This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
I have a need to return custom error messages to a user when they fail to pass through a CWA portal.
For instance, a user signs in and passes authentication, but doesn't have the proper AD group membership. Want error message to state "you're missing XXXX access".
Solved! Go to Solution.
I'm not sure how ISE will be able to detect the group membership of the user, since this is purely a MAB+CWA authentication. I'm going to play around in the lab today with it, but are you suggesting they'll hit a "default" portal, which will then dump the user into the guest_flow, re-parse the authz list, then redirect them to a second portal based on their group membership?