Solved: Browser auto sign in and Cisco ISE

770801tvdhaar · ‎07-01-2019

We are planning on using a Central Web Authentication portal for guests to register their own accounts. The guests will receive their credentials via a text SMS.

Problem now arises when submitting the form the browser snaps up the credentials from ISE and asks the user if they would like to be auto signed in. This break the security model of having the credentials sent via SMS text.

Anybody knows if ISE can be told not to send credentials to browser?

Anybody notice this too?

Jason Kunst · ‎07-01-2019

You would have to go through the portal builder tool to make any changes.

View solution in original post

Jason Kunst · ‎07-01-2019

Yes this is configurable under the portal settings not to send them

770801tvdhaar · ‎07-01-2019

If it's this setting you refering to then as you can see it's unchecked "allow guests to login directly from the self registration success page". If I disable auto-sign in on the browser(Chrome) this behaviour goes away

Jason Kunst · ‎07-01-2019

You would have to go through the portal builder tool to make any changes.

770801tvdhaar · ‎07-01-2019

Aha thought as much! I will give this a try.
Get back tomorrow when on site again.

770801tvdhaar · ‎07-02-2019

Just to confirm this works if I change the portal settings in ISE Portal Builder.

I wish Cisco could reflect the changes done via ISEPB directly into the ISE portal setting within the ISE GUI, this would make life alot better for us operators.

Thanks Jason

Jason Kunst · ‎07-02-2019

It’s an overlay solution and free to offer this type of customization. Please provide http://cs.co/ise-feedback to our product managers to improve