Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
750
Views
0
Helpful
2
Replies

New ISE Guest Connect Setup

s.kanth
Level 1
Level 1

‎03-06-2018 12:53 PM - edited ‎02-21-2020 10:47 AM

Hi Guys,

 

I'd like to setup a ISE (Cisco UCS C220 M4) for Guest Web Authentication.

 

It is a physical box.

 

An IP address is assigned to GiETH0 port with 10.20.20.20.

 

Guest users connect to SSID and get IPs from ISE in 192.168.1.0/24

 

Do I need to create an another interface with different VLAN on ISE box. 

 

Please help.

 

 

 

 

Labels:
0 Helpful
2 Replies 2

Octavian Szolga
Level 4
Level 4

‎03-07-2018 03:46 AM

Hi,

 

That's up to you. If you want to, you can create a dedicated guest interface for this service, or you can use the same management/radius traffic interface.

If you use a special interface for guest services you need to add a static route for the guest LAN + some alias so that the redirect would work properly.

 

Either way you have to allow your guest machines to connect to ISE's guest portal.

Check ISE ports reference:

https://www.cisco.com/c/en/us/td/docs/security/ise/2-3/install_guide/b_ise_InstallationGuide23/b_ise_InstallationGuide23_chapter_0110.html

 

Regards,

Octavian

0 Helpful

s.kanth
Level 1
Level 1

‎03-13-2018 06:02 PM - edited ‎03-13-2018 06:03 PM

Web auth page is getting redirected,but it is getting looped even after successful login.

0 Helpful
Customers Also Viewed These Support Documents