ā02-27-2022 04:28 AM
Hello ;
actually, I'm setting up wireless authentication On cisco ISE 3.0 with 802.1X MS-CHAPv2 and MAB, but it's not working.
my objective it's authenticating users based on the username/password and MAC for this I apply it to the authentication Policy.
I'm sure that I'm doing something incorrectly.
find attached the policy that I created.
can you please help me create this correctly?
Best regards
Younes
Solved! Go to Solution.
ā02-27-2022 05:09 AM
@ezzaariyouness change the policy set condition to Wireless_8021x OR Wireless_MAB, the supplicant is only ever going to do one at time.
If you want to combine valid Username/Password (802.1x) and MAC address, then use an Identity Group that lists all the valid MAC addresses, then on the Authorisation Policy combine an AD Group AND the Identity Group.
ā02-27-2022 05:09 AM
@ezzaariyouness change the policy set condition to Wireless_8021x OR Wireless_MAB, the supplicant is only ever going to do one at time.
If you want to combine valid Username/Password (802.1x) and MAC address, then use an Identity Group that lists all the valid MAC addresses, then on the Authorisation Policy combine an AD Group AND the Identity Group.
ā03-01-2022 07:08 AM
Thank Rob , it's work now .
best regards
Younes
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide