Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
New Member

How to Configure MAC Address Filtering in a NPS - Radius (Win2k8 R2) with ASA 5510

Hello Everyone,

I am looking for assistance with configuring MAC Address authentication/authorization for VPN clients/Connection using a Cisco ASA 5510 (Cisco Adaptive Security Appliance Software Version 8.4(6) Device Manager Version 7.1(3)) as an Radius Client to a NPS (Radius) Server (Platform = Win2k8 R2). I have already created several NPS Network Policies, Connection Request Policy, VPN Tunnel Groups (on ASA and matching group in AD), and Tunnel Group Policies.  Currently VPN connection can be established and user get authenicated by memebership of the AD groups.  However we would like to authenticate certain group on MAC address.   Thank in advance for everyone's assistance.

Cisco Employee

How to Configure MAC Address Filtering in a NPS - Radius (Win2k8

As far as I know, MAC address control is only available for SSL VPN (clientless and AnyConnect) that leverage CSD to supply this endpoint attributes information to Dynamic Access Policy (DAP).

Unfortunately IPSec doesn't support CSD to take advantage of this.

Jatin Katyal

**Do rate helpful posts**

~BR Jatin Katyal **Do rate helpful posts**
CreatePlease to create content