Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Can I use wild cards with MAB in ACS?

I want to restrict access to 6500 ports to known MAC addresses. I know I can't use port security, nor can I apply an MAC layer ACL to the port, so I'm going to try 802.1x and/or MAC authentication bypass.

There is a potential for hundreds of MAC addresses to enter into the ACS, but only a few vendors supply the NICs. Instead of entering in individual MAC addresses in either the NGP or the username/password fields, can I use wild cards or masks like 00:1C:C4:00:00:00 00:00:00:FF:FF:FF to mask for all MACs that start with 00:1C:C4?

Or a username/password like 00:1C:C4:xx:xx:xx?

Is there any way to do this?

1 REPLY

Re: Can I use wild cards with MAB in ACS?

Hi,

I don't think so, the username can contain up to 64 characters except for #?"*><. Leading and trailing spaces are not allowed.

Wild cards are not allowed in username.

Regards,

~JG

Do rate helpful posts

136
Views
0
Helpful
1
Replies