Got it

Can i intregrate Cisco ISE guest port with Huawei AC

Created: Sep 6, 2021 10:39:45Latest reply: Sep 14, 2021 22:52:51 516 6 0 0 0
  Rewarded HiCoins: 0 (problem resolved)

Hi All

Can i intregrate Cisco ISE guest port with Huawei AC ? if Yes How to do it ?

Cisco ISE 2.7 patch 3

Huawei AC6005-8

Featured Answers

Recommended answer

DDSN
Admin Created Sep 6, 2021 10:57:12

Hi WATTA,
AC6005-8 can interconnect with Cisco ISE. For details, see the following link:
https://support.huawei.com/enterprise/en/doc/EDOC1000113779/3a482e04?idPath=24030814|21782164|21782201|250525922|250526784
I hope it helps!
View more
  • x
  • convention:

WATTA
WATTA Created Sep 14, 2021 11:19:35 (0) (0)
I try configure follow the document. it's work when i connect with Mobile phone ( IPhone) but when i try to connect with Windows PC it's not work

Please help me
Example: WLC config


#
http timeout 15
http secure-server ssl-policy default_policy
#
radius-server authorization attribute-decode-sameastemplate
radius-server authorization calling-station-id decode-mac-format ascii hyphen-split common
#
portal https-redirect enable
#
authentication-profile name th-connect-02
port 
All Answers
DDSN
DDSN Admin Created Sep 6, 2021 10:40:13

Hi WATTA,
Please wait patiently. Our engineers are looking for answers to your questions.
View more
  • x
  • convention:

DDSN
DDSN Admin Created Sep 6, 2021 10:57:12

Hi WATTA,
AC6005-8 can interconnect with Cisco ISE. For details, see the following link:
https://support.huawei.com/enterprise/en/doc/EDOC1000113779/3a482e04?idPath=24030814|21782164|21782201|250525922|250526784
I hope it helps!
View more
  • x
  • convention:

WATTA
WATTA Created Sep 14, 2021 11:19:35 (0) (0)
I try configure follow the document. it's work when i connect with Mobile phone ( IPhone) but when i try to connect with Windows PC it's not work

Please help me
Example: WLC config


#
http timeout 15
http secure-server ssl-policy default_policy
#
radius-server authorization attribute-decode-sameastemplate
radius-server authorization calling-station-id decode-mac-format ascii hyphen-split common
#
portal https-redirect enable
#
authentication-profile name th-connect-02
port 
GOOD
View more
  • x
  • convention:

Example: WLC config


#
http timeout 15
http secure-server ssl-policy default_policy
#
radius-server authorization attribute-decode-sameastemplate
radius-server authorization calling-station-id decode-mac-format ascii hyphen-split common
#
portal https-redirect enable
#
authentication-profile name th-connect-02
portal-access-profile th-connect-02
free-rule-template ciscoise_free_rule_template
authentication-scheme th-connect-02
radius-server ciscoise01
#
portal web-authen-server https ssl-policy default_policy
#
radius-server template ciscoise01
radius-server shared-key cipher XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
radius-server authentication 10.223.54.250 1812 source Vlanif 4 weight 90
radius-server authentication 10.223.54.251 1812 source Vlanif 4 weight 80
radius-server accounting 10.223.54.250 1813 source Vlanif 4 weight 80
radius-server accounting 10.223.54.251 1813 source Vlanif 4 weight 80
undo radius-server user-name domain-included
calling-station-id mac-format hyphen-split mode2
radius-attribute set Service-Type 10
radius-server ip-address 10.223.54.251 shared-key cipher xxxxxxxxxxxxxx
radius-server authorization 10.223.54.250 shared-key cipher xxxxxxxx server-group ciscoise01
#
free-rule-template name ciscoise_free_rule_template
free-rule 0 destination ip 10.99.99.99 mask 255.255.255.255
free-rule 1 destination ip 10.223.54.250 mask 255.255.255.255
#
url-template name ciscoise_guest_portal
url https://10.223.54.250:8443/portal/PortalSetup.action#portal=deaaa863-1df0-4198-baf1-8d5b690d4361
parameter start-mark #
url-parameter login-url switch_url https://10.99.99.99:8443/login
#
web-auth-server ciscoise_web_auth_server
server-ip 10.223.54.250
port 50100
url-template ciscoise_guest_portal
protocol http
http get-method enable
http-method post login-success response msg LoginSuccess!
http-method post login-fail response err-msg msg LoginFail!
#
portal-access-profile name th-connect-02
portal auth-network 10.8.6.0 255.255.254.0
web-auth-server ciscoise_web_auth_server layer3
#
#
aaa
authentication-scheme th-connect-02
authentication-mode radius
authorization-scheme th-connect-02
authorization-mode if-authenticated
#
interface LoopBack99
description ciscoise_redirect
ip address 10.99.99.99 255.255.255.255
#
wlan

traffic-profile name th-connect-02
security-profile name th-connect-02
ssid-profile name th-connect-02
ssid th-connect-02
#
vap-profile name th-connect-02
service-vlan vlan-id 7
ssid-profile th-connect-02
security-profile th-connect-02
traffic-profile th-connect-02
authentication-profile th-connect-02
learn-client-address ipv6 disable
#
return
View more
  • x
  • convention:

Diego.Silva
Diego.Silva MVE Author Created Sep 14, 2021 22:52:51

good
View more
  • x
  • convention:

Comment

You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.