MAC and Leap authentication

boonteongng · ‎11-23-2002

I am using MAC address and LEAP authehtication via ACS, MAC address is configured as user in ACS database and LEAP using external windows user database.

If this is a case, can someone use the MAC address as username and p/w to login to the network ?

If I use both the ACS secure DB and ext Windows user DB, which one will be checked first for an username from client ?

tepatel · ‎11-23-2002

First MAC address authentication and later LEAP..

For MAC address authentication, userame and password both is MAC address and that will be autometic and authenticated against ACS database first. After that For LEAP, username and password will be authenticated against external user database.

boonteongng · ‎11-23-2002

If I key in the MAC address in the username and password logon, will the MAC address passthrough both the MAC and LEAP authentiation ?

First the MAC address is verified by the ACS local user database. Secondly, when come to LEAP authentication, since I key in MAC address as username and passwaord, this entry is also found in the ACS local database as a valid user, will it be allowed ?

tepatel · ‎11-24-2002

It depends on what databse you have selected in ACS for LEAP authentication..If you have selected external windows database for LEAP then username and password (mac address for LEAP as you mentined) needs to be in the external database to pass the LEAP..

boonteongng · ‎11-24-2002

MAC based authetication using Cisco Secure ACS database.

LEAP authentication using external windows user database.

Can a single logon using MAC address as username and password passthrough both the authentication ?