Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

NAC with 802.1x and no user intervention

Hello,

We are testing with NAC phase 2 in our Catalyst 2950 switches. We have the 802.1x environment working.

I was wondering if it is possible to validate the client machine without the user having to type a username and password. We have no active directory and therefore no machine accounts.

Another thing i was wondering about is when is the CTA sending its data to ACS? At boottime somewhere? How is CTA authenticating then?

Kind regards,

Rutger

1 REPLY
Silver

Re: NAC with 802.1x and no user intervention

Look at VMPS, which automatically places the end-devices into the correct VLAN based on the MAC address of the end-device. This is not a very strong security feature, but makes sure the end-device is a known machine based on the MAC-address to VLAN mapping on the VMPS server.

102
Views
0
Helpful
1
Replies
CreatePlease to create content