01-14-2015 11:18 AM - edited 07-05-2021 02:16 AM
Hello All,
I have ISE, WLC and Cisco APs.
I have a wlan which provides access to corporate laptops(EAP-TLS).Now a requirement is there is to provide access to corporate mobile devices(windows, androids, Apple).
Question:
What kind of sloution i can implement so that if Corporate mobile device connects to wlan then ISE pass them in direction to INternet and all other external mobile must not get access.
Thanks
01-14-2015 01:29 PM
Hello ,
You can refer this design for white-listing /on-boarding corporate devices, you can ignore the Security Tags , from the authorization rules, just use access-accept/ deny access
http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Borderless_Networks/Unified_Access/BYOD_Design_Guide/BYOD_Limited_Use_Case.pdf
01-14-2015 02:17 PM
It's called 802.1x.
Due to the complexity of the design, I'd recommend you get a reputable systems integrator on board.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide