Can I use wild cards with MAB in ACS?

Unanswered Question
Jul 17th, 2009
User Badges:

I want to restrict access to 6500 ports to known MAC addresses. I know I can't use port security, nor can I apply an MAC layer ACL to the port, so I'm going to try 802.1x and/or MAC authentication bypass.

There is a potential for hundreds of MAC addresses to enter into the ACS, but only a few vendors supply the NICs. Instead of entering in individual MAC addresses in either the NGP or the username/password fields, can I use wild cards or masks like 00:1C:C4:00:00:00 00:00:00:FF:FF:FF to mask for all MACs that start with 00:1C:C4?

Or a username/password like 00:1C:C4:xx:xx:xx?

Is there any way to do this?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Jagdeep Gambhir Mon, 07/20/2009 - 10:16
User Badges:
  • Red, 2250 points or more


I don't think so, the username can contain up to 64 characters except for #?"*><. Leading and trailing spaces are not allowed.

Wild cards are not allowed in username.



Do rate helpful posts


This Discussion