I have a setup with a client running vmware connecting to the switch. The client mac addresses are authenticated using the ACS.
The switch is able to authenticate the either the client or vm mac address. Depending on which point of time the machine is plugged into the network.
Example scenario: VM is configured in bridge mode with own unique virtual mac
The vm will not be able to authenticate when the machine is plugged into the network when the machine is booting from fresh as the phyiscal mac will be instead used to authenticate. VM client unable authenticate to access network.
The reverse will be same with the machine plugged into the network after the vm has launched.
My interim solution:
Using NAT on vm client.
Plug machine into network only after vm client is launched.
Solution I am looking for:
for both phyiscal and vm client to be able to authenticate. Allow switch port to learn dynamic mac address when in dot1x mac-auth-bypass mode.
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...