Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
983
Views
0
Helpful
5
Replies

Support on how to control placement of devices that can not run any agent, such as thin clients, printers, and the like.

Go to solution
zebula
Level 1
Level 1

‎01-05-2011 02:21 PM - edited ‎03-09-2019 11:20 PM

I have a OOB layout that has all the the switch ports controlled by the same profile. I would like to be able to place the thin clients on one network, the printers on another and say unix systems on a different one. Right now I have a filter that lets the thin clients onto the network and they are put on the default access vlan via the port profile. The filter is by MAC address.

Is this the only way we can do this?

Can we put stuff on different networks using this method, if so how?

Any help would be appreciated.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Federico Ziliotto
Cisco Employee
Cisco Employee
In response to zebula

‎01-06-2011 04:48 AM

Hello,

When creating a new filter for a specific MAC/IP, we should select the "Access Type" for that device.

As shown in the attached screenshot (taken from NAC 4.8), we also have the option to define the kind of access based on a specific user role.

Regards,

Fede

--

If  this helps you and/or answers your question please mark the question as  "answered" and/or rate it, so other users can easily find it.

View solution in original post

Preview file
90 KB
0 Helpful
5 Replies 5

Go to solution
Federico Ziliotto
Cisco Employee
Cisco Employee

‎01-06-2011 01:43 AM

Hello,

Through the NAC Appliance only, we'd need to maunually specify each MAC address in the filters and link it to a particular user role/vlan.

The integration of the NAC Profiler would allow more scalable options:

http://www.cisco.com/en/US/docs/security/nac/profiler/configuration_guide/311/p_integration31.html#wp1075255

Regards,

Fede

--

If  this helps you and/or answers your question please mark the question as  "answered" and/or rate it, so other users can easily find it.

0 Helpful

Go to solution
zebula
Level 1
Level 1
In response to Federico Ziliotto

‎01-06-2011 04:22 AM

Fede,

Thanks for the reply.

Next question is how do you link a mac filter to a particular user role?

I must be missing something obvious since I can not locate how you do it.

0 Helpful

Go to solution
Federico Ziliotto
Cisco Employee
Cisco Employee
In response to zebula

‎01-06-2011 04:48 AM

Hello,

When creating a new filter for a specific MAC/IP, we should select the "Access Type" for that device.

As shown in the attached screenshot (taken from NAC 4.8), we also have the option to define the kind of access based on a specific user role.

Regards,

Fede

--

If  this helps you and/or answers your question please mark the question as  "answered" and/or rate it, so other users can easily find it.

Preview file
90 KB
0 Helpful

Go to solution
zebula
Level 1
Level 1
In response to Federico Ziliotto

‎01-06-2011 05:11 AM

Fede,

Thanks for the screen shot. I was looking for the place to associate the filter to the user role, but it only appears when you select either the role or check option, which I did not do.

0 Helpful

Go to solution
Federico Ziliotto
Cisco Employee
Cisco Employee
In response to zebula

‎01-06-2011 05:26 AM

Glad that it helped ;-)

Feel free to ping us back in case you'd need further help with your NAC setup in the future.

Regards,

Fede

--

If  this helps you and/or answers your question please mark the question as  "answered" and/or rate it, so other users can easily find it.

0 Helpful
Customers Also Viewed These Support Documents