12-07-2022 07:19 AM
Hello,
I have ISE 3.1 with patch4 installed. I implement Guest Portal access for guests who visiting our company. Guest Portal is manage by Sponsors - They must create password and give it to Guest, then Guest has access to network (only Internet). Everythink working good but after 10 minute Guest report me that connection is termination. This situation happen always, after 10 min guest is logout out from guest network... I don't see any configuration with set time to 10min...
Any idea ? Where is problem ?
Solved! Go to Solution.
12-12-2022 02:50 AM
Ok, I have a solution. I disable this option on WLC:
Uncheck "Enable Session Timeout" - then all works good.
12-07-2022 09:08 AM
chcek on ISE Logs what is the reason of termination connection, where that is coming from user ? Wireless ?
12-07-2022 09:13 AM - edited 12-07-2022 09:14 AM
Agree with Balaji, considering time of 10 minutes, by default DCA runs every 10 minutes if not set properly, so you might want to check that also, I had similar issue with a customer once where users will disconnect every 10 minutes.
is this happening with just guest or all SSIDs ? is it happening with all guest or some guests only ?
12-07-2022 10:33 AM
Yes, this happening with just guest user - only on this SSID and it happen with all guest - how you set DCA to work properly ?
Cisco ISE Live logs not showing any problem, I only see REDIRECTION to CWA portal and Permit Access. That's all.
12-07-2022 11:22 AM
I am sure ISE get logs what is the reason of termination connection.
not sure what WLC controller below config give example : DCA :
https://mrncciew.com/2013/03/16/configuring-dca/
also check session timeout in WLAN Advanced config, anything changed :
Other options create a test environment and run debug see the reason of disconnection.
12-10-2022 12:34 PM - edited 12-10-2022 12:34 PM
@mikiNet Once a guest device completes authentication and authorized to access Internet, ISE is not really involved unless any CoA or accounting events. I would suggest debugging on the WLC with some command like (if Cisco 9800-WLC)
debug wireless mac <>
Or, similar.
12-12-2022 02:50 AM
Ok, I have a solution. I disable this option on WLC:
Uncheck "Enable Session Timeout" - then all works good.
12-12-2022 09:15 AM
Glad you able to fix the issue, that was my suggestion before.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide