Captive portal example configuration

A basic LUR (Local User Role) captive portal configuration, including policy, captive portal, and user role can be configured as follows:

Policy configuration

switch(config)# class ip clearpass
switch(config-class-ip)# 10 match tcp any 10.101.0.199 eq 80
switch(config-class-ip)# 20 match tcp any 10.101.0.199 eq 443
switch(config-class-ip)# exit
switch(config)#
switch(config)# class ip dhcp
switch(config-class-ip)# 10 match udp any any eq 67
switch(config-class-ip)# 20 match udp any any eq 53
switch(config-class-ip)# exit
switch(config)#
switch(config)# class ip http
switch(config-class-ip)# 10 match tcp any any eq 80
switch(config-class-ip)# 20 match tcp any any eq 443
switch(config-class-ip)# exit
switch(config)#
switch(config)# port-access policy cp_policy
switch(config-pa-policy)# 10 class ip dhcp
switch(config-pa-policy)# 20 class ip clearpass
switch(config-pa-policy)# 30 class ip http action redirect captive-portal
switch(config-pa-policy)# exit
switch(config)#

Captive portal configuration

switch(config)# aaa authentication port-access captive-portal-profile cp_user
switch(config-captive-portal)# url http://10.101.0.199/guest/cp.php
switch(config-captive-portal)# url-hash-key plaintext cGxwe#123
switch(config-captive-portal)# exit
switch(config)#

User role configuration

switch(config)# port-access role guest_role
switch(config-pa-role)# associate captive-portal-profile cp_user
switch(config-pa-role)# associate policy cp_policy
switch(config-pa-role)# exit
switch(config)#