Solved: Re: ISE feature clarity

ymadheka · ‎01-23-2018

Hi Team,

We are in a positioning of Cisco wireless along with ISE (for security features), need clarity if we can achieve the below:

Secured Guest Internet Access with option of throttling bandwidth, time restriction on access (duration), OTP based access, options of integrating with AD for authentication.
Identity of all assets connecting in wireless.
Accounting and identity mapping to assets and users (User connected in a branch for 8 hours doing transfer of Xmbps).

Can you help me in confirming if we can have the bandwidth throttling and above features achieved through BASE licenses only?

Thanks in advance for any help.

Thanks & Regards,

Yogesh Madhekar

Jason Kunst · ‎01-24-2018

Yogesh this seems similar to other posts you have posted

ISE doesn’t support tracking or throttling of bandwidth , it can return avp attributes in the authorization rules to the wireless controller which can provide some sort of bandwidth quality of services, think bronze silver gold levels

Please reach out to wireless and prime teams on what they can do

We can do secure guest access with wpa+CWA or wireless Dot1x using guest credentials

We have basic accounting packets but don’t total how long someone is connected, customer can tie in with splunk reporting for advanced information to perhaps gain more visibility

We can match users to devices with 802.1x and profiling

View solution in original post

Jason Kunst · ‎01-24-2018