https://community.cisco.com/t5/network-security/nac-http-redirect/m-p/408334#M795156 <P>Hi, </P><P>I have a problem with http redirect function, it doesn't work neither from ACS config nor staticly through identity policy.</P><P>Does anyone have a idea what can be wrong ?</P><P></P><P>Address : 172.16.88.28</P><P>Interface : Async80</P><P>AuthType : EAP</P><P>PostureToken : Quarantine</P><P>Age(min) : 0</P><P>URL Redirect : <A class="jive-link-custom" href="http://192.168.134.10/nac" target="_blank">http://192.168.134.10/nac</A></P><P>ACL Name : #ACSACL#-IP-Quarantine-42763b00</P><P>Revalidation Period : 1800 Seconds</P><P>Status Query Period : 30 Seconds</P><P>Current State : AUTHENTICATED</P><P></P><P></P><P></P> Fri, 21 Feb 2020 08:07:21 GMT immerm 2020-02-21T08:07:21Z https://community.cisco.com/t5/network-security/nac-http-redirect/m-p/408334#M795156 <P>Hi, </P><P>I have a problem with http redirect function, it doesn't work neither from ACS config nor staticly through identity policy.</P><P>Does anyone have a idea what can be wrong ?</P><P></P><P>Address : 172.16.88.28</P><P>Interface : Async80</P><P>AuthType : EAP</P><P>PostureToken : Quarantine</P><P>Age(min) : 0</P><P>URL Redirect : <A class="jive-link-custom" href="http://192.168.134.10/nac" target="_blank">http://192.168.134.10/nac</A></P><P>ACL Name : #ACSACL#-IP-Quarantine-42763b00</P><P>Revalidation Period : 1800 Seconds</P><P>Status Query Period : 30 Seconds</P><P>Current State : AUTHENTICATED</P><P></P><P></P><P></P> Fri, 21 Feb 2020 08:07:21 GMT https://community.cisco.com/t5/network-security/nac-http-redirect/m-p/408334#M795156 immerm 2020-02-21T08:07:21Z https://community.cisco.com/t5/network-security/nac-http-redirect/m-p/408335#M795171 <HTML><HEAD></HEAD><BODY><P></P><P>When I first tested URL redirects, mine did not work either. </P><P></P><P>The ACL that applies to the user (in this case, a DACL Quarantine ACL from ACS) needs to block the user's access to the intended web page for the URL redirect process to be invoked. If the user is permitted access to the URL they are attempting to go to by the ACLs that apply to them, the user will not experience the redirect.</P><P></P><P>The 2nd thing to check would be whether the same ACL permits access to the 192.168.134.10 server so that once the URL redirect process kicks off, the user will not be denied access to the URL that you attempting to redirect to.</P><P></P><P>Please confirm these 2 items and then we can continue from there.</P><P></P><P>thanks</P><P>peter</P></BODY></HTML> Tue, 03 May 2005 12:35:37 GMT https://community.cisco.com/t5/network-security/nac-http-redirect/m-p/408335#M795171 pcomeaux 2005-05-03T12:35:37Z https://community.cisco.com/t5/network-security/nac-http-redirect/m-p/408336#M795183 <HTML><HEAD></HEAD><BODY><P>Hi Peter,</P><P>used ACL is permit ip any any now, I can go to the intended page as well as to the internet.</P><P></P><P>Michael</P></BODY></HTML> Tue, 03 May 2005 12:51:28 GMT https://community.cisco.com/t5/network-security/nac-http-redirect/m-p/408336#M795183 immerm 2005-05-03T12:51:28Z https://community.cisco.com/t5/network-security/nac-http-redirect/m-p/408337#M795203 <HTML><HEAD></HEAD><BODY><P>Hi Michael -</P><P></P><P>Ok - if you can go to the internet and the intended page and have NAC enabled, you are right - your URL redirects are not working.</P><P></P><P>You need to change the Quarantine ACL that is downloaded from the ACS server to deny the access for the URL redirects to work.</P><P></P><P>Does this help?</P><P></P><P>thanks</P><P>peter</P></BODY></HTML> Tue, 03 May 2005 20:22:14 GMT https://community.cisco.com/t5/network-security/nac-http-redirect/m-p/408337#M795203 pcomeaux 2005-05-03T20:22:14Z https://community.cisco.com/t5/network-security/nac-http-redirect/m-p/408338#M795214 <HTML><HEAD></HEAD><BODY><P>Hi Peter,</P><P>- Yes, it realy does.</P><P></P><P>Great thanks,</P><P>Michael </P></BODY></HTML> Fri, 06 May 2005 15:28:37 GMT https://community.cisco.com/t5/network-security/nac-http-redirect/m-p/408338#M795214 immerm 2005-05-06T15:28:37Z