02-10-2015 01:17 PM - edited 03-10-2019 10:26 PM
Is it possible to block simultaneous logins by the same user, meaning is userX login on port gi1/0/1 and after that the same user (UserX) is trying to login on a different port, it will be blocked.
02-10-2015 01:59 PM
The policies that you apply on your Radius server would apply to all ports on the switch (unless you have some exceptions), thus it wouldn't matter where the user is connecting as he/she would get "access-reect" thus preventing him/her from getting access to the network.
I hope this helps!
Thank you for rating helpful posts!
02-10-2015 02:03 PM
02-10-2015 02:09 PM
Sorry I did not read your original question correctly. So at the moment, you can only restrict the number of concurrent connections for users that are only going through the web authentication process. If you are using EAP-TLS, PEAP, etc, then there is no method to restrict those users from performing multiple authentications on the network.
Thank you for rating helpful posts!
02-10-2015 02:11 PM
02-10-2015 02:12 PM
Yeah, unfortunately, it is not an option as of the latest version. I know that it has been suggested before so hopefully Cisco will develop this enhancement.
Thank you for rating helpful posts!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide