Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2297
Views
0
Helpful
6
Replies

Redirect use to static html page on ISE

Go to solution
varma10
Level 1
Level 1

‎11-04-2019 02:37 PM

I would like to write Authz profile to redirect user to a static html page designed and presented on ISE. I do not want any flows associated with it. 

 

I was able to download an .jpg to test it under custom portal files section. But unable to use that .jpg on any Authz profile.

 

How can I redirect users to a static html page with simple logo or text that is hosted on ISE? 

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee

‎11-05-2019 07:35 AM

Please check under http://cs.co/ise-guest for customization and examples of guest flows.

Example: Hotspot as a Message Portal with Support link - redirect user to a meaningful message portal when being redirected due to quarantine or blacklist (only 1 blacklist portal allowed)

otherwise you can upload your own HTML and images to custom portal files
https://www.cisco.com/c/en/us/td/docs/security/ise/2-4/admin_guide/b_ise_admin_guide_24/b_ise_admin_guide_24_new_chapter_010001.html#id_34829

Custom Portal Files
The custom portal files menu lets you upload your own files to the ISE server, which you can use to customize all user facing portals (except for the admin portal ) . The files you upload are stored on the PSN, and synchronized to all PSNs.

Supported file types are:

.png, .gif, .jpg, .jpeg, ico - For backgrounds, announcements, advertisements

.htm, .html, .js, .json, .css, .m4a, .m4v, .mp3, .mp4, .mpeg, .ogg, .wav - For advanced customization, for example, the portal builder

File sizes are limited to:

20 MB per file

200 MB total of all files

The path column in the list of files displays the URL to the file on this server, which you can use to reference it outside the mini-editor. If the file is an image, when you click the link, it opens a new window that displays the image.

Uploaded files can be referenced by all portal types, except the admin portal, in the mini-editors under portal page customization. To insert the file into a mini-editor, click the insert file button on the toolbar. Toggle to the HTML Source view, and you will see the inserted file surrounded by the appropriate HTML tags.

You can also view the displayable uploaded files in your browser from outside of ISE, for testing. The URL is https://ise_ip:8443/portal/customFiles/filename.

You could redirect to dynamic IP of the PSN using yourpage.html
https://www.cisco.com/c/en/us/td/docs/security/ise/2-4/admin_guide/b_ise_admin_guide_24/b_ise_admin_guide_24_new_chapter_010001.html#id_34829

View solution in original post

0 Helpful
6 Replies 6

Go to solution
Mohammed al Baqari
Level 11
Level 11

‎11-04-2019 07:49 PM

You have to use a flow to redirect the end users to a portal (either guest
or byod). Now the portal can be your custom html uploaded to ISE through
portal customization. But without specifying the flow portal in your
authorization profile, the page won't be loaded


0 Helpful

Go to solution
JohnNewman7082
Level 1
Level 1

‎11-05-2019 06:35 AM

You can make a custom authz result that pushes the redirect ACL and redirect URL avpairs to push to whatever page you want.

Access Type = ACCESS_ACCEPT
cisco-av-pair = url-redirect-acl=ACL_WEBAUTH_REDIRECT
cisco-av-pair = url-redirect=https://whateverpageyouwant.domain.com

 

The issue with this is that the endpoint will be permanently stuck in this redirect state. You can open access to other thins via the redirect, but it will take some tweaks to really get what you want.

 

You may also be interested in Cisco's portal builder:

https://isepb.cisco.com/#/

0 Helpful

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee

‎11-05-2019 07:35 AM

Please check under http://cs.co/ise-guest for customization and examples of guest flows.

Example: Hotspot as a Message Portal with Support link - redirect user to a meaningful message portal when being redirected due to quarantine or blacklist (only 1 blacklist portal allowed)

otherwise you can upload your own HTML and images to custom portal files
https://www.cisco.com/c/en/us/td/docs/security/ise/2-4/admin_guide/b_ise_admin_guide_24/b_ise_admin_guide_24_new_chapter_010001.html#id_34829

Custom Portal Files
The custom portal files menu lets you upload your own files to the ISE server, which you can use to customize all user facing portals (except for the admin portal ) . The files you upload are stored on the PSN, and synchronized to all PSNs.

Supported file types are:

.png, .gif, .jpg, .jpeg, ico - For backgrounds, announcements, advertisements

.htm, .html, .js, .json, .css, .m4a, .m4v, .mp3, .mp4, .mpeg, .ogg, .wav - For advanced customization, for example, the portal builder

File sizes are limited to:

20 MB per file

200 MB total of all files

The path column in the list of files displays the URL to the file on this server, which you can use to reference it outside the mini-editor. If the file is an image, when you click the link, it opens a new window that displays the image.

Uploaded files can be referenced by all portal types, except the admin portal, in the mini-editors under portal page customization. To insert the file into a mini-editor, click the insert file button on the toolbar. Toggle to the HTML Source view, and you will see the inserted file surrounded by the appropriate HTML tags.

You can also view the displayable uploaded files in your browser from outside of ISE, for testing. The URL is https://ise_ip:8443/portal/customFiles/filename.

You could redirect to dynamic IP of the PSN using yourpage.html
https://www.cisco.com/c/en/us/td/docs/security/ise/2-4/admin_guide/b_ise_admin_guide_24/b_ise_admin_guide_24_new_chapter_010001.html#id_34829
0 Helpful

Go to solution
varma10
Level 1
Level 1
In response to Jason Kunst

‎11-05-2019 01:54 PM

Thank you so much for your help. This is exactly what I wanted. 

 

Below is the link that I am referring to and meets my requirement. 

https://community.cisco.com/t5/identity-services-engine-ise/support-information-button-in-place-of-link/m-p/3492125#212221

 

But my issue is still not resolved, I have used below script as mentioned in above link to hide AUP text, Accept and Decline buttons on a hotspot AUP portal. But this script does not seem to be working. Is there an updated version of the code that should be used on ISE 2.4?

<script>

(function(){

    jQuery('.cisco-ise-aup-text').hide();

    jQuery('.cisco-ise-aup-controls').hide();

setTimeout(function(){ jQuery('#portal-session-timeout-popup-screen, #portal-session-timeout-popup-popup, #portal-session-timeout-popup').remove(); }, 100);

})();

0 Helpful

Go to solution
varma10
Level 1
Level 1
In response to varma10

‎11-05-2019 02:00 PM

Please ignore my previous post. The solution is working, It just took some time to do rendering. 

0 Helpful

Go to solution
Jason Kunst
Cisco Employee
Cisco Employee
In response to varma10

‎11-06-2019 08:16 AM

You could also just create a static HTML page, upload it to custom portal files and then point to that instead.
0 Helpful
Customers Also Viewed These Support Documents