End-points not able to get ISE redirected URLs

jogender-bansal · ‎04-28-2024

We have SNS Server 3615 with ISE 3.2 (Patch # 5) running, with User access switch C9200, we are trying get users systems posture assessment, however, after successfully authentication, end user is not getting ISE redicted URLs on end-points, URL is reaching till UA switch-ports but not switching to end-points (systems) as a result, endpoint doesn't get network as the assessment is not completed and it show pending on ISE logs, need suggestion on this.

Note: User L3-VLAN is created on Firewall and L2 extended till UA switch.

ahollifield · ‎04-29-2024

What do you mean by "UA switch-ports" and "end-points (systems)"?

https://www.ise-support.com/cisco-ise-nad-configuration-templates/

https://community.cisco.com/t5/security-knowledge-base/ise-posture-prescriptive-deployment-guide/ta-p/3680273

jogender-bansal · ‎05-05-2024

Hi

I agree with you, however, all looks fine except that after successful authentication, ISE server pushes a redirect URL to the User Access switch and it reaches to the switch-port where end user is connected to however the redirected-url is not switching from user switch to end-point system

could you please help me to review the config help to finding out the root cause of issue to address this?