I am going to implement Nortel IP Phones on Cisco 3560 switches configured with 802.1x port control. The Switches utilies Cisco ACS to authenticate clients. I have setup a certificate server and will be installing certificates on the phones and the ACS Server. The phones will be configured to use EAP-TLS. My questions are:
1. Do I have to manually create an ACS account for each phone or can this be automated?
2. Can i configure a single account for all phones?
3. Can Active directory be used in anyway to perform the back end authorisation?
Many thanks for your help,