Meraki

Community

MS120 Web Auth with Cisco ISE - Support?

Solved
RichardChen1
Getting noticed
‎Feb 19 2020 9:30 PM
‎Feb 19 2020 9:30 PM

MS120 Web Auth with Cisco ISE - Support?

Doing a test on MS120 switch on MAB+WebAuth(Central Web Authentication with ISE)

I can't find any Meraki Doco on whether it is supported or how to do it.

 

So I followed the guide on ISE and setup the MAB + web redirection policy.

 

 

However, during testing, the redirection rule is matched, but there is no redirection on the browser.

 

Any idea?

Furthermore, how does ACL/restriction applied in this case?

 
 
 
 

ise.jpg

0 Kudos
1 Accepted Solution
In response to RichardChen1
CptnCrnch
Kind of a big deal
‎Feb 20 2020 11:01 AM
‎Feb 20 2020 11:01 AM

Just stumbled upon this: https://documentation.meraki.com/MS/Access_Control/Change_of_Authorization_with_RADIUS_(CoA)_on_MS_S...

 

URL Redirect Walled Garden (Supported on MS210/225/250/350/410/420/425)

 

Seems you‘re really out of luck with MS120, without CoA you‘re pretty lost with this 😐

View solution in original post

3 Replies 3
CptnCrnch
Kind of a big deal
‎Feb 19 2020 11:16 PM
‎Feb 19 2020 11:16 PM

First question: are you allowing the client to access a DNS server that can resolve "testise26.nadergroup.local"?

 

Second one: how does your "Walled garden" config look like?

0 Kudos
In response to CptnCrnch
RichardChen1
Getting noticed
‎Feb 20 2020 1:40 AM
‎Feb 20 2020 1:40 AM

First question: are you allowing the client to access a DNS server that can resolve "testise26.nadergroup.local"?
Yes I suppose. The default vlan has no group policy applied.
I was wondering how to apply ACL?


Second one: how does your "Walled garden" config look like?
Allow ISE ip add only.
0 Kudos
In response to RichardChen1
CptnCrnch
Kind of a big deal
‎Feb 20 2020 11:01 AM
‎Feb 20 2020 11:01 AM

Just stumbled upon this: https://documentation.meraki.com/MS/Access_Control/Change_of_Authorization_with_RADIUS_(CoA)_on_MS_S...

 

URL Redirect Walled Garden (Supported on MS210/225/250/350/410/420/425)

 

Seems you‘re really out of luck with MS120, without CoA you‘re pretty lost with this 😐

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.