cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
349
Views
0
Helpful
1
Replies

ISE Machine authentication

eng.malak
Level 1
Level 1

Hi

i enabled machine authentication for windows machine but i have some MAC OSX laptop that authenticate with MS AD that i need to exclude form MAR , i tried to apply specific auhz policy but every time it fails because of MAR  , any idea ?  

1 Reply 1

nspasov
Cisco Employee
Cisco Employee

One way you could do this is to utilize profiling. You can then create a policy that authorizes MACs without forcing them to go against the MAR check.

On the other hand, if your MACs are joined to your domain then you can eliminate MAR and simply perform PEAP (machine) based authentication for both your MACs and Windows machines. 

You could also create a special rule for MACs that authenticate via PEAP (User) based authentication

Hope this helps!

 

Thank you for rating helpful posts!