Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1879
Views
0
Helpful
2
Replies

WLC Authentication using pre-shared key with ISE

erajca
Cisco Employee
Cisco Employee

‎02-21-2019 06:01 AM - edited ‎03-08-2019 07:13 PM

We are trying to set up ISE to manage medical devices where the devices are authenticated with the WLC using a pre-shared key.

 

My question is whether we are able to create an authorization profile and drop this device into a specific vlan even though the authentication takes place on the WLC.

 

Is this possible ?

 

Thanks,

Ed

 

0 Helpful
2 Replies 2

paul
Level 10
Level 10

‎02-21-2019 08:26 AM

Yes, if you enabled MAC Filtering under the WLAN and point at ISE you will be doing Wireless MAB authentication in addition to the PSK being done by the WLC.  Once you have control of the session in ISE you can use profiling/whitelisting to assign different devices to different VLANs.

0 Helpful

Jason Kunst
Cisco Employee
Cisco Employee

‎02-21-2019 08:41 AM

Mab authenication authorizations with ise support pre shared key

You can look at http://cs.co/ise-guest and the prescriptive guide there. It talks about vlan changes with CWA logins

If you’re doing iPsk with no CWA I would think you could assign vlans check http://cs.co/ise-byod look for psk there
0 Helpful
Customers Also Viewed These Support Documents