Could an author of PvD help me understand the following questions for each of the diagrams below I found on the Internet -- which represent some typical hotspot configurations out there...
- Where would the API reside?
- Who 'owns' the API?
- How does the API keep in-sync with the NAS? Who's responsible for that (possibly multi-vendor, multi-AAA) integration?
"Cisco ISE supports internal and external identity sources. Both sources can be used as an authentication source for sponsor-user and guest-user authentication."
Also note this interesting article: the section Information About Captive Bypassing and how it describes how to avoid Apple captive portal detection!!! "If no response is received, then the Internet access is assumed to be blocked by the captive portal and Apple’s Captive Network Assistant (CNA) auto-launches the pseudo-browser to request portal login in a controlled window. The CNA may break when redirecting to an ISE captive portal. The controller prevents this pseudo-browser from popping up."