Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1856
Views
0
Helpful
1
Replies

Preventing endpoints who join guest network to get access to corporate network

Go to solution
berossig
Cisco Employee
Cisco Employee

‎06-07-2016 06:00 AM

Hi,

I have a customer who wants to prevent any corporate devices who may have access the guest network from coming back to the corporate network. I.E automatically put the MAC address in a group and use it as a condition to completely restrict them access to the corporate network as soon as they have been connected to the Guest network. Pretty similar to blacklisting actually.

So my question is can it be easily done? And if you can give some hints on how we can achieve it, it would be a great help!

thanks in advance.

Regards,

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee

‎06-07-2016 06:44 AM

why couldn't you say if guest endpoints in front of all your rules for corporate? then deny and send to a portal that says why? See on public ISE community under guest how to do this hotspot as a message portal

another option is to say if corporate MAC address then deny access to guest network

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee

‎06-07-2016 06:44 AM

why couldn't you say if guest endpoints in front of all your rules for corporate? then deny and send to a portal that says why? See on public ISE community under guest how to do this hotspot as a message portal

another option is to say if corporate MAC address then deny access to guest network

0 Helpful
Customers Also Viewed These Support Documents