Hi Tom, just had a thought after reading about your use case here, MAC auth could also work for this and it would be more secure. Since you know the devices you are handing out, if you create a MAC auth SSID, the device will automatically submit it's MAC address as essentially the username and password for the SSID, the end user won't have to enter in or launch anything to connect, and only the devices you hand out will be able to connect to that SSID. T
his guide reviews how to set this up in XIQ, just in case you're interested.