05-22-2013 07:54 PM - edited 05-22-2013 07:59 PM
We have a requirements from our customer to used their existing SSID with 802.1x enable, they are using Cisco WLC 4400
The requirements is that when the WLC and Clearpass is integrated, the client wireless device with 802.1x enable will connect to the WLAN and if 802.1x failed it will still allow the client to get an ip address if the MAC address is registered the the Clearpass.
Is this possible? or is there a alternative way to allow the client if 802.1x fail? We need this for our monitoring mode to allow client if 802.1x will not work.
05-22-2013 08:26 PM
You could add the mac address to the endpoint repository and in the service you are using you can add endpoint repository as an authorization source , you also need to create a mac auth enforcement policy which will check whether the mac address exist in the endpoint repository .
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA