CJ thanks for the info....
Even i need a clarificfation on this topic as even i am facing the same issue. Please find the below network details.
1. SSID - WPA2 AES
2. L2 fail through is not enabled
3. MAC profile and MAC server is configured and it is internal DB of the controller.
4. 802.1X authentication profile and server group is mapped and it is external radius server. It is EAP-TLS
5. Initial role is logon role.
with the above configuration i checked that even though if the user MAC address is not in the internal DB he is performing 802.1X auth and it is successful and he is able to connect to network.
Can you please tell me whether MAC authentication will work along with 802.1X auth with the above given network details configured in the controller?
Please note that if the user fails any one of the auth he should not be given access.