The following document will enable you to add a Mobility Express Controller to your ISE instance in dCloud.
You will need a dCloud ERK (Endpoint Router Kit) to be able to use the Mobility Express controller with the dCloud Mobility Deep Dive demo.
This validation was done with the following models:
The Secure Access Wizard does not provision the ME-Controller but could be used if you run the Secure Access Wizard Demo and then add the ME Controller to ISE with same WLANs. This hasn't been validated and we will not go through that in this document.
Duplicate the HOTSPOT_REDIRECT Profile and name it HOTSPOT_REDIRECT_ME
under the Common Tasks > Web Redirection change the ACL to the same one found when you created your WLAN
Also make sure your Value has a portal selected
Hotspot Guest Portal (default)
Submit the profile
Navigate to Policy > Policy Sets > Guest Access > View the policy set
Expand the authorization policy
find the Hotspot Redirect and change the Results/Profiles to HOTSPOT_REDIRECT_ME
Save the policy
Save off your dCloud session. This can be used over and over again. If you move your mobility express controller behind another ERK then you will need to update your ISE Network Access Device with the new IP Address. This is because each dCloud router has their own private network
Is remediation possible if I am implementing auth VLAN for switches that do not support URL redirection?
Since, when auth VLAN is configured ISE acts as the DNS/DHCP server.
I have configured anti-virus definition to automatic remediati...
ISE version 126.96.36.1990
I am trying to build new dACLs for my VPN users and it doesn't seem to be working and I know its the dACL because when I revert back to the old dACL my VPN is successful. When I try to hit the VPN with the new dACL ...
Need to setup a NAT based on destination port
Source 188.8.131.52 routing to 184.108.40.206 on inteface vlan419int
if destination port is 12154 need 220.127.116.11 to NAT TO inside interface host 192.168.1.10
if destination ports ar...
I am running a test on a WSA and I am unable to make HTTPS proxy to work at the moment, I can see in wireshark from a packet capture on the wire that the WSA is actively closing the TCP session and I receive an error message that ...
ISE 2.3 patch 3
HP Comware switch: Version 7.1.070, Release 3208P03
I am seeing this very weird behavior with AnyConnect.
We are using an ACL for posture redirection, so here when I have these two statements: