Security

Reply
Highlighted
Frequent Contributor II

MAC Auth Login Status REJECT

I'm hoping to have all devices that fail mac authentication be "accepted" from a login status perspective so I can extend CoA rights to our help desk so after the device is registered it can have it's session terminated. 

 

I made the default Profile "Allow Access Profile" and I created a condition "(Authorization:[Guest Device Repository]:AccountStatus  NOT_EXISTS   )". But authentication still fails.

 

I didn't know if I could add a secondary authenitcation source or if there was a way to get creative and say when username = mac then auth but hit a different enforcement policy...

 

Is this possible to do?

 

Thanks,

 

Rosie


Accepted Solutions
Highlighted
Moderator

Re: MAC Auth Login Status REJECT

You need to use Allow All MAC Auth and add a fail through rule that returns your captive portal role.



If this response is more than 1 year old, it may no longer be accurate. Please consult official Aruba documentation, TAC or your Aruba SE.

| Aruba Alumni | @timcappalli | timcappalli.me |

View solution in original post


All Replies
Highlighted
Moderator

Re: MAC Auth Login Status REJECT

You need to use Allow All MAC Auth and add a fail through rule that returns your captive portal role.



If this response is more than 1 year old, it may no longer be accurate. Please consult official Aruba documentation, TAC or your Aruba SE.

| Aruba Alumni | @timcappalli | timcappalli.me |

View solution in original post

Highlighted
Frequent Contributor II

Re: MAC Auth Login Status REJECT

Thanks Tim! I was on the right path. 

 

Highlighted
Contributor II

Re: MAC Auth Login Status REJECT

Hi cappalli, what is difference between allow all mac and mac auth ?

Highlighted
Guru Elite

Re: MAC Auth Login Status REJECT

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: