cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
909
Views
0
Helpful
1
Replies
Beginner

solution for network device authentication - ACS?

hi everyone --

I'm looking to introduce basic network device authentication into my network of about 650 users. I'm looking for the easiest and least impactful method on the end user.

My thought would be to base this on the MAC address and not user authentication. Should this be able to be done through basic port-security on my switches or should I look at ACS?

*the main impetus for this is to deny access to any unauthorized wired device on the LAN.

Thanks.

Brandon

Everyone's tags (1)
1 REPLY 1
Beginner

Re: solution for network device authentication - ACS?

If your users remain connected to the same ports on switches, and don't move to different ports, you could use port security with sticky mac learning to automatically assign appropriate allowed mac addresses to switch ports. If on the other hand you don't know to which port the users will connect, you'll have to use ACS or ISE with MAB to authenticate access.

Sent from Cisco Technical Support iPad App