPass captive portal with Azure AD registration doesn't work with number match MFA on Android or iOS In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba Networks. A list of APs is displayed in the List view. Under Manage, click Devices > Access Points. The dashboard context for the group is displayed. If you have urgent issues, always contact your Aruba partner, distributor, or Aruba TAC Support. To configure an internal captive portal profile, complete the following steps: In the Aruba Central app, set the filter to a group containing at least one AP. With ClearPass 6.11 there is now support for CAPPORT (RFC8908/8910) which should open a normal webbrowser which may not have the same issue. I'm just not sure if the redirect URL will work on all devices, it may be that the mini-browser just shuts down. If you can use the 'redirect URL' to open a normal browser on a 'dummy login', you could try to get around this. Two suggestions that you could have a look at: Someone may have found a solution to that problem, and solve yours with the same approach. This form will appear when they open a web page or automatically appear when they join the network. In doing so, they exchange personal data. Typically, access to the internet is restricted over the open WiFi until the client fills out a registration form. That may be a hard problem to solve I heard the same issue with SMS codes where if you open the SMS app, you lose access to the mini-browser and can't login. Captive Portals are primarily used for communication purposes and marketing. Does anyone have any ideas on what I could do to make it work? So I'm stuck at the intersection of ClearPass, phone OS and Azure AD and none of them have a solution or even a workaround to the problem.
This was confirmed by MS support, see these links for some detailsĬonditional Access service dependencies - Azure Active Directory - Microsoft Entra
#CAPTIVE PORTAL REGISTER ACCESS WINDOWS#
I tried to bypass MFA for the ClearPass app in the Azure Conditional Access policy, but it can't be done since ClearPass access Windows Azure AD (which itself can't be excluded) which triggers MFA anyway. When the number match part of the login appears in the iOS or Android captive portal browser, the user switches to MS Authenticator to enter the number, but when they try to switch back to the captive portal browser, it's disappeared, and so the registration with ClearPass doesn't complete. The problem is we're rolling out MFA, and preferencing MS Authenticator with number match. There's a standard registration form for sponsor approval, or I've set up OAuth to Azure AD for staff to log in with. I have a captive portal on a PSK guest network, for guest and staff personal devices. Technically this is a phone OS problem, but bear with me.
0 kommentar(er)
