Is there any way to use machine + user auth at same time when authenticating Windows machine through ISE. In Windows native supplicant there is option as
1) Machine OR user Auth
2) User Authentication
3) Machine Authentication
4) Guest authentication
I want to give more priveledge access to endpoints where they are joined to AD domain AND the user is logged in using AD credentials.
Is there any way to achieve this functionality ...
There is one way to achieve Machine+User authentication through ISE.
Prerequisites: For windows 7 machine, please select “User or computer Authentication “ in authentication method ( Not applicable to Windows Xp)
You need to create two rules in Authorization policy as below
1st Rule :
With the 1st rule , machine will get authorized access when machine boots up ( Before user enters his credentials)
Network Access:WasMachineAuthenticated ==True
User will enter credentials and he will get authorized access because of 2nd Rule.Please find attached screenshot
I hope it answers your query