Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
267
Views
0
Helpful
2
Replies

Exposing the BYOD Portal to users from home

Sean Engelbrecht
Level 1
Level 1

‎06-23-2015 01:31 PM - edited ‎03-10-2019 10:50 PM

An interesting scenario has been posed my way, I am hopeful that I can get some insight from the community. 

We are currently investigating the use of ISE 1.3 or 1.4 to deploy certificates to end-user devices utilizing the BYOD Portals and supplicant provisioning. Unfortunately the requirements shifted recently and we have been asked to provide certificate deployment off network and without the use of VPN. 

Is it possible to expose the supplicant provisioning portals outside of a cisco ISE environment ?

Is there a way to get the endpoints MAC address to the ISE portal from the outside world ?

Thanks

Labels:
0 Helpful
2 Replies 2

nspasov
Cisco Employee
Cisco Employee

‎06-24-2015 11:49 AM

I don't think this is possible. You need a supported NAD (Network Access Device) which in Radius acts as the "authenticator" for the on-boarding/provisioning process to work. 

This sounds like a good fit for an MDM solution. You can integrate the MDM with your PKI and AD architectures and provide a URL where users can go, authenticate and get provisioned with certificates. Then once they are on site they can properly authenticate through ISE.

 

Thank you for rating helpful posts!

0 Helpful

Venkatesh Attuluri
Cisco Employee
Cisco Employee

‎06-30-2015 03:08 AM

no its not possible to get supplicant provisioning portals outside of a cisco ISE environment

0 Helpful
Customers Also Viewed These Support Documents