Security

Reply
Contributor II
Posts: 49
Registered: ‎12-09-2013

IAP Mac auth and 802.1x

Gang, here is my senario. I have IAPs and want to use Mac auth before 802.1x auth (NPS). I need to know step by step the settings that need to be implemented in NPS to get this to work? I have enabled mac auth in the SSID, recommendations on the delimiter setting is welcome?

 

I've read pieces of blog posts stating mac addresses need to reside in NPS or AD. None of those suggestings work. thxs

Guru Elite
Posts: 8,322
Registered: ‎09-08-2010

Re: IAP Mac auth and 802.1x

You can use MAC-authentication -OR- 802.1X with MAC authorization.

 

You need a policy engine like ClearPass to do the latter.


Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Contributor II
Posts: 49
Registered: ‎12-09-2013

Re: IAP Mac auth and 802.1x

Isn't this article doing what I'm trying to achieve?: https://arubanetworkskb.secure.force.com/pkb/articles/HowTo/R-399

Problem is, this article is vague regarding the actual settings in NPS. Ideas?

thxs
Guru Elite
Posts: 8,322
Registered: ‎09-08-2010

Re: IAP Mac auth and 802.1x

This will not scale. It's telling you to write custom connection policies for each username/mac-address combination.


Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Search Airheads
Showing results for 
Search instead for 
Did you mean: