Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1784
Views
4
Helpful
2
Replies

vpn group authentication with acs 5.3 and MAC client vpn authentication

ngo duyen
Level 1
Level 1

‎08-03-2012 02:55 AM - edited ‎03-10-2019 07:22 PM

I have try "vpn group authentication with acs 5.2" and it work well.

https://supportforums.cisco.com/thread/2081161

Now I want to config addition condition, I want  ACS check MAC address of computer which

initialize connection to vpn server before accept vpn connection.

I use End Station filter with the MAC address but I have failed. When I check "Monitoring and report" in ACS, ACS check public IP of vpn client as MAC address.

Could you check the problem ?

Is there any way to do the requirement ?

thanks

Duyen.

Labels:
Preview file
75 KB
Preview file
46 KB
0 Helpful
2 Replies 2

Tarik Admani
VIP Alumni
VIP Alumni

‎08-03-2012 09:58 AM

Hi,

You can not check the mac address of a vpn client because the calling-station-id appears as the ip address of the client and not the mac address. The calling station id is the mac address in dot1x deployments.

Thanks,

Tarik Admani
*Please rate helpful posts*

ochalmers
Level 1
Level 1
In response to Tarik Admani

‎11-04-2013 12:51 PM

Hi Tarik, i have a situation like this, is there a way to use the mac address as a variable for the authentication of the users.

Regards

Oscar

0 Helpful
Customers Also Viewed These Support Documents