Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1640
Views
0
Helpful
5
Replies

Guest Portal Authentication via External Radius Server?

Go to solution
achim2
Level 1
Level 1

‎11-28-2016 05:13 AM

Hi Team,

a customer wants to use ISE guest portal with user/password authentication via an external Radius server. I have defined an external Radius server and a Radius Server Sequence containing this server, but I cannot choose this sequence as authentication method in the Guest Portal settings. I also tried to add the external Radius server to the existing Guest Portal Sequence under the Identity Source Sequences, but I can neither choose the external Server nor the Radius Server Sequence in this place.

Is there any possibility to get the guest accounts from remote via Radius?

Thanks for any idea!

Achim

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee
In response to achim2

‎11-28-2016 10:51 AM

You would setup the external RADIUS server as a RADIUS Token server and then add it to the identity source sequence.

View solution in original post

0 Helpful
5 Replies 5

Go to solution
gbekmezi-DD
Level 5
Level 5

‎11-28-2016 09:50 AM

My understanding is that if the authentication server is external, ISE doesn’t treat that session as a guest. However, if you have accounts external to ISE, what specific guest functionality are you looking for ISE to provide? Can you provide the differentiated access based on other attributes?

George

0 Helpful

Go to solution
achim2
Level 1
Level 1
In response to gbekmezi-DD

‎11-28-2016 09:55 AM

Hi George,

thanks for your answer. I'm looking for the same functionality like sponsored guests normally have. They know their credentials, access the guest wifi, enter the credentials on the guest portal and get access. The difference is, that the accounts are not internal users in the ISE but in an external Radius server. And I couldn't find any way how to authenticate external Radius users on an ISE guest portal. I appreciate any suggestions!

0 Helpful

Go to solution
gbekmezi-DD
Level 5
Level 5
In response to achim2

‎11-28-2016 10:08 AM

How are you planning on your sponsors creating guest accounts?

0 Helpful

Go to solution
achim2
Level 1
Level 1
In response to gbekmezi-DD

‎11-28-2016 10:20 AM

This users are not being created by a sponsor. They are users in the database of a public library and we can access their server via Radius.

0 Helpful

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee
In response to achim2

‎11-28-2016 10:51 AM

You would setup the external RADIUS server as a RADIUS Token server and then add it to the identity source sequence.

0 Helpful
Customers Also Viewed These Support Documents