Meraki

Community

MS120 Web Auth with Cisco ISE - Support?

Solved
RichardChen1
Getting noticed
‎Feb 19 2020 9:30 PM
‎Feb 19 2020 9:30 PM

MS120 Web Auth with Cisco ISE - Support?

Doing a test on MS120 switch on MAB+WebAuth(Central Web Authentication with ISE)

I can't find any Meraki Doco on whether it is supported or how to do it.

 

So I followed the guide on ISE and setup the MAB + web redirection policy.

 

 

However, during testing, the redirection rule is matched, but there is no redirection on the browser.

 

Any idea?

Furthermore, how does ACL/restriction applied in this case?

 
 
 
 

ise.jpg

0 Kudos
1 Accepted Solution
In response to RichardChen1
CptnCrnch
Kind of a big deal
‎Feb 20 2020 11:01 AM
‎Feb 20 2020 11:01 AM

Just stumbled upon this: https://documentation.meraki.com/MS/Access_Control/Change_of_Authorization_with_RADIUS_(CoA)_on_MS_S...

 

URL Redirect Walled Garden (Supported on MS210/225/250/350/410/420/425)

 

Seems you‘re really out of luck with MS120, without CoA you‘re pretty lost with this 😐

View solution in original post

3 Replies 3
CptnCrnch
Kind of a big deal
‎Feb 19 2020 11:16 PM
‎Feb 19 2020 11:16 PM

First question: are you allowing the client to access a DNS server that can resolve "testise26.nadergroup.local"?

 

Second one: how does your "Walled garden" config look like?

0 Kudos
In response to CptnCrnch
RichardChen1
Getting noticed
‎Feb 20 2020 1:40 AM
‎Feb 20 2020 1:40 AM

First question: are you allowing the client to access a DNS server that can resolve "testise26.nadergroup.local"?
Yes I suppose. The default vlan has no group policy applied.
I was wondering how to apply ACL?


Second one: how does your "Walled garden" config look like?
Allow ISE ip add only.
0 Kudos
In response to RichardChen1
CptnCrnch
Kind of a big deal
‎Feb 20 2020 11:01 AM
‎Feb 20 2020 11:01 AM

Just stumbled upon this: https://documentation.meraki.com/MS/Access_Control/Change_of_Authorization_with_RADIUS_(CoA)_on_MS_S...

 

URL Redirect Walled Garden (Supported on MS210/225/250/350/410/420/425)

 

Seems you‘re really out of luck with MS120, without CoA you‘re pretty lost with this 😐

Back to the top
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.