Hi guys,
This is a great forum and I've benefited greatly from the knowledgeable posts here. I have a scenario where I need to authenticate devices based on MACs as well as their 802.1x credentials. How can I do that?
I know that in the AAA profile for a particular VAP, I can set the user roles for MAC-authentication, user-derivation rules and 802.1x but how can I tie two of them together so that the user is not authenticated until he meets both of the following conditions:
1) User's MAC address is in the user-derivation rules OR in the Internal DB (MAC Authentication)
2) 802.1x authentication
Any help is much appreciated!
Cheers