Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
575
Views
0
Helpful
3
Replies

cisco ise 1.3 - how authenticate a nad to a network

Go to solution
Augustgood
Level 1
Level 1

‎08-17-2015 11:41 PM - edited ‎03-10-2019 10:59 PM

hi,

can be possible authenticate a nad ( switch , wlc , etc) to a network like an endpoint? who can send to me a config guide or a link that explain the config ? this for limiting rogue device connected to a network.

thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions
3 Replies 3

Go to solution
Kanwaljeet Singh
Cisco Employee
Cisco Employee

‎08-18-2015 12:30 PM

Hi Nicoles,

 

NAD is like a switch, wlc, routers and you add them in ISE/ACS and authenticate them using pre-shared key. If that doesn't match, authentication fails. That is the only way i know of.

 

If you are getting requests from device which are not added in the device groups etc, then you will get a log message. If shared secret is invalid, you will get a log message for that too.

 

Regards,

Kanwal

Note: Please mark answers if they are helpful.

0 Helpful

Go to solution
Augustgood
Level 1
Level 1
In response to Kanwaljeet Singh

‎08-18-2015 11:50 PM

Hi 

The pre-shared key are used for management access to switch/router etc and for authenticate user to network, but i'd like to know if can be possible authenticate the device itself.

Fo example if you connect a device (like switch etc) on a network if there is a pre-shared or not the device can comunicate...

 

0 Helpful

Go to solution
aukhadiev
Level 1
Level 1
In response to Augustgood

‎08-19-2015 03:33 AM

Hi,

you can use Network Edge Authentication Topology (NEAT):

http://www.cisco.com/c/en/us/support/docs/lan-switching/8021x/116681-config-neat-cise-00.html

0 Helpful
Customers Also Viewed These Support Documents