https://community.cisco.com/t5/network-access-control/ise-identity-group-assignment/m-p/2238006#M136826 <HTML><HEAD></HEAD><BODY><P>Additional Information and Question:</P><P></P><P>Currently my Authorization Policy has this:</P><P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; <IMG src="http://supportforums.cisco.com/sites/default/files/legacy/1/8/3/138381-Authorization%20Policy.png" class="jive-image" /></P><P></P><P>The result is that any user trying to acesss the Guest Service can see the Guest Portal, introduce Credentials and if they are valid, the AUP is displayed, after that if the device is in the Blacklist, service is denied and the Guest Portal is displayed again, but any message about the situation is indicated to the user. I wonder if I can generate a message and even avoid the AUP if the device is in the blacklist.</P><P></P><P>Any comment will be greatly appreciated.</P><P></P><P>Regards.</P><P>Daniel Escalante</P></BODY></HTML> Mon, 06 May 2013 21:44:46 GMT descalante2007 2013-05-06T21:44:46Z https://community.cisco.com/t5/network-access-control/ise-identity-group-assignment/m-p/2238005#M136789 <P>I need to avoid a large set of devices to get access to Internet through the Wireless Guest Service. I had made some test and know I can block a MAC address through the Policy Authorization (If Blacklist then DenyAccess).</P><P>In order to blacklist a large set I would like to import the MAC list and include in the CSV the Identity Group Assignment. It appears it is not possible ... I can have an easy way to change the Identity Group Assignment instead of one by one?</P><P></P><P>Regards.</P><P></P><P>Daniel Escalante.&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </P> Mon, 11 Mar 2019 03:24:00 GMT https://community.cisco.com/t5/network-access-control/ise-identity-group-assignment/m-p/2238005#M136789 descalante2007 2019-03-11T03:24:00Z https://community.cisco.com/t5/network-access-control/ise-identity-group-assignment/m-p/2238006#M136826 <HTML><HEAD></HEAD><BODY><P>Additional Information and Question:</P><P></P><P>Currently my Authorization Policy has this:</P><P>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; <IMG src="http://supportforums.cisco.com/sites/default/files/legacy/1/8/3/138381-Authorization%20Policy.png" class="jive-image" /></P><P></P><P>The result is that any user trying to acesss the Guest Service can see the Guest Portal, introduce Credentials and if they are valid, the AUP is displayed, after that if the device is in the Blacklist, service is denied and the Guest Portal is displayed again, but any message about the situation is indicated to the user. I wonder if I can generate a message and even avoid the AUP if the device is in the blacklist.</P><P></P><P>Any comment will be greatly appreciated.</P><P></P><P>Regards.</P><P>Daniel Escalante</P></BODY></HTML> Mon, 06 May 2013 21:44:46 GMT https://community.cisco.com/t5/network-access-control/ise-identity-group-assignment/m-p/2238006#M136826 descalante2007 2013-05-06T21:44:46Z https://community.cisco.com/t5/network-access-control/ise-identity-group-assignment/m-p/2238007#M136861 <HTML><HEAD></HEAD><BODY><P><STRONG>Kindly review the below link:</STRONG></P><P></P><P><A href="https://www.cisco.com/en/US/docs/solutions/Enterprise/Security/TrustSec_2.0/trustsec_2.0_dig.pdf">https://www.cisco.com/en/US/docs/solutions/Enterprise/Security/TrustSec_2.0/trustsec_2.0_dig.pdf </A></P><P></P><P><STRONG> </STRONG></P></BODY></HTML> Wed, 15 May 2013 09:37:42 GMT https://community.cisco.com/t5/network-access-control/ise-identity-group-assignment/m-p/2238007#M136861 manjeets 2013-05-15T09:37:42Z