04-09-2013 03:36 PM - edited 03-10-2019 08:17 PM
Has anyone managed to guest LWA working with ISE for wireless guest portal access? Examples seem to skip bits and I can't find anyone that has managed to get it working. I have Cisco 4400 WLCs running latest 7.0 code and ISE 1.1.2.
All guest portal examples seem to be CWA which only works on 7.2 code.
Am I without hope getting this working on 7.0 code?
04-09-2013 06:02 PM
We got LWA guest portal to work between ISE & 4400 7.0, before we migrated to CWA w/ a 5508.
Can't remember exactly which documents we used, but your best bet is the TrustSec 2.0 (not 2.1) guide:
http://www.cisco.com/en/US/docs/solutions/Enterprise/Security/TrustSec_2.0/trustsec_2.0_dig.pdf
and the WLC example:
http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a008076f974.shtml
Keep in mind if you use LWA, you'll need two SSL certs - one on WLC, and one on ISE.
With CWA, only one cert is needed on ISE.
04-11-2013 12:46 AM
Yes it should work with 7.0 code as in the compatibility link provided by cisco, WLC4400 with version 7.0.116.0 is recommended to be used with the ISE.
http://www.cisco.com/en/US/docs/security/ise/1.1.1/compatibility/ise_sdt.html
04-12-2013 03:53 PM
Thanks for replies. The links are a bit sketchy on details but I managed to pull enough together from various other resources to get it working.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide