Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
453
Views
0
Helpful
1
Replies

ISE 1.2 - MAB Guest and MAB Supplicant Provisioning

Stephen McBride
Level 1
Level 1

‎10-11-2013 03:09 PM - edited ‎03-10-2019 08:59 PM

In short trying to provide a configuration whereby a Guest utilises MAB and a set of sponsor created credentials to gain access to Internet via the portal. In addition to this I am also trying to provide MAB for "Corporate BYOD" utilising AD credentials resulting in supplicant provisioning. I am aware of other ways of doing this in terms of utilising PEAP and a NSP redirect but in this instancemy only real option is MAB. Could anyone provide me with an example of how they have approached this situation.

I tried to to do CWA redirect for both use cases but provided a separate "2nd auth" for each of them. My BYOD 2nd auth was the actual NSP redirect - which worked except the MAC address could not be populated into the field (See flow below for BYOD redirect).

MAB > CWA Redirect (AD credentials) > "2nd Auth"  = NSP Redirect

Labels:
0 Helpful
1 Reply 1

Stephen McBride
Level 1
Level 1

‎10-11-2013 08:07 PM

Please disregard I have it fixed. Long story short I was over engineering it. I was unaware that ISE was able to differentiate between Guest users and other users with regards to the "Enable Self Provisioning flow".

Thanks

0 Helpful
Customers Also Viewed These Support Documents