Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1436
Views
0
Helpful
1
Replies

ISE - Profiling - MAC Address Spoofing

nadeekha
Level 1
Level 1

‎02-08-2016 09:43 AM

Hi Experts,


My Customer has Profiling enabled on the Prod ISE deployment and are correctly profiling Aruba AP's using MAB not Dot1x as the auth method.

Customer is concerned that if the MAC address of the AP's spoofed would it be used on any device linux/windows etc to gain access to the network.

The probes that they have currently setup are DHCP,Radius.

Is there a way to avoid MAC Address Spoofing in the above scenario?

Thanks

Nadeem

0 Helpful
1 Reply 1

howon
Cisco Employee
Cisco Employee

‎02-08-2016 09:53 AM

Nadeem, I suggest limiting access using VLAN or ACL for AP access. The ACL can be crafted to allow for APs to join the controller, which at minimum would include DHCP, DNS, and GRE to the controller.

Hosuk

0 Helpful
Customers Also Viewed These Support Documents