02-01-2017 04:31 PM
I'm setting up greenfield VIA VPN for our users, to replace aging Cisco ASA IPSEC and AnyConnect VPNs. Is there a way to profile the endpoint client when it connects to determine if it is a trusted corporate laptop or just a personal device belonging to a user? We have AirWatch integration but is there a way to get the MAC address info from the VIA client? For context I'm using EAP-PEAP with MSCHAPv2 authentication for VPN.
02-01-2017 04:45 PM
I'm not seeing the MAC of the client in the CPPM Event Viewer log entry. I'm seeing the MAC address of the port-channel interface on the controller as well as another MAC with an unknown OUI (12FF02230700). Other ideas?