You mean you want machines treated differently just because they are running a dot1x client? That does not seem very useful behavior. Anything can start a dot1x client.
Perhaps you want to look at machine level authentication so that the machine authenticates itself automatically, and then when a user logs in it reauthenticates as a user. Then you can send a different vlan depending on whether the machine is being used or not.
We are pleased to announce availability of Beta software for 16.6.3. 16.6.3 will be the second rebuild on the 16.6 release train targeted towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are looking for early feedback from custome...