https://community.cisco.com/t5/network-access-control/guestusers-configured-to-bypass-guest-portal-fail-with-msg/m-p/3539007#M511017 <HTML><HEAD></HEAD><BODY><P>CSCva84435 is currently not reproducible. If you are able to, please contact the engineering team directly.</P></BODY></HTML> Wed, 11 Apr 2018 04:02:07 GMT hslai 2018-04-11T04:02:07Z https://community.cisco.com/t5/network-access-control/guestusers-configured-to-bypass-guest-portal-fail-with-msg/m-p/3539003#M511013 <HTML><HEAD></HEAD><BODY><P>Hi Team,</P><P></P><P>Customer has a query if this bug has been fixed in any release or patch on ISE.</P><P>Seen several requests on this bug and it turned out to be <SPAN style="font-size: 10pt;">mis-</SPAN><SPAN style="font-size: 13.3333px;">configuration</SPAN><SPAN style="font-size: 10pt;">.</SPAN></P><P>To avoid hitting the error, the customers need to enable "guest portal bypass". Customer doesn't want to enable because need AUP page.</P><P></P><P>Customer using secure SSID with hotspot portal. Need to use a secured SSID, so guests enter their credentials on their device to get onto the SSID, then are redirected to an AUP page before being granted full access. It was all working fine on 1.4 prior upgrading to 2.2</P><P></P><P>Looking for fix of the bug.</P><P></P><P>Any help would be appreciated.</P><P></P><P>Regards</P><P>Gagan</P></BODY></HTML> Thu, 05 Apr 2018 20:59:18 GMT https://community.cisco.com/t5/network-access-control/guestusers-configured-to-bypass-guest-portal-fail-with-msg/m-p/3539003#M511013 Gagandeep Singh 2018-04-05T20:59:18Z https://community.cisco.com/t5/network-access-control/guestusers-configured-to-bypass-guest-portal-fail-with-msg/m-p/3539004#M511014 <HTML><HEAD></HEAD><BODY><P>What isn't working in 2.2?&nbsp; There are no guest users in a Hotspot portal.&nbsp; The sole purpose of the hotspot portal is to present AUP.</P></BODY></HTML> Thu, 05 Apr 2018 22:20:01 GMT https://community.cisco.com/t5/network-access-control/guestusers-configured-to-bypass-guest-portal-fail-with-msg/m-p/3539004#M511014 paul 2018-04-05T22:20:01Z https://community.cisco.com/t5/network-access-control/guestusers-configured-to-bypass-guest-portal-fail-with-msg/m-p/3539005#M511015 <HTML><HEAD></HEAD><BODY><P>Thanks for the reply.</P><P></P><P>Setup used to work in 1.4. Since upgrade to 2.2 stopped working.</P><P> Try to authenticate with guest credential using dot1x (will fail)</P><P></P><P>I found a Junked bug </P><P><SPAN style="color: #000000; font-family: 'Times New Roman'; font-size: large;"><STRONG><A href="https://cdetsng.cisco.com/webui/#view=CSCvg89759">CSCvg89759</A></STRONG></SPAN><A href="http://wwwin.cisco.com/ops/infra/pds/cbms/cdets/legend.shtml" style="font-family: 'Times New Roman'; font-size: medium;" target="_blank" title="Help"><SPAN style="font-size: 8pt;"><IMG border="0" class="jive-image" height="15" src="https://cdetsweb-prd.cisco.com/apps/files/xslt/help.png" width="15" /></SPAN></A><SPAN style="color: #000000; font-family: 'Times New Roman'; font-size: medium;">&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="color: #000000; font-family: 'Times New Roman'; font-size: large;"><STRONG>Guest user Suspend-Reinstate Allows to bypass Guest portal</STRONG></SPAN></P><P><SPAN style="color: #000000; font-family: 'Times New Roman'; font-size: large;"><STRONG><BR /></STRONG></SPAN></P><P><SPAN style="color: #000000; font-family: 'Times New Roman'; font-size: medium;"> </SPAN></P><P><STRONG>tac-repro</STRONG> from bug: </P><P>Configure one user type not to have "Allow guest user to bypass portal" (disabled by default)</P><P>Login to sponsor portal</P><P>Create user of said user type</P><P>Try to authenticate with guest credential using dot1x (will fail)</P><P>On sponsor portal - suspend and re-instate user.</P><P>Authenticate with this user again - will succeed.</P><P></P><P></P><P>Not sure if this bug has been fixed or not in some release. Customer doesn't want to apply the workaround.</P><P></P><P>Regards</P><P>Gagan</P></BODY></HTML> Thu, 05 Apr 2018 22:49:15 GMT https://community.cisco.com/t5/network-access-control/guestusers-configured-to-bypass-guest-portal-fail-with-msg/m-p/3539005#M511015 Gagandeep Singh 2018-04-05T22:49:15Z https://community.cisco.com/t5/network-access-control/guestusers-configured-to-bypass-guest-portal-fail-with-msg/m-p/3539006#M511016 <HTML><HEAD></HEAD><BODY><P>I would suggest you work with tac to investigate</P></BODY></HTML> Thu, 05 Apr 2018 23:03:21 GMT https://community.cisco.com/t5/network-access-control/guestusers-configured-to-bypass-guest-portal-fail-with-msg/m-p/3539006#M511016 Jason Kunst 2018-04-05T23:03:21Z https://community.cisco.com/t5/network-access-control/guestusers-configured-to-bypass-guest-portal-fail-with-msg/m-p/3539007#M511017 <HTML><HEAD></HEAD><BODY><P>CSCva84435 is currently not reproducible. If you are able to, please contact the engineering team directly.</P></BODY></HTML> Wed, 11 Apr 2018 04:02:07 GMT https://community.cisco.com/t5/network-access-control/guestusers-configured-to-bypass-guest-portal-fail-with-msg/m-p/3539007#M511017 hslai 2018-04-11T04:02:07Z