Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1408
Views
0
Helpful
3
Replies

ISE 2.0/2.0.1 - Self Registered multiple accounts with same email

Go to solution
joshhunter
Level 4
Level 4

‎05-11-2016 05:13 AM

Hello, I'm running ISE 2.0.1 with Self Registered Portal.

Guest users are able to create multiple accounts with same email address but ISE appends a 1 on the next creation and so on, i.e. email@email.com then email@email.com1  - this is causing confusion and login problems as you would expect.


I couldn't find any option to disable this.

I found the following bug below with is identical to my issue, however the version is 1.2.

Does anyone know if this the bug has made a re-occurrence in 2.0/2.0.1 ?

ISE should prevent accounts with same email when used as guest username

CSCuq22512

Symptom:
ISE should prevent creation of guest user in case the email address is already active for another guest user. This should be restricted only when email is to be used as username. ISE currently allows the create and appends a number at the end of the email being the username.

Conditions:
email address used as username for guest users

1 person had this problem
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee

‎05-11-2016 06:19 AM

Right this is how it currently works. There is no workaround for it unless you built some backend system to verify. If you are worried about someone creating multiple accounts then recommend enabling sponsor approval flow so someone can stop this.

What is the problem you're trying to solve besides this?  Perhaps there is another way you limit them by registering their device mac address and restricting the access on that device?

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee

‎05-11-2016 06:19 AM

Right this is how it currently works. There is no workaround for it unless you built some backend system to verify. If you are worried about someone creating multiple accounts then recommend enabling sponsor approval flow so someone can stop this.

What is the problem you're trying to solve besides this?  Perhaps there is another way you limit them by registering their device mac address and restricting the access on that device?

0 Helpful

Go to solution
joshhunter
Level 4
Level 4
In response to Jason Kunst

‎05-11-2016 06:32 AM

Hi Jason, Okay that is a shame but thanks for answering.

In response to your question, one possibility is an existing user on a new device.


They may try and register for a new account, they will enter their existing email and a new password will be created.

When they try to login it will fail - because although the enter the right password the username is actually "email@email.com1"  but they automatically presume the email is the email they inputted email@email.com.

They will keep trying their email@email.com unless they realize they need to input email@email.com1.

Thanks

0 Helpful

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee
In response to joshhunter

‎05-11-2016 06:36 AM

How about creating accounts that aren't similar? instead of using email address have them use account based off first, last name?

0 Helpful
Customers Also Viewed These Support Documents