cancel
Showing results for 
Search instead for 
Did you mean: 
cancel

Who Me Too'd this topic

Using ISE for guest access together with anchor controller WLC in DMZ

hammelfr
Level 1
Level 1

Hi there,

I setup a guest WLAN in our LAB environment. I have one internal WLC connection to an anchor controller in our DMZ. I'm using the WLC integrated web-auth portal which works fine.

To gain more flexibility regarding guest account provisioning and reporting my idea is to use Cisco Identity Services Engine (ISE) for web-authentication. So the anchor controller in the DMZ would redirect the guest clients to the ISE portal.

As the ISE is located on the internal network while the guest clients end up in the DMZ network this would mean that I have to open the web-auth portal port of ISE for all guest client IPs in order to be able to authenticate.

Does anyone know of a better solution for this ? Where to place the ISE for this scenario, etc ?

Thx

Frank

Who Me Too'd this topic