NAC Web Authenticated Registration


Userlevel 3
Hi.

I currently have an issue with NAC and Web Authenticated Registration. I use LDAP to authenticate users against Active Directory for Registration Sites (AAA Configuration). This works pretty well for the Sponsor Role.

But when it comes to Web Authenticated Registration a problem ouccures. From my point of view it is not possible to limit the access for a specific LDAP group. If the Web Authenticated Registration is enabled, every AD User (regarding the LDAP Configuration) is permitted to use the Web Authenticated Registration portal.

Is this right or am I missing something?

Best Regards
Michael

3 replies

Userlevel 7
Michael I'm not sure whether I unterstand the problem as I don't user web auth.

Here a example how I check whether a user is in the correct AD group...
To get the Secure-Home Rule the user must be in my AD group "Team".
memberOf ==> CN=Team,OU=Team,DC=mywlan,DC=at

Userlevel 3
Dear Ronald,

thanks alot for your detailed response. Unfortunately the Web Authenticated Registration does its LDAP mapping not in the "normal" NAC Rule Configuration. It is in the Portal configuration.

I currently have no access to my configuration, otherwise I would post pictures, too 🙂

Best Regards,
Michael
Hello Michael,

Did you manage to solve this problem? I have exactly the same issue!

Reply