Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
225
Views
0
Helpful
1
Replies

ISE 3.1 - Block Guest Re-authentication Post Guest Account Expiration!

jaleel-qadri
Level 1
Level 1

‎01-20-2025 08:48 AM

Hi Experts,

I have a requirement where the ISE is being used for the Self-sign Guest access. We have a created the necessary policies and profiles for the self-sign guest access. The guest re-direction and authentication works as expected but the problem arises when the same guest is asked to re-authenticate after the account expiration time (X Hours). The client is again re-directed to a self-sign portal and once the required information is submitted, the client is again authenticated and successfully allowed to the network.

We don't want our guest to connect to the network once their guest account is expired. If this is possible with ISE, please help me with the configuration steps.

Thanks.

0 Helpful
1 Reply 1

ilay
VIP
VIP

‎01-21-2025 12:11 AM

It seems unlikely to achieve this requirement under the Self-sign portal. This is a self-registration process. As long as the corresponding information is provided, you can connect to the guest network. Even if the previous credentials are invalid, you can obtain a new valid credential through the portal again.

To eliminate this problem, you can only turn off the self-registration function, use the Sponsored Guest Portal instead, and provide network access credentials to guests through other means (such as API)

0 Helpful
Customers Also Viewed These Support Documents