Guest WiFi Time Profile

Similar Messages

• ISE Guest Portal Time Profiles

  G'day All,
  Could someone advise if it is possible to extended or change the time profile of a guest account that has already been created? I am trying to understand using time profiles from within the Sponsor Portal. Imagine a guest user has an account created that gives them 2 weeks access, towards the end of the 2 weeks the user requires another week of access.
  From what I can see in both the ISE time profiles config page and from within the sponsor portal, either the user would have to wait until the existing account expired and have a new account created or a new account would have to be created to grant the additional access, and the existing account could be deleted, I am just seeking clarification of whether time extensions for Guest Accounts is possible prior to the account expiring.
  Currently using ISE 1.1.3
  Thanks in advanced guys.
  James.      

  Please follow the below steps to edite the time profile:
  Adding, Editing, or Duplicating Time Profiles
  To add or edit a time profile, complete the following steps:
  Step 1 From the Cisco ISE Administration interface, select Administration > Guest Management > Settings > Guest > Time Profiles.
  Step 2 Click one of the following:
  • Add—to create a new time profile
  • Edit—to edit an existing time profile
  • Duplicate—to duplicate an existing time profile
  Step 3 Enter the name and description of the new time profile.
  Step 4 Select a Time Zone for Restrictions. Time Restrictions are a set of time periods during which a guest account associated with that time profile would not be granted access to the network or guest portal.
  Step 5 From the Account Type drop- down menu, choose one of the predefined options:
  • StartEnd—allows sponsors to define start and end times for account durations
  • FromFirstLogin—allows sponsors to define the duration of time that guests can have access after login
  • FromCreation—allows sponsors to define the duration of time that guest can have access after account creation
  Step 6 Set the Duration for which the account will be active. The account expires after the duration set here has expired. This option is available only if you select the Account Type as FromFirstLogin or FromCreation.
  Step 7 Set the Restrictions for the guest access.
  These restrictions are composed of a day of the week and a start and end clock time. The Time Zone value specified in the time profile affects the clock times set in any of the Time Restrictions within the time profile. For example, a Time Restriction that specifies Monday 12:00 am to 8:00 am and Monday 6:00 pm to 11:59 pm would only grant system access between 8:00 am and 6:00 pm on Mondays within the time zone of the time profile. Any other day of the week would have no time restriction in this example and system access would be granted at any time.
  Step 8 Click Submit.

• Airport express, guest wifi, time capsule all muddled up - Looking for Bob Timmons!

  My operatign system is OS X 10.9.1
  Airport Express Time capsule 1 TB
  I have had my airport express time capsule for 2 years (1 TB)and it worked pretty near flawlessly since then.  It started with the time capsule being too full and that got me messsing with it.
  I could not fugure out how to delete files from the time capsule and it was not writing over old ones.  I have seen the same problem on here already. (In the end I bought an external drive and now that seems to have solved it and is scurrently bqcking up to the exteranl, even though I deleted a bunch of old files and my computer is now hovering around 830 MB it still won't back up to time capsule a stime capsule states it is hovering around 965 MB .  If you can help me on this part that is great.   )
  Then I tried to reset my AE device.  WIth that I had to reset my network.  this is where the problems began.
  Previously my AE had a steady green light and hosted two wifi names (mine and for guests).
  Now if I click not bridged (?) then I can not get Internet access on the guest network, i get the signal and it is there just no internet connection.  If I click DHC and Nat it constantly blinks amber but the guest network is  there and i have internet.  I have gone back and forth with this and it is consistently behaving like I described above.
  I have done a reset.  I have done a reset and unplugged the machine (though I admit I did not wait two minutes, closer to 45 seconds)
  I want to go back to the steady green light and the two wifis established as before.
  Also one  more thing to add.  My Server name has disappeared too.  I get an error message that says
  There was a problem connecting to the server "name"
  The server may not exist or it is unavailable at this time.  Check the server name or IP address, check your network connection, then try again.
  Seems I did a great job messing with this today.
  Can you please help me?

  In its default state, the 802.11n AirPort Express Base Station (AXn) will broadcast an unsecured wireless network. It does not need to be connected to another network or the Internet to operate this way. Wireless clients can then connect to this wireless network, but as you know, none will have access to the Internet. Both your Mac and iPhone should have no issues connecting to this network.

• ISE 1.2 Guest First Login time profile not working

  I had create time profile First Login and assign to Guest that generate in sponsor portal but account status is Active instead of Await Initial Login.
  Any suggestion ?

  Check what is the role you have assigned , if ActivatedGuest then account is enabled automatically. Status for these guests displays as "Active" even if the guest has not yet signed on

• Please help me with Time Capsule Set up for guest wifi?

  I am just setting up TimeCapsule
  I need help setting up guest wifi.
  I show I have a workgroup ht is that?

  You enable the Guest Network feature on your Time Capsule by using the AirPort Utility.
  For v6.x: AirPort Utility > Select your AirPort base station > Edit > Wireless tab > Enable Guest Network

• How can I set up a guest WiFi network using Time Capsule and Airport Express extension?

  How can I set up a guest WiFi network using Time Capsule and Airport Express extension?

  Sorry, but it is not possible to "extend" the Guest Network using either wireless or an Ethernet connection.

• NGS(Nac Guest Server) deleting time profiles

  I'm using a NGS 2.0.1 and tried to delete a time profile. I unbind the time profile first from any Sponsor Group. After I hit the bin button and confirm this, teh time profile still exists on my NGS.
  Has someone seen this?

  Hello Faisal,
  Thank you very much for your help! I looked through all bug reports but somehow I missed this one. Thank you again, it fixed the problem!
  Best regards,
  Peter

• ISE Guest Wifi Portal Users restricted to 5 day account

  Hi,
  I have a custom Guest wifi portal configured in Mulit-Portal Configuration to do self service, Portal Type is default Portal.
  I have the Guest Portal Policy configured to a time profile of 6 months which works ok for my other wifi profiles.
  My users however are only getting a 5 day account to expiry.
  I suspect the Guest Portal I have configured is not using the Default Guest Portal Policy as configured in "Web Portal Management\Settings\Guest\Portal Policy but I can't find any other option or settings
  Please Any help gratefully recieved.
  Thanks

  There was a bug that caused a failure like this, think it was solved in 1.2 patch 8...  could be worth a try to patch if you haven't done so....

• Guest WiFi not working correctly

  I just bought a new EA6300 router expecially for it's guest wifi functionality but i have problems with this feature.
  weather i log in via my laptop/ macbook/ android or iphone i can connect to the guest wifi network but the guest wifi portal is not displayed and i cannot login as guest.
  After a reset of the router the guest wifi works for a little while but fails within couple of hours.
  Is this a firmware bug or does someone knows a workaround.
  Hope Linksys can help me with this standard build in feature!!!
  Thanks in advance.

  blue_butterfly wrote:
  Hey there, bramschats! Intermittent guest network connection may be caused by wireless interference. Try changing the wireless channel of your router to either 1, 6, 9, or 11. You may also want to change your security settings to WPA2 Personal. That should take care of the intermittent connection. If all else fails, update the router's firmware.
  There is no "I"in the word Team.
  (moxx)
  hi blue_butterfly: I would kindly suggest a better way to do what you suggest. It would be best to troubleshoot the problem by looking first to see if there actually is congestion. there are apps available for free to see what channels are being used. By randomly moving to another channel you may cause others to then be interfered with causing them to move and the problem just continues to move around. Also, the only wifi channels that don't overlap (at least here in the USA) are channels 1, 6, and 11.  All the other channels cause at the very least a small amount of signal degragation to the adjacent channel. So try to find the app for whatever device you can use, android or iPhone and see what is actually out there, select the channel with the lowest signals on it and see if that helps. The channels in between 1, 6 and 11 can certainly be tried but just be aware that they are the least advisable ones to use. 
  @ bramschats: if you are able to use the guest login at some times but then it doesn't work after a while try refreshing your browser before you re-boot the router. If that still doesn't work and the only way to fix it is to reboot the router complain to belkin about it. There seems to be a lot of bugs in their software lately and the only way we will get their attention is to complain, return deivces etc. 

• My daughter is trying to connect to a guest wifi account and she is having trouble

  my daughter is trying to connect to a guest wifi account and she is having trouble

  Does the iOS device connect to other networks?
  Does the iOS device see the network?
  Any error messages?
  Do other devices now connect?
  Did the iOS device connect before?
  Try the following to rule out a software problem:                 
  - Reset the iOS device. Nothing will be lost
  Reset iOS device: Hold down the On/Off button and the Home button at the same time for at
  least ten seconds, until the Apple logo appears.
  - Power off and then back on the router
  - Reset network settings: Settings>General>Reset>Reset Network Settings
  - iOS: Troubleshooting Wi-Fi networks and connections
  - Wi-Fi: Unable to connect to an 802.11n Wi-Fi network
  - iOS: Recommended settings for Wi-Fi routers and access points
  - Restore from backup. See:
  iOS: How to back up
  - Restore to factory settings/new iOS device.

• Extending Guest Wifi with Multiple Base Stations

  The 7.6.3 firmware update reports this new feature:
  "The ability to extend the Guest Wi-Fi network on a network that is configured with multiple AirPort Base Stations"
  http://support.apple.com/kb/DL1617
  I assumed that this meant that an Airport Express was able to "Extent" the guest wifi network. However, I am not able to get this to work. Having entered all the details I just get the orange light and the message that it was unable to extend the network - check the details. I have checked them multiple times and still not working. If I switch to extending the "main" network then it works first time, but does not extend the guest as far as I can see.
  If I set up from scratch it picks up the guest network and tries to extend but then switches to the main wifi later in the process after claiming to extend the base station itself, not one of the wifi networks.
  What does this update mean?! Has anyone managed to "extend the Guest Wi-Fi network" in any way?
  All devices have been updated to 7.6.3 and all airport utilities have been updated to the latest version (6.2).
  I am running an extreme as the main router then I have a number of expresses to extend round a large building, but it is the guest that needs extending!!
  Any help would be much appreciated!
  Adam

  I am running an extreme as the main router then I have a number of expresses to extend round a large building
  You need to have the "new" AirPort Express to be able to extend the Guest Network. The "new" Express looks like a miniature AirPort Extreme.
  Check the Model No on the side of the AirPort Express devices that you have. If you see A1264 this is an older version of the Express that does not have Guest Network capabiltiy.
  Using an AirPort Extreme and new AirPort Express here., the Guest Network "extends" just fine when I try this using wireless only. I also have another AirPort connected back to the main AirPort Extreme using a wired Ethernet connection. The Guest Network is extended on this device as well.

• Certificate error using webauth on guest wifi

  I am trying to setup a guest wifi.  We have our custom page package loaded and it looks great with our graphics, logo.  Basically you have to check a box and click accept to the terms of service, and then it forwards you through to VLAN 12 in this case, which is directed to an untangle software based firewall / router with its own outside IP address.
  The issue is that when you initially join the wireless network, the page at 1.1.1.1/login.htm throws a certificate error and you have to continue anyway (Internet Explorers language).
  Does this mean we need to put our wildcard certificate on it for our *.domain.com (GoDaddy signed) or does it need another kind of certificate?  What format would it need to be in (I have a pfx but can convert it if need be).
  We are not passing any credentials, so it doesn't NEED to be https, so under Management > HTTP-HTTPS I changed WebAuth SecureWeb to Disabled.  However when doing this, WebAuth is still putting https://1.1.1.1 and I get a page cannot be displayed. I  take the s out of https and then the webauth page works.
  So two things here, how could I just use it in http, or if preferred, what format and what kind of certificate needs to make https work in webauth?  This is primarily for vendors that visit, or guests in our waiting lobby with their tablets or smartphones.
  The WLC is a 5508 running 7.4.121.0.

  I also tried this site as well:
  http://www.packethead.net/2013/08/05/cisco-wlc-wireless-lan-controller-certificate-install-mac-os-x/
  I tried it command line, and it tftp's fine in all instances above but I get:
  TFTP Webauth cert transfer starting.
  TFTP receive complete... Installing Certificate.
  Error installing certificate.
  Might have to open a case with tac if this doesn't work.
  I have openssl 1.0.1j is that maybe a bad version? also every time I run it it says WARNING: can't open config file: /usr/local/ssl/openssl.cnf
  Well of course not, that is a *nix based bath and this is the 64-bit windows version.
  What I can get is a download from go daddy and the wildcard cert is already generated.  I cannot submit a new cert request.  We have this key and I've tried different ways of converting it with OpenSSL, I've imported it to windows and in the mmc for certificates exported in various formats.  Nothing will work with this WLC. 

• ISE CWA Time Profiles

  Hi
  Trying to make ISE CWA with WLC2500 to work according to guest time profiles.
  - When suspend guest users in ISE they still can connect and it seems that there is no communications between WLC and ISE (i suspect that ISE will communicate to WLC regarding this)
  - Then creating a guest user with "OnlyFirstLogin".... the user is still connected after shutdown/restart..
  I'm aware of the WLC timeout settings, but not sure if there are in play with CWA
  Any who knows about these time profiles in ISE regards to WLC
  Thx
  Kasper

  Please review the below links which might be helpful:
  http://www.cisco.com/en/US/docs/solutions/Enterprise/Borderless_Networks/Smart_Business_Architecture/February2012/SBA_Ent_BN_BYOD-GuestWirelessAccessDeploymentGuide-February2012.pdf
  http://www.cisco.com/en/US/docs/security/ise/1.0/user_guide/ise10_guest_pol.html
  http://www.cisco.com/en/US/docs/security/ise/1.0.4/user_guide/ise10_guest_pol.pdf

• ISE: time profile for authenticated usergroup access

  Hi forumers'
  I would like to setup a session condition like what ACS can do. This is using for the user after authentication, then they were authorize with the time allotment profile for them to accessing the resources on the network.
  Can i do this over ISE, beside guest manamgent >  sponsor group's time profile?
  What if current ISE not ready for this, how's the high level design would be for time profile for usergroup access look like?
  Example
  a. trusted full time employee, accessbile 24x7x365
  b. not confirm, internship employee, with only accessbile right of 8x5 per day
  Thanks
  Noel

  Thanks for the reply, but I'm really seeking the feature of prevent multiple self registration for the same user, and I don't think that it is available right now.
  The only working idea here is blocking the MAC address for the machine doing the registration because everytime the user will be able to register with new email address or mobile phone.
  Also one feature can be interested here, that the user can do self registration with Phone mandatory so the ISE will send SMS to the user with the credentails to use.
  Thanks.
  Ahmad.

• ISE Time Profiles

  I have successfully setup my guest authentication through ISE but when I change the time profile from Default Eight Hours to Default Start End the user cannot login.  If I change the profile to Eight Hours, the access is granted.  Has anyone run into this?  I have tried to make a new profile, new sponsor group etc but no luck.  Any help would be highly appreciated.
  Additional information.  I am able to create the account using the DefaultEightHours setting.  Login and than change the account to DefaultStartEnd.  However, I cannot enter DefaultStartEnd from the start.  I have attached the troubleshooting error I see in ISE.
  Thanks,
  James

  Please review the below links which might be helpful:
  http://www.cisco.com/en/US/docs/solutions/Enterprise/Borderless_Networks/Smart_Business_Architecture/February2012/SBA_Ent_BN_BYOD-GuestWirelessAccessDeploymentGuide-February2012.pdf
  http://www.cisco.com/en/US/docs/security/ise/1.0/user_guide/ise10_guest_pol.html
  http://www.cisco.com/en/US/docs/security/ise/1.0.4/user_guide/ise10_guest_pol.pdf