Hi everyone,

I try to work with CWA on C9800. I installed a LAB scenario on my LAB.

ADA LAB Guest Management with ISE

Inverment;

Cisco C3850 PoE+ 24 Port 10G Uplink switch (Last version IOS)

Cisco C9800-CL Wireless Controller ver17.12.4

Cisco 1815iAP (Last Version IOS)

Cisco ISE v3.1

Active Directory Windows 2022 Standart Evaluation (Last Update)

Cisco ISE ESXi Host Configuration

Cisco C9800 ESXi Host Configuration

Lab Local Network Table;

We are configuring all Interfaces on Cisco ISE. We target is to seperate beetwen networks. Forthis reason; we have more security and just different links to Access for Guest or BYOD. Also we can use for Quarantina Operations.

For ISE Guest Portals Settings are;

Topology is like below; Radius and web server is actually same device; Cisco ISE.

All ports and links are very successfuly working in their VLANs. If we are using Preshared Key (PSK) to join relevant VLAN everythings fine. We can Access to all link.

But we try to 802.1x its not work! I guess this problem is network problem but I did not resolve. When The 802.1x Access be active; redirection is work but the relevant link is not come. I am waiting for a lot of minutes. After that I need to reset my labtop network settings.

When I creat a  Configuration->Security->Web Auth in C9800 Web GUI; The device automatically creat 2 dfferent gorup ACL’s.

And Second ACL Group

And unfortunatelly There are not doing update.

Does anyone have any suggestions?

Regards