Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2441
Views
0
Helpful
1
Replies

How to Configure MAC Address Filtering in a NPS - Radius (Win2k8 R2) with ASA 5510

David Rodriguez
Level 1
Level 1

‎09-25-2013 02:06 PM - edited ‎02-21-2020 04:59 AM

Hello Everyone,

I am looking for assistance with configuring MAC Address authentication/authorization for VPN clients/Connection using a Cisco ASA 5510 (Cisco Adaptive Security Appliance Software Version 8.4(6) Device Manager Version 7.1(3)) as an Radius Client to a NPS (Radius) Server (Platform = Win2k8 R2). I have already created several NPS Network Policies, Connection Request Policy, VPN Tunnel Groups (on ASA and matching group in AD), and Tunnel Group Policies.  Currently VPN connection can be established and user get authenicated by memebership of the AD groups.  However we would like to authenticate certain group on MAC address.   Thank in advance for everyone's assistance.

0 Helpful
1 Reply 1

Jatin Katyal
Cisco Employee
Cisco Employee

‎10-02-2013 05:21 AM

As far as I know, MAC address control is only available for SSL VPN (clientless and AnyConnect) that leverage CSD to supply this endpoint attributes information to Dynamic Access Policy (DAP).

Unfortunately IPSec doesn't support CSD to take advantage of this.

~BR
Jatin Katyal

**Do rate helpful posts**

~Jatin
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card