HugoJJ71
asked on
How to expire Cisco ISE internal Endpoints
Hi all,
We are currently offering a guest wireless network using self-registration through a Cisco ISE custom guest portal.
We want to move from user account based access to DRW (DEvice Registration WebAuth) after clicking to accept an acceptable use policy
My tests using drw were successful. However, it creates a permanent entry in the internal endpoint database.
I do not want guests to have to accept the AUP everytime they connect within a single day, but I do want to expire their endpoint account after a certain period of time.
Is there a way to do this?
Thanks,
Hugo
We are currently offering a guest wireless network using self-registration through a Cisco ISE custom guest portal.
We want to move from user account based access to DRW (DEvice Registration WebAuth) after clicking to accept an acceptable use policy
My tests using drw were successful. However, it creates a permanent entry in the internal endpoint database.
I do not want guests to have to accept the AUP everytime they connect within a single day, but I do want to expire their endpoint account after a certain period of time.
Is there a way to do this?
Thanks,
Hugo
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Maybe that's something to investigate. This may help...
http://www.cisco.com/c/en/us/td/docs/security/ise/1-1/api_ref_guide/ise_api_reference_guide_book/ise_api_ref_ch2.html#wp1072950
http://www.cisco.com/c/en/us/td/docs/security/ise/1-1/api_ref_guide/ise_api_reference_guide_book/ise_api_ref_ch2.html#wp1072950
ASKER
Thanks Craig, I'll be able to test the APIs later this week and circle back to let you know if it worked.
ASKER
I guess using the API's, we could semi automate the deletion of, say, week-old endpoints members of the Guest Endpoints group?