For my network I want to use a specific certificate to allow browsing on my guest network without the need to go through the guest portal. I have a similar exemption rule in place using a MAB list which works without issue. However, when I add a policy set that looks at the subject cname, I'm not getting any positive results. Is there an issue using certificate based authentication on an open network? If so, is there a way to request an EAP packet, and if they can't authenticate, take them to the redirect?
... View more