Comprar o Renovar
Comprar o Renovar
cancelar
Activar sugerencias
La sugerencia automática le ayuda a obtener, de forma rápida, resultados precisos de su búsqueda al sugerirle posibles coincidencias mientras escribe.
Mostrando los resultados de 
Buscar en lugar de 
Quiere decir: 
cancel
Iniciar una conversación
554
Visitas
0
ÚTIL
1
Respuestas

ISE Captive portal doesnt load

Patxi
Level 1
Level 1

el ‎04-25-2023 03:22 AM

The scenario is WLC 9800 + ISE v2-0-0-306 with patch 2,8.

When some device tries to connect to the guest SSID, I see the request is falling in the right rule at ISEs policies. And the result is:

 

Attributes Details

Service Template

false

Access Type

ACCESS_ACCEPT

Centralized Web Authentication

ACL=ACL-REDIRECT (https://192.168.1.50:port/portal/gateway?sessionId=SessionIdValue&portal=36393970-c9bd-11e5-b568-58ac785caa4f&action=cwa)

But the web doenst load and the device gets full access. 

¿Any idea why the web portal doesnt load?

Etiquetas:
0 Útil
1 RESPUESTA 1

Tariq Mahmoud
Level 1
Level 1

el ‎04-25-2023 03:46 AM

The device not reaching the web portal could be due to multiple reasons:
1. Wrong DNS configuration. 
2. Wrong redirect ACL/URL settings on ISE and the wireless controller. 
3. Wrong authentication result from ISE. 

Check this guide for more details:
https://www.cisco.com/c/en/us/support/docs/wireless/catalyst-9800-series-wireless-controllers/213920-central-web-authentication-cwa-on-cata.html


If the device is getting full access, then it could be matching a different rule on ISE. 
I suggest having a look at both ISE detailed live logs and client captures.

0 Útil

Navegue y encuentre contenido personalizado de la comunidad

Discusiones Wireless Discusiones Mobile Más de Wireless & Mobile
Customers Also Viewed These Support Documents