This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
I understand that I can use the Endpoint:LastAUPAcceptanceHours authorization condition to create a rule redirecting Guest users to a portal to re-sign an AUP when the AUP period has expired. The Cisco ISE Administrator Guide, Release 2.1, gives the usable range of this AUP period as 8 to 999 hours. Is it possible to reduce this time in order to require Guest users to re-establish their session as often as every 30 minutes?
Solved! Go to Solution.
I have a customer who wants to limit hotspot guest access to 30 minutes per session, and when the session expires, have the guests re-authenticate through the hotspot AUP page.
Why not require AUP on every login then and set session timeout via authz profile to 30 minutes? Would that work?
Warning: I either dictated this to my device, or typed it with my thumbs. Erroneous words are a feature, not a typo.
Not sure how that would work as endpoint is still registered and authorization is based off endpoint group and not hitting a portal until removed from that page.. Don't see this working