So I recently ran into a new challenge using 802.1x wired authentication with Clear Pass. We are connect our laptops to the network through the a Cisco VoIP phone. So the phone goes through MAC Authentication and the computer connected to the PC port on the phone goes through 802.1x authentication.
However when testing using a USB Mini Dock, which connects secondary monitors and Ethernet, I am unable to run 802.1x on my laptop and am also forced to authenticate the Dock.
Profiling is useless with these docks, as they are categorized as Computers or in one case Generic. Also it contains a Virtual Ethernet and the physical Ethernet, both with the same MAC Address. This causes the Virtual Ethernet to be authenticated, but the Physical remains Unidentified. In other words if I use the dock with MAC Authentication, whatever device that connects physically to the dock will be able to connect to the network without authenticating.
Is there a way to enforce this more precisely?
I'm including a screenshot of the ipconfig /all which shows both the Virtual and Physical Ethernet with the same MAC, the Virtual being authenticated and the Physical Unidentified. Also a image of the dock, a J5 Create (JUD380).
Thanks!