Buy or Renew
Buy or Renew
NEW: Try the Beta AI Summary feature on posts in the Routing and SD-WAN forum. Click to go to the forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4747
Views
1
Helpful
3
Replies

802.1x preauth ACL

Go to solution
Isaiah
Level 2
Level 2

‎02-18-2021 06:36 AM

Is it possible to configure a pre-authentication ACL for interfaces configured with wired 802.1x authentication? I would like to have selective network access allowed in the state prior to successful authentication, and then overridden by a dACL granting full access if/when authentication passes.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Philip D'Ath
Meraki Community All-Star
Meraki Community All-Star

‎02-18-2021 10:47 AM

No. You can just change the VLAN.

View solution in original post

3 Replies 3

Go to solution
Philip D'Ath
Meraki Community All-Star
Meraki Community All-Star

‎02-18-2021 10:47 AM

No. You can just change the VLAN.

Go to solution
Isaiah
Level 2
Level 2
In response to Philip D'Ath

‎02-18-2021 02:48 PM

Okay. Is any traffic at all (DHCP / DNS / PXE / etc.) allowed to pass on the switchport prior to authentication? Or is an unauthenticated endpoint completely isolated?

0 Helpful

Go to solution
Philip D'Ath
Meraki Community All-Star
Meraki Community All-Star
In response to Isaiah

‎02-18-2021 02:51 PM

Completely isolated unless you configure a guest VLAN and authentication does not occur.

0 Helpful
Customers Also Viewed These Support Documents