ā03-12-2019 07:27 AM - edited ā03-12-2019 07:28 AM
Ciao,
is it possible create a policy in order to block endpoint with static IP address configured in a 802.1x enviroments ?
Thanks
ā03-12-2019 08:22 AM
ā03-12-2019 08:38 AM
ā03-12-2019 11:42 AM
If these are domain joined devices then this should be stripped away by taking away admin rights on their machines or disabling those options via GPO. You could try to profiling on things like:
dhcp-parameter-request-list matches .* or dhcp-class-identifier matches .*
If those exists you could put them into a DHCP_Device profile, but they would only need to do DHCP once to get those attributes populated. If they changed to static IP after the fact they would still look like a DHCP device from a profiling perspective.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide