Hi
I'm trying to set up Google SAML for alternative source for wired 802.1x authorization ( via CWA). Everything works fine on test portal and allows me to sign-in. But when I try to sign-in from work device, Google portal doesn't appear - I can see only "Validate access rights" label.
I've used this guide https://community.cisco.com/t5/security-documents/google-suite-guest-sso-single-sign-on-with-ise-via-saml-for/ta-p/3643930 to set Google SAML app - but it's for WLC ( I use Cisco Catalyst switch instead).
There is important moment in guide - during ACL_WEBAUTH_REDIRECT setting, author has chosen 'Add-Remove URL' button and added a few google URLs:
I assume that's the key, but how can I make this in Catalyst?
Here is my current redirection rule:
Extended IP access list ACL_WEBAUTH_REDIRECT
10 deny udp any any eq domain
20 deny ip any host &ISE_IP&
30 permit tcp any any eq www (10083 matches)
Thanks in advance for your advice!