We have a guest network with a constant rotation of mobile phone users. Is there a way to collect some information about who these devices belong to, such as forcing the user to enter their e-mail or company name? Perhaps using the Captive portal? We need some way of identifying unauthenticated users.
Captive portal would require successful authentication which means accounts have to exist somewhere. I don't know of any off the shelf solutions that you can plug in (there may very well be one), but you could probably fairly 'easily' create some sort of homebrew solution such as a registration service (that you could link to from the captive portal page) that could accept the mobile number as an input (and whatever else) and possibly even tie integration into an SMS service such as nexmo so the user would receive a one time code to validate the number, then create a temporary account in a database and use that to authenticate against Palo Alto via LDAP or whatever.
that's what immediately comes to mind, though what usually comes to my mind immediately is often overlooking an even more simple approach.
ETA: If you went with the SMS approach, you could probably even have the backend script automatically update PA's UserID via the XML API directly, then redirect back to the internet where hopefully PA has the user already identified.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!