Security

Reply
Contributor I
Posts: 29
Registered: ‎05-09-2013

Compatibility 802.1X and mac-filter to Clearpass radius server

[ Edited ]

We have a requirements from our customer to used their existing SSID with 802.1x enable, they are using Cisco WLC 4400

The requirements is that when the WLC and Clearpass is integrated, the client wireless device with 802.1x enable will connect to the WLAN and if 802.1x failed it will still allow the client to get an ip address if the MAC address is registered the the Clearpass.

 

Is this possible? or is there a alternative way to allow the client if 802.1x fail? We need this for our monitoring mode to allow client if 802.1x will not work.

 

MVP
Posts: 4,225
Registered: ‎07-20-2011

Re: Compatibility 802.1X and mac-filter to Clearpass radius server

 

You could add the mac address to the endpoint repository and in the service you are using you can add endpoint repository as an authorization source , you also need to create a mac auth enforcement policy which will check whether the mac address exist in the endpoint repository .

 

Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
Search Airheads
Showing results for 
Search instead for 
Did you mean: