Can I use wild cards with MAB in ACS?

Unanswered Question
Jul 17th, 2009

I want to restrict access to 6500 ports to known MAC addresses. I know I can't use port security, nor can I apply an MAC layer ACL to the port, so I'm going to try 802.1x and/or MAC authentication bypass.

There is a potential for hundreds of MAC addresses to enter into the ACS, but only a few vendors supply the NICs. Instead of entering in individual MAC addresses in either the NGP or the username/password fields, can I use wild cards or masks like 00:1C:C4:00:00:00 00:00:00:FF:FF:FF to mask for all MACs that start with 00:1C:C4?

Or a username/password like 00:1C:C4:xx:xx:xx?

Is there any way to do this?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jagdeep Gambhir Mon, 07/20/2009 - 10:16

Hi,

I don't think so, the username can contain up to 64 characters except for #?"*><. Leading and trailing spaces are not allowed.

Wild cards are not allowed in username.

Regards,

~JG

Do rate helpful posts

Actions

This Discussion