07-02-2015 08:28 AM - edited 03-10-2019 10:52 PM
Hi Experts,
Good Day!
Is it possible in ISE to have wireless BYOD and posturing enabled at the same time and for using only a single SSID?
Thanks.
07-02-2015 09:50 AM
Hi Nikko,
Yes, as long as you have a controller that runs a version of code that supports CoA (Change of Authorization) which happened after version 7.2.
It will be all about building your rules in ISE. You can configure it so the posture happens before or after BYOD on-boarding.
I hope this helps!
Thank you for rating helpful posts!
07-03-2015 04:30 AM
Hi Neno,
Good Day!
Thanks for the great feedback.
I would like also to ask about DACL. I'm a bit confused on how to use it.
I have a design for departmental access for wirless, will DACL be able to work with this design or I should use Airespace ACL? The thing with Airespace ACL is that I will configure the ACL in the WLC right?
Thanks,
niks
07-06-2015 11:42 AM
Hi Nikko-
The new converged access (3850s, 4510-sup-8) do support DACLs. However, the traditional AIR OS (WLC 5508, 2504, etc) does not!
As a result, you would have to configure the Airspace ACLs on the controllers and then reference those in the "Authorization Profiles" in ISE.
Take a look at the link below for more info and some configuration examples:
I hope this helps!
Thank you for rating helpful posts!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide