I'm setting up Cloudpath for an EAP-TLS-only network. I'm authenticating against an LDAP directory, and I'm looking to assign a different filter-id to users based on their LDAP group (faculty, students, etc.) so that I can assign them to different roles and on my Aruba wireless controller. What's the best way of accomplishing this?
I figured it out in the end. I needed to add a split in the workflow after login and before certificate installation. When you first create it, it doesn't give you the option to set a filter, but once you've created the split if you go back and edit it gives the option to filter by LDAP attributes. It was pretty straightforward after that. I couldn't find any good tutorial online, so I may come back here and add one if I get some time.