Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
286
Views
0
Helpful
1
Replies

guest solution with local switching

atifali.zaidi1
Level 1
Level 1

‎05-05-2021 12:40 AM - edited ‎07-05-2021 01:16 PM

hello experts,

 

i will have to deploy ISE solution in my setup for guest , but the need is to have the data switched locally.

the anchor controller which will be a 9800 along with ISE will be deployed in the DC.

so any remote site which has a local wlc cannot use a conventional method of foreign/anchor solution with central switching , because my customer wants to have the data traffic switched locally via the local internet breakout.

so in this case my local wlc can talk directly to ISE and can still have the data switched locally , i referred to this LINK https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/115732-central-web-auth-00.html 

the same thing goes with the remote which does not have a local controller but have only flex ap's , i think in that case the wlc on which they are registered can directly talk to ISE using the same method and then the ssid simply needs to mapped to the desired internet subnet .

 

please advise if i am making sense.

Labels:
0 Helpful
1 Reply 1

saravlak
Spotlight
Spotlight

‎05-05-2021 12:49 AM

Correct, Anchor WLC can't be used in this case since data needs to be locally switched at individual sites through Flex APs.
Also, yes, with flex APs the WLC and ISE location doesn't matter as long as they're reachable.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card