topic Re: ACS 3.3.3 Machine Authentication + Restriction in Network Access Control

ACS 3.3.3 Machine Authentication + Restriction

remco.gussen — Tue, 26 Mar 2019 00:24:47 GMT

I'm trying to set up Machine Access Restriction.

I configured the ACS to allow PEAP Machine Authentication.

Machine Access Restriction is also set to use de <No Access> group in case one of the authentication methodes are not ok.

When computer (member of domain) boots and shows login window, the computer authenticates with computer name. Logs in ACS show successfull machine authentication.. You can even ping the wireless computer..

Then I log in with a valid user ID and password...

No access to wireless network. Log shows error code: Denied Access Due to Machine Access Restriction.

Machine authentication is ok, user authentication is ok. Why do I get a Denied Access ?

Thanks

Remco

Re: ACS 3.3.3 Machine Authentication + Restriction

jbayuka — Mon, 11 Feb 2008 15:01:49 GMT

Cisco Secure Access Control Server (ACS) Solution Engine supports many RADIUS attributes. You can enable different attribute-value (AV) pairs for IETF RADIUS and for any supported vendor. This appendix lists the standard attributes, vendor-proprietary attributes, and vendor-specific attributes supported by Cisco Secure ACS.

Re: ACS 3.3.3 Machine Authentication + Restriction

remco.gussen — Mon, 11 Feb 2008 15:07:31 GMT

What do you mean ?