cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
 
ISE 2.3 Patch 7 has been posted. This will be the last patch for the ISE 2.3 release!
Choose one of the topics below to view our ISE Resources to help you on your journey with ISE

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

95
Views
0
Helpful
2
Replies
Beginner

Wired dot1x for apple devices

Hi Forum,

I'm trying to help a customer with locking the wired ports to only company asset macbooks. For wireless JAMF is taking care of that for me by checking mdm>>deviceRegisteredStatus=registered but for wired, JAMF does not have the mac address of the dongle (that changes every time you get new dongle).

Authentication with a cert is not an option here. What's another way to identify corp assets on the wired for Macs??

Everyone's tags (1)
1 ACCEPTED SOLUTION

Accepted Solutions
Advocate

Re: Wired dot1x for apple devices

See Trusted Device + Trusted User section of the following Cisco Live session (BRKSEC-3697 - 2017 Melbourne).

Advanced ISE Services, Tips and Tricks (2017 Melbourne)

The reference version of presentation provided additional details.

Access to CiscoLive.com requires one-time registration (no charge).

/Craig

2 REPLIES 2
Advocate

Re: Wired dot1x for apple devices

See Trusted Device + Trusted User section of the following Cisco Live session (BRKSEC-3697 - 2017 Melbourne).

Advanced ISE Services, Tips and Tricks (2017 Melbourne)

The reference version of presentation provided additional details.

Access to CiscoLive.com requires one-time registration (no charge).

/Craig

VIP Engager

Re: Wired dot1x for apple devices

If you are using JAMF then join the Macs to AD and then have JAMF configure the MACs to present AD computer credentials just like you do on a Windows device.  No need to even to JAMF MDM integration.