ISE1.1 - Use of one guest account on multiple devices
I have ISE1.1 with local web authentication process for "Guest" Wi-Fi. I faced a problem in bulk guest account creation and TAC filed a bug - CSCup38457: "importing guest account CSV fails via sponsor portal"
Now, I need to allow guests to connect to "Guest" Wi-Fi using multiple devices (approx. 200). My queries are below:
1- Is it possible to permit one guest account to be used by approx. 200 devices at same time?
2- On how many devices single guest account can be used?
3- Is there any limitation or abnormal behavior in terms of guest portal for such cases?
When I look at the restriction on device registration I read that as applicable only to Device Self Registration, not to normal guest access.
So as far as guest sessions per user I can either choose to limit to one with the check box, or allow infinite.
And the Device Registration Portal Limit applies to self registration of devices, not just standard guest access. The OP doesn't look like he wants to register devices, he just wants to allow guest access for multiple devices.
This is how I read it anyway. Please let me kno if you think otherwise.
If this is not the case, then is it not possible to create a standard Network Access User (not through guest portal) and have as many users access this as you need? In this case 200. As long as you disable password changes/expirations/lockouts etc.
You are absolutely right. The limit for devices applies only to "Device Registration" (BYOD flow or Device Registration Web Auth).
I am not aware of a limit of devices/session for guest accounts. In fact, I have deployed ISE with hundreds of guest users where the HTML portal has a hidden guest username/password so the guest users only have to accept an AUP while performing an authentication in the background.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :