Ability to allow MAC Address filtering on the captive portal in addition to the generated password
With our Cisco implementation, we were able to setup a guest WiFi network that had password protection enabled. We also had a list of mac-address permitted devices that bypassed the login requirements of the guest network. This enabled us to setup legacy devices automatically so they didn't have to login. Many of these devices would not get to the captive portal page because they don't have browsers on them (older survey/gps devices).
Right now, if you add in a MAC address into the allowed list, other devices are unable to connect. It would be nice to have the option so we don't have to have a separate SSID for the MAC filtering devices.