Dear Good People,We have created wlan in cisco wlc 9800. WLC is integrated with ISE. Now we need to create some user groups as per wifi users like Group1 can access 3 devices (Mobile, Laptop, Gadget), Group2 can access 2 devices (Mobile, Laptop) etc....
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
Forum Posts
ISE 3.2 patch 3Cat4710 switchHello,this is a new TrustSec deployment. All other ISE/802.1x features are working correctly. at some point the SGACL was successfully pushed to the switch. For whatever reason the new SGACL is not being pushed with ...
Hi all;According to ISE 3.2 Admin Guide:I cannot find this condition. Can anyone help my to find this condition?Thanks
Hi,We just spent some time to build a link from a hotspot portal to a guestportal. Just thought I would share the code we inserted in the opt content 2 on the hotspot page. The trick is to take the sessionId from the current url on the hotspot page a...
Dear experts,Problem on Switch and Freeradius running on MacBook.Cisco IOS Software, C3750 Software (C3750-IPBASEK9-M), Version 12.2(55)SE5, RELEASE SOFTWARE (fc1)Have problems to assign Radius VLAN 100 to Gig1/0/23Debugging Radius Auth:Nov 9 11:34:...
Hi.I see this error in the ISE logs from time to time, and would like to get rid of it.But I can't seem to find any information on HOW to get rid of it.The ISE log is somewhat vague in it's solution suggestion.Here goes the whole thing:Event: 5411 Su...
Resolved! Captive portal with cisco ISE
Hello guys, with the help of some guidance i tried to configure captive portal access via ISE. i followed this guide: https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/216330-ise-self-registered-guest-portal-configu.html#an...
We are using external CA signed certificate in ISE for admin, EAP, & portal (posture). We are planning to install renewed certificate in ISE as existing certificate is expiring soon.We have renewed the new certificate with the same Common Name and si...
Resolved! ISE GUI Not working
I installed fresh ISE vm OVA image version 3.1 and 3.2 and did the initial configuration. ISE service is running, but the port 443 is missing from all server. I did "show ports | include :443" and nothing. How I can enable the https ? Please can you ...
Resolved! Make a smartport stay closed
Hello.We are trying to make our network fully 802.1x compliant, and one of the only subjects we need is our IoT Trunk ports.I have followed this guide to create our Flex AP trunks to work on 802.1x ports, it works flawlessly.https://www.wiresandwi.fi...
Resolved! SAML Sign-on for Cisco Software Portal?
Does anyone know of a way to integrate the Cisco Software Portal sign-in with Microsoft Azure AD such that we can use our Azure AD Creds to authenicate to cisco.com?
Resolved! ACL and Firewall Rules
In terms of security, what is the best way to help harden a network regarding Firewall Policies and ACLs on switches?For example, lets say I create a rule on the firewall to block 192.168.1.0/24 from talking to 192.168.2.0/24. Should I also create an...
Hello all,Not sure if this is the right forum or if I should post to the Switching forum, but I'll start here. : )We're starting to implement NAC in Monitor Mode on several of our switches, and we have a fairly mature ISE instance. We have someone el...
We are in the process of moving from ISE 2.7 to ISE 3.2 and I am having real difficulty with the new user interface, specifically when selecting authorization policy results.The ISE 2.7 UI is perfectly clear and usable but the ISE 3.2 one is extremel...
Resolved! Disable guest and sponsor portal on ISE
Hi, Is there a way to disable default guest and sponsor portal ? I am running nmap scan on ISE and port 8443 and 9002 corresponding to guest and sponsor portal are open. I don't have guest use case so I am looking to close them but don't see an opt...
