https://community.cisco.com/t5/network-access-control/http-and-https-ports-from-users-to-the-access-switches/m-p/3865104#M472557 <P>&nbsp;</P><P>&nbsp;- None because regular users don't need access to the switches.</P><P>&nbsp;M.</P> Thu, 30 May 2019 11:29:06 GMT Mark Elsen 2019-05-30T11:29:06Z https://community.cisco.com/t5/network-access-control/http-and-https-ports-from-users-to-the-access-switches/m-p/3865056#M472556 <P dir="ltr">Hi Team,&nbsp;</P> <P dir="ltr">My customer is deploying ISE in their network, they have concerns in opening http and https between the users and the access switches. They would like to know what exactly do they loose if http and https are not opened between users and access switches.&nbsp;</P> Thu, 30 May 2019 09:02:53 GMT https://community.cisco.com/t5/network-access-control/http-and-https-ports-from-users-to-the-access-switches/m-p/3865056#M472556 saghisha 2019-05-30T09:02:53Z https://community.cisco.com/t5/network-access-control/http-and-https-ports-from-users-to-the-access-switches/m-p/3865104#M472557 <P>&nbsp;</P><P>&nbsp;- None because regular users don't need access to the switches.</P><P>&nbsp;M.</P> Thu, 30 May 2019 11:29:06 GMT https://community.cisco.com/t5/network-access-control/http-and-https-ports-from-users-to-the-access-switches/m-p/3865104#M472557 Mark Elsen 2019-05-30T11:29:06Z https://community.cisco.com/t5/network-access-control/http-and-https-ports-from-users-to-the-access-switches/m-p/3865222#M472559 <P>The only time you need to open up http to the switches (https redirect not needed) is for redirection to do BYOD, Guest, Client provisioning (for posture - accept when using 2.2 and higher not required, see&nbsp;<A href="https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine-22/210523-ISE-posture-style-comparison-for-pre-and.html" target="_blank">https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine-22/210523-ISE-posture-style-comparison-for-pre-and.html</A> )&nbsp;</P> <P>See more information on redirect under the following guides <BR /><A href="http://cs.co/ise-guides" target="_blank">http://cs.co/ise-guest</A>&nbsp; - look for the prescriptive guest guide</P> <P><A href="http://cs.co/ise-guides" target="_blank">http://cs.co/ise-guides</A>&nbsp;- look for the wired guide</P> <P>&nbsp;</P> Thu, 30 May 2019 15:29:01 GMT https://community.cisco.com/t5/network-access-control/http-and-https-ports-from-users-to-the-access-switches/m-p/3865222#M472559 Jason Kunst 2019-05-30T15:29:01Z