11-07-2018 11:44 AM
Hi All
My customer wants to filter out devices which don't have Anyconnect or NAC Agent on them. If AC/Agent is installed, it should communicate to AD for domain logon. Otherwise device should not be able to access any resource.
To sum up, customer doesn't want any device to communicate Active directory even for logon, if it doesn't have AC or NAC Agent.
How can we deal with this request?
Thanks
Solved! Go to Solution.
11-07-2018 12:05 PM
11-07-2018 12:05 PM
11-07-2018 12:15 PM
Thanks Tim
Do you mean EAP Chaining with AC? Or directly cert auth with limited access?
11-07-2018 12:26 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide