https://community.cisco.com/t5/wireless/using-eap-with-mac-athentication/m-p/282202#M11445 <HTML><HEAD></HEAD><BODY><P>i believe the answer to your first question is as i remember, both authentications are enabled then it will exam mac authentication first if fails, then eap will come in to play. i may have to double check with the most current ios though.</P><P></P><P>for the second question in regards to group settings, yes you can. it's called Network Access Restriction (NAR). you can creat different user groups and assign different group settings. however the right way to do your requirements is to set two different SSID with each authentication method.</P><P></P><P>let me know if you need further clarification.</P><P></P><P>a rating would be appreciated if it helps.</P></BODY></HTML> Wed, 21 Apr 2004 02:40:33 GMT uggie 2004-04-21T02:40:33Z https://community.cisco.com/t5/wireless/using-eap-with-mac-athentication/m-p/282201#M11444 <P>folks,</P><P> Are there any known issues with using EAP authetication as well as mac address authetication???</P><P>would the access-point autheticate both and only them let the client associate with itself or either.</P><P></P><P>is it possible to create groups of users in ACS and associate mac-address authentication to them , so that 1 group can not authenticate to another group even if he knows the usersname and password.</P><P></P><P>Thanks</P> Sun, 04 Jul 2021 16:33:39 GMT https://community.cisco.com/t5/wireless/using-eap-with-mac-athentication/m-p/282201#M11444 tarun.pahuja 2021-07-04T16:33:39Z https://community.cisco.com/t5/wireless/using-eap-with-mac-athentication/m-p/282202#M11445 <HTML><HEAD></HEAD><BODY><P>i believe the answer to your first question is as i remember, both authentications are enabled then it will exam mac authentication first if fails, then eap will come in to play. i may have to double check with the most current ios though.</P><P></P><P>for the second question in regards to group settings, yes you can. it's called Network Access Restriction (NAR). you can creat different user groups and assign different group settings. however the right way to do your requirements is to set two different SSID with each authentication method.</P><P></P><P>let me know if you need further clarification.</P><P></P><P>a rating would be appreciated if it helps.</P></BODY></HTML> Wed, 21 Apr 2004 02:40:33 GMT https://community.cisco.com/t5/wireless/using-eap-with-mac-athentication/m-p/282202#M11445 uggie 2004-04-21T02:40:33Z