We're utilizing Cisco ISE for 802.1X / MAB authentication and dynamic VLAN assignment. In our environment, there is a large bunch of medical modalities that require networking to communicate with their backend servers and systems. The challenge is; a bunch of those devices are kinda legacy and/or very simple, don't support DHCP and won't broadcast their MAC address upon receiving network link (See explanation below why*). This means that MAC-based authentication doesn't work, forcing us to statically configure the switchports they're connected to, which is less than desirable. Especially regarding semi-mobile devices and their users that are not so technically inclined.