Wireless Access

New Contributor

VIA machine authentication



I am running a trial of Aruba 3200 controllers with AP135s and have setup a 'corporate' SSID (802.1x EAP-PEAP/MSCHAPv2) using AD/NPS and enforcing machine authentication for our Windows based domain computers - this is all working as we wanted, only allowing valid domain computers to connect. We can then elevate user access using roles based on AD groups / policies in NPS.


I would like to now achieve a similar setup with the VIA client. I have a working VIA configuration that I can attach to user roles and can use the VIA client to connect with my AD credentials, but I believe this will allow me to connect from any device with the VIA client installed.  Is there anyway I can easily restrict this to my valid domain computers (ideally without having to use a certificate infrastructure?)


Thanks and regards,



Re: VIA machine authentication

I have to same requirement for a customer to do some sort of machine authentication on the VIA setup.


This customer wants to control which users are allowed remote access (the easy part), but also limit the machines these users are allowed to set up the VPN connection from.


Has anybody gotten anywhere regarding authentication machines with a VIA connection?

Koen (ACMX #351 | ACDX #547 | ACCP)

-- Found something helpful, important, or cool? Click the Kudos Star in a post.
-- Problem Solved? Click "Accept as Solution" in a post.

Re: VIA machine authentication

Guys, any update on this?  Have the same requirement and was going to start another thread, but found this one.


EDIT, i found this http://community.arubanetworks.com/t5/Controller-Based-WLANs/Can-I-use-a-separate-authentication-mechanism-for-different/ta-p/180828

If my post is helpful please give kudos, or mark as solved if it answers your post.

ACCP, ACCX #817, ACMP, ACMX #294
Search Airheads
Showing results for 
Search instead for 
Did you mean: