05-23-2021 01:42 PM
Hello all, my question will be very simple (maybe).
Before i implement authentication with ISE ppl could do a remote desktop to their machine if they were at home.
After the implementation with 802.1x, they can no longer do RDP to there machines when the PC enters in the hibernate mode.
What can i do to mitigate this kind of behavior?
Solved! Go to Solution.
05-24-2021 02:16 PM
It is dot1x expected behavior to block by default the port to only permit CDP-LLDP-EAP-STP traffic when the session is not yet authorized. In such case, you can try to have a pre-auth (port) ACL to permit RDP connection to the PC.
Otherwise, you can also use open mode (not recommended) to allow such traffic when port/session is not yet authorized.
05-23-2021 03:41 PM
See a similar conversation here - Unable to RDP to Windows Desktop after dot1x enabled
05-24-2021 02:16 PM
It is dot1x expected behavior to block by default the port to only permit CDP-LLDP-EAP-STP traffic when the session is not yet authorized. In such case, you can try to have a pre-auth (port) ACL to permit RDP connection to the PC.
Otherwise, you can also use open mode (not recommended) to allow such traffic when port/session is not yet authorized.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide