So to confirm, the native supplicant can do machine/user authentication, these are 2 independant authentications. If you want to tie these authentications together (EAP-Chaining) then @Mike.Cifelli is correct you'll need EAP-FAST with AnyConnect supplicant.
What exactly are you looking to achieve?
Ok thanks for clarifying. The only other option (that I am aware of) is using MAR. This will combine both machine and user authentications. This useful link provides the pros and cons of using MAR, pay attention to MAR and Wired-wireless Switching section. I find this one of the main reasons not to use MAR.
hi @Mike.Cifelli ,
If I use NAM module, there is no dependencies for the licensing right, this module is free? Also, if I use it then in a scenario of if my endpoint goes to sleep or goes for a logoff, does it still do machine and user authentication upon logging in or I still need to reboot my machine to initiate the machine authentication?