05-06-2016 10:24 AM
I think I got this in the right board. If not please direct me to the correct board.
I am evaluating how our AAA profiels are set up on our current SSIDs. I have inherited the system and haven't really changed much since I took over. On our main secure SSID we have both MAC auth and 802.1x enabled. Why is it that we would want both enabled? I might be missing something but I can't see a good reason to have both enabled on the network. We have a separate network that is MAC auth with a CP specifically for legacy devices. What would the impact fo disabling MAC auth on our main network look like?
We are a higher ed institution running AOS 22.214.171.124 with about 1100 APs and 6 M3MK1 modules in 2 6000 chassis.
05-06-2016 10:26 AM
Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP