03-12-2019 07:27 AM - edited 03-12-2019 07:28 AM
Ciao,
is it possible create a policy in order to block endpoint with static IP address configured in a 802.1x enviroments ?
Thanks
03-12-2019 08:22 AM
03-12-2019 08:38 AM
03-12-2019 11:42 AM
If these are domain joined devices then this should be stripped away by taking away admin rights on their machines or disabling those options via GPO. You could try to profiling on things like:
dhcp-parameter-request-list matches .* or dhcp-class-identifier matches .*
If those exists you could put them into a DHCP_Device profile, but they would only need to do DHCP once to get those attributes populated. If they changed to static IP after the fact they would still look like a DHCP device from a profiling perspective.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: