Basically, I deploy ISE using the following devices, and watch video and read configuration guide from and :
Important! watch lab minutes' video
Cisco ISE 1.2 with patch 7 (VM), you can use less 200GB for storage. for production system, use more than 200GB
DHCP server (3750 switch)
Windows 2008 (AD, CA)
wireless controller 2504 with version 7.6
1. Make sure all devices sync to the same NTP server
2. ISE do has many bugs... If you cannot see any log in "authentication log" after authentication, please reboot the ISE
3. If you change too much policy, you may not see the logging after authentication, please reboot the ISE
4. Get the advance license for BYOD deployment or testing.
5. wireless controller is very stable comparing with ISE, follow the cisco configuration guide to make sure the ACL is
correct and allow DHCP, DNS, google play and apple.
6. make sure your DNS is working probably!!!!
7. I tested using apple 5s with 7.0, 7.1. Samsung Note2 with 4.2, windows 7. 小米,紅米 may not support, please read the
supported mobile list in cisco
8. In the ISE "Result", try not to use "static IP". otherwise the mobile device may not download the profile successfully.
9. "Don't have account" in Guest portal can be enabled or disabled easily.
10. After you create guest account from clicking "Don't have account", the account is hidden in ISE. But you can login sponsor portal to see the created account.
Good luck!
remember to
config network fast-ssid-change enable
config network web-auth captive-bypass enable
