Solved: Providing temporary internet access for ISE Guests to retrieve their credentials

jpujol · ‎06-01-2018

Hi,

I found this post from Jason written two and half years ago : https://supportforums.cisco.com/t5/security-blogs/providing-temporary-internet-access-for-ise-guests-to-retrieve/ba-p/3099377

Are we still in the concept phase or have we made some improvement in the way ISE could provide temporary access to credentials sent by mail ?

I see the "Allow guest to bypass the Guest portal" option in the guest type, however it's a permanent capability, so we cannot prevent an almost complete Internet access even after a couple of hours.

I envision an DIY automation process by switching the user once first authenticated to a second guest type (longer account duration) and by renewing the password, but as usual, that requires an external server to run a script, and it's not convenient for the customer.

Any possible option based on the current 2.4 version ?

Thanks in advance,

Jean-Francois

Jason Kunst · ‎06-01-2018

Allow guest to bypass portal is only used so you can login via dot1x or vpn without having to login portal to activate account

There is nothing built into product please reach out to Ameet Kulkarni for feature request

There are some options listed under this page as well for ideas

https://communities.cisco.com/docs/DOC-64018

View solution in original post

Jason Kunst · ‎06-01-2018

Allow guest to bypass portal is only used so you can login via dot1x or vpn without having to login portal to activate account

There is nothing built into product please reach out to Ameet Kulkarni for feature request

There are some options listed under this page as well for ideas

https://communities.cisco.com/docs/DOC-64018