Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
382
Views
0
Helpful
2
Replies

ISE machine authentication - only plug in to the network after booting

Tai Eric
Level 1
Level 1

‎06-18-2014 09:22 PM - edited ‎03-03-2019 07:27 AM

Hi experts.

I have recently deployed ISE with machine authentication. 

However, when the machine is already plugged in to the switch before booting, the machine does not authenticate automatically. It isn't until I log on, using a local computer account, that 802.1X authentication occurs. Using wireshark, I have verified again that this authentication is MACHINE authentication, not user-authentication.
Is there a way to solve this problem, other than having my users unplug their computer and only plug in to the network after booting?

Eric

Labels:
0 Helpful
2 Replies 2

Venkatesh Attuluri
Cisco Employee
Cisco Employee

‎06-19-2014 02:15 AM

Are you using EAP-Chaining (EAP-TEAP) or using machine access restriction)?

0 Helpful

Tai Eric
Level 1
Level 1
In response to Venkatesh Attuluri

‎06-20-2014 02:16 AM

Hi Vattulu,

 

  The method of machine access restriction will be used, because there is no a plan to use anyconnect NAM on the client environment, since the prerequisite for EAP-chaining is to use anyconnect.

Regards,

Eric

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents