ise prevent user frm accessing via both wireless and wired nw
We are implementing ISE 1.2 with latest patch. Looking for any advise on how to prevent users from accessing both wired and wireless nwtwork.I want to prevent user from accessing nw via both wired lan and guest wifi. Any advice on how to achieve this task will be highly appreciated
Thank you very much for your response. I guess the config you suggested will prevent to have user to have have multiple sessions. But I am looking for config to prevent user(employe) to login from his laptop via wired connection and guest (wireless) both simultaneously. He should be allowed to access only via wired (corporate nw ) or wireless access but not both at same time.
Well i don't think this is possible expect you can do one thing when device connect using wired,client wireless adaptor should be disabled using posturing or using register keys in windows for this(verification).
You can accomplish through the cisco anyconnect NAM supplicant, by default when a wired connection is active it disables the wireless nic. When the wired connection is disconnected then the wireless radio turns on and connects. There is also a corporate ssid feature that disables connectivity to any other networks broadcasting in the area when that ssid is present. When the user takes the computer home or off prem then the other networks are available to connect to.
Let me know if you need some help locating that software documentation online.
It is the Cisco anyconnect Network Access Manager which to date is only available for Windows.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...