cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

322
Views
0
Helpful
4
Replies
Highlighted
Cisco Employee

ISE Questions - Urgent

HI all,

 

Is it possible someone to help me out with the following questions in regards of ISE please ? 

 

Is it possible to achieve the following with ISE ? 

Publish single SSID for GovRoam

If internal user authenticated then dynamically assign user to a Corporate VLAN (Local

If External  user authenticated then route traffic via Guest Anchor controller

 

Thank you for your input in advance.

 

Regards

 

Ross

1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Cisco Employee

This is not possible due to WLC limitation. A given WLAN is either auto-anchored or not and it cannot be both non-anchored and auto-anchored based on user/endpoint currently. We can assign different VLANs based on user/endpoint type and guest VLAN can be mapped to a vrf that gets handled differently.

View solution in original post

4 REPLIES 4
Highlighted
Cisco Employee

This is not possible due to WLC limitation. A given WLAN is either auto-anchored or not and it cannot be both non-anchored and auto-anchored based on user/endpoint currently. We can assign different VLANs based on user/endpoint type and guest VLAN can be mapped to a vrf that gets handled differently.

View solution in original post

Highlighted

Many thanks for your great input.

 

Regards

 

Ross

Highlighted

I was thinking that we can route external users when authenticated to guest Anchor controller. However you mentioned that this is not possible. Is this the case or I am getting this one wrong ?
Highlighted

When you have a WLAN mapped from foreign to anchor (guest), all traffic will get anchored regardless of who connects to the WLAN. One can't choose some users to be anchored on foreign controller and others through the anchor controller on the same WLAN.

Content for Community-Ad