Meru Captive Portal, RADIUS/NPS and Lightspeed Rocket SSO
Today with support from MERU, I finally got our captive portal working with our SSL cert! Long overdue task!
We have a VLAN for BYOD associated to a SSID with which the captive portal works. This uses RADIUS authentication and AD credentials so that users in our boarding houses can be tracked for safeguarding reasons.
This is currently for both students and staff, however I would like to provide slightly more elevated access for Staff to certain web services on our LAN. I was intending on setting up a new DHCP scope, mapped to another VLAN on the Meru along with a new SSID for the staff to use. Our Sonicwall could then allow access to certain servers.
We also have our content filter, the Lightspeed rocket. Users currently have to authenticate twice on the BYOD SSID. Once to the captive portal and again to the Lightspeed Rocket, as they do not have the Lightspeed user agent installed on their own device. Is it possible to pass credentials from the Meru captive portal to the lightspeed rocket via the RADIUS?
Is it possible to specify the captive portal to only allow certain AD groups for a certain SSID? (So that when staff connect to their SSID it will only allow them through if they are in the AD All Staff Group?)
Any help would be great!!