Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
23431
Views
25
Helpful
21
Replies

Cisco ISE web redirect not working

Go to solution
Jason Weids
Level 1
Level 1

‎03-01-2019 02:41 AM

Can anyone help with this. I have an open SSID doing MAC filtering to ISE with the following auth rules;

 

Capture.PNG

 

 

My devices is hitting correct rule for the unknown MAC but it is not redirecting me to the guest portal & is allowing me access in the associated VLAN assigned to the WebAuth policy.

Capture1.PNGCapture2.PNG

 

3 people had this problem
0 Helpful
21 Replies 21

Go to solution
Jason Weids
Level 1
Level 1
In response to Rob Ingram

‎03-05-2019 12:24 AM - edited ‎03-05-2019 01:02 AM

How is this meant to work for guests then?

 

I have now imported the certificate to the machine & it is now trusted & all browsers working. I'm confused how this is going to work for guests on their own devices though.

0 Helpful

Go to solution
Rob Ingram
VIP
VIP
In response to Jason Weids

‎03-05-2019 01:55 AM

That QuoVadis CA certificate is possibly not, as default installed onto a computer compared to Comodo, Entrust, Verisign etc which are. Possibly use one of these other CAs which should ensure trust for most devices (hopefully).

HTH
0 Helpful

Go to solution
Jason Weids
Level 1
Level 1
In response to Rob Ingram

‎03-05-2019 02:57 AM

So do I need to use one of the trusted certificates in ISE for the guest portal, like the verisign class 3 public certification authority?

 

How do I apply this to the guest portal?

0 Helpful

Go to solution
Jason Weids
Level 1
Level 1
In response to Jason Weids

‎03-07-2019 12:18 AM

After applying the cert to the admin role & restarting ISE all portals on all browsers are now accepting the certificate. Seems strange that they didn't when we applied it to the portal role because that doesn't require a restart.

0 Helpful

Go to solution
dcnguyen
Level 1
Level 1
In response to Jason Weids

‎02-05-2020 11:33 AM

Don't think it has anything to do with the admin role.  The reboot was actually what fixed it for us.  We applied our cert only to the portal role and ISE did not require a reboot, it does require reboot if you are applying it to admin role.  For us we were just applying the cert to the portal.  You have to reboot for it to work.  White screen went away and client was able to web_auth after the reboot. 

0 Helpful

Go to solution
bern81
Level 1
Level 1
In response to Jason Weids

‎03-06-2019 12:41 AM

you can use self-signing portal with sponsor approval.
like this when the guest get the redirect page, he has to create a user and who he is visiting.
the request goes to a sponsor account email that approve the guest and define the duration for the connection.
the guest received an email with his passwd and can access internet.


0 Helpful

Go to solution
Jason Weids
Level 1
Level 1
In response to bern81

‎03-07-2019 12:19 AM

Unfortunately that doesn't fit our use case.

0 Helpful
Customers Also Viewed These Support Documents