@bosborne@liberty.edu wrote:
What system/database are you going to use for registration?
Bruce Osborne
Wireless Engineer
IT Network Services - Wireless
@bosborne - the end devices are not capable of any other sort of authentication, they are online, they have a mac address and an ip address, i need to secure them. If this were a ClearPass environment, I would add the devices as known endpoints and go that route but this is not such an environment. This is a controller only network and I was thinking about using the user derivation rules for mac lists.
The wireless side, no worries, done. Hard line side though, got three VLANs coming in, say VLAN 100, 200 & 300. The devices on these VLANs are not capable of authentication on their own, hence looking at MAC authentication. I was thinking about the user derivation rules as then I could create static mac lists for each VLAN. (also, not talking about hundreds of devices per VLAN, maybe 20 to 30).
Anyway, I need them to authenticate somehow so that I can put them in a role and then manipulate as per normal (inter-vlan routing, session firewall ACLs, etc...) Make sense?