Wireless Access

Hi,

Could someone suggest the procedure to configure given requirement.

We would like to give user roles based on the device, we have corporate windows devices which has domain account (computer account), and also devices which are not part of a domain but authenticated to the network by AD username. How can I give different authenticated roles for these two types of devices. We use microsoft NPS for .1x authentication.

Two types of devices, both connect to same SSID

1) devices with AD computer account

2) user own devices which doesn't have AD computer account.

thanks

---

@nointerference wrote:

Hi,

 

Could someone suggest the procedure to configure given requirement.

 

We would like to give user roles based on the device, we have corporate windows devices which has domain account (computer account), and also devices which are not part of a domain but authenticated to the network by AD username. How can I give different authenticated roles for these two types of devices. We use microsoft NPS for .1x authentication.

 

Two types of devices, both connect to same SSID

 

1) devices with AD computer account

 

2) user own devices which doesn't have AD computer account.

 

 

thanks

 

---

The feature you want to use is "Enforce Machine Authentication".  Please search the knowledgebase here:  http://support.arubanetworks.com/KNOWLEDGEBASE/tabid/133/Default.aspx or in the user guide for an explanation on how to use it.

Another option is using ClearPass.  You can also enable an employee self-registration for BYOD device with OnBoard.