Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
482
Views
0
Helpful
3
Replies

Question - User Identity Included in MyDevices Entered MAC Address in LiveLog

Go to solution
kkaminsk
Cisco Employee
Cisco Employee

‎02-14-2019 07:55 AM

Hi Folks,

 

Using ISE 2.4 I noticed that when a user enters a MAC Address in MyDevices and it gets assigned to the RegisteredDevices endpoint group, the user identity appears in the Livelog.byod-mydevices-mac.PNG

I was doing a customer POC with ISE 2.2 and could not get the identity of the owner to appear.  Is there a setting that controls this?  Or is it a later feature added post 2.2?

Thanks,

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Arne Bier
VIP
VIP

‎02-14-2019 02:51 PM

If I recall, this was done to allow the Remember Me feature to work nicely for the Guest flow. Typically, after a Guest logs into the portal then the MAB auth in LiveLog will show the guest@whatever. But ISE was broken in that when the NAS Session timed out, then the subsequent MAB auths would result in the username being the MAC address. Which is not very nice at all. It's a cosmetic fix that allows LiveLog to show that relationship between Identity and MAC address.

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Arne Bier
VIP
VIP

‎02-14-2019 02:51 PM

If I recall, this was done to allow the Remember Me feature to work nicely for the Guest flow. Typically, after a Guest logs into the portal then the MAB auth in LiveLog will show the guest@whatever. But ISE was broken in that when the NAS Session timed out, then the subsequent MAB auths would result in the username being the MAC address. Which is not very nice at all. It's a cosmetic fix that allows LiveLog to show that relationship between Identity and MAC address.
0 Helpful

Go to solution
hslai
Cisco Employee
Cisco Employee

‎02-16-2019 01:05 PM

Arne Bier is correct and he contributed 

ISE 2.3+ Remember Me guest using guest ... - Cisco Community

0 Helpful

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee
In response to hslai

‎02-16-2019 01:34 PM

Current recommend long term release is 2.4 with latest patch. Would recommend any new POC to work with that

https://community.cisco.com/t5/security-blogs/announcing-the-quot-suggested-release-quot-status-of-ise-2-4/ba-p/3775587

 

0 Helpful
Customers Also Viewed These Support Documents