I want to restrict access to 6500 ports to known MAC addresses. I know I can't use port security, nor can I apply an MAC layer ACL to the port, so I'm going to try 802.1x and/or MAC authentication bypass.
There is a potential for hundreds of MAC addresses to enter into the ACS, but only a few vendors supply the NICs. Instead of entering in individual MAC addresses in either the NGP or the username/password fields, can I use wild cards or masks like 00:1C:C4:00:00:00 00:00:00:FF:FF:FF to mask for all MACs that start with 00:1C:C4?
Or a username/password like 00:1C:C4:xx:xx:xx?
Is there any way to do this?