Need to prevent unauthorized users from getting IP address from DHCP when connected to our wired network.
In few remote sites we run DHCP for voice & data in the router where only limited users (around 30)are operating. We dont have IT assistance in those sites.
Our business is automotive and we let customers/users to our premise. We need to block the unauthorized user from using our network.
Any configuration can be done in the cisco access switch level?
Thanks in advance...
You can try deploying DHCP snooping.
here is a link for your reference:
I don't think DHCP snooping could prevent users from getting an address from the server as its goal is to prevent unauthorized DHCP servers and eventually rate)limit the client requests.
I think that dot1x should be more appropriate for this case.
I beleive that is the best option for which we require an authentication server. Any other possibility without the AAA server.