This is an idea we had for a customer to allow them to create a single passcode type of login to the ISE guest portal. They are using this for vendors at an electronics store to connect TVs to the wireless network. They want a simple way for them to enter the guest credentials via a remote control. This would ideally be a single passcode. The vendor using the sponsor portal would create a credential that can be used for 1 device (or make it higher). Then the device would connect to wireless Open SSID, be redirected to the guest portal and enter the single passcode.
As ISE requires a username and password to be created we are going to set the password to a specific value by restricting what values ISE can use as the password and the username will be restricted to 6 numbers (making easy to enter but still unique). On the login page, the username will be renamed passcode to make it more understandable. In this example we will allow the sponsor to create 1 credential per device so they can easily be tracked to the vendor.
Steps for flow:
Vendor accesses Sponsor Portal and creates an account (no need to enter email address or first last name as the username is randomly generated to produce 6 number username
they can also enter some identifiable info if required, like LG TV1 (label on the physical device perhaps)
Vendor receives code (username), password is not used (can be hidden in notification)
Vendor goes to TV and launches wireless and opens browser to redirect to ISE
Device login via remote control with just 6 digit code
Hi All, My aaa authroization is failing for netconf ssh from dnac to 9300 switch 17.3.3 code.Following is AAA config on switch. aaa new-modelaaa group server radius Radius-ISE-Server server name RADIUS-PRIMARY server name RADIUS-SECOND...
Cisco Umbrella is one of the most interesting cisco security solutions. Basically, Umbrella is a cloud based solution and a big DNS Services It all starts with DNS and Precedes file execution and IP connection. Which means that Umbrella blocks malicious ...
Hello All We are trying to connect to customer network from AWS ec2 instance (windows server 2019). It tries to connect and then it disconnects with below errorVPN establishment capability for a remote user is disabled. A VPN connection will not be e...
I am stumped why is it I can ping from a host in Site A connected to FTD inside interface to a host in Site B ASA inside interface over S2S tunnel but I cannot ping from either side from the FTD or ASA. The FTD IP addresses for managemen...