07-25-2017 12:56 AM
Hi all
Related to ISE Guest (WLAN) , Scenario is a customer who has multiple branches and plans to offer guest services at the branch with local break out (WLAN FlexConnect) , ISE is Central in DC
Two questions
1) When a client connects to the "guest" SSID he gets DHCP and DNS , so he can access the ISE guest portal (DNS resolution) , however once he is Guest Authed .. the client doesnt want the guest to use the Corp DNS .. what options do we have here ?
2) Proposal is it use Guest Self Registration .. i know we can limit the duration (say 30 min) of the session BUT can we limit (via MAC address) the amount of guest sessions per say 24 hour cycle per Device ???, so Mr guest can only have 30 min of guest access over a 24 hour cycle for his mobile device.??
Thx
Greg
Solved! Go to Solution.
07-25-2017 05:32 AM
For #1 you can use Internet DNS servers if you want and you have a few options here:
07-25-2017 05:18 AM
Question 1 don't use Corp dns, look into a dns server in dmz
Question 2 not natively but yes please check under guest and web auth section of the community http://cs.co/ise-community there is a solution, please get customer requirements to the ise product management team so we can build in
07-25-2017 05:32 AM
For #1 you can use Internet DNS servers if you want and you have a few options here:
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide