Captive portal example configuration
A basic LUR (Local User Role) captive portal configuration, including policy, captive portal, and user role can be configured as follows:
Policy configuration
switch(config)# class ip clearpass switch(config-class-ip)# 10 match tcp any 10.101.0.199 eq 80 switch(config-class-ip)# 20 match tcp any 10.101.0.199 eq 443 switch(config-class-ip)# exit switch(config)# switch(config)# class ip dhcp switch(config-class-ip)# 10 match udp any any eq 67 switch(config-class-ip)# 20 match udp any any eq 53 switch(config-class-ip)# exit switch(config)# switch(config)# class ip http switch(config-class-ip)# 10 match tcp any any eq 80 switch(config-class-ip)# 20 match tcp any any eq 443 switch(config-class-ip)# exit switch(config)# switch(config)# port-access policy cp_policy switch(config-pa-policy)# 10 class ip dhcp switch(config-pa-policy)# 20 class ip clearpass switch(config-pa-policy)# 30 class ip http action redirect captive-portal switch(config-pa-policy)# exit switch(config)#
Captive portal configuration
switch(config)# aaa authentication port-access captive-portal-profile cp_user switch(config-captive-portal)# url http://10.101.0.199/guest/cp.php switch(config-captive-portal)# url-hash-key plaintext cGxwe#123 switch(config-captive-portal)# exit switch(config)#
User role configuration
switch(config)# port-access role guest_role switch(config-pa-role)# associate captive-portal-profile cp_user switch(config-pa-role)# associate policy cp_policy switch(config-pa-role)# exit switch(config)#