Re: Apple MacBook MAC Filter

Andrey23 · ‎01-06-2020

Hello,

I need to filter Apple MacBook and alow it connect to corp SSID.

My corp SSID have 802.1x auth with NPS server.

Who can suggest me what to do?

Filter the MAC address on the NPS? create new SSID and filter on the WLC?

I have WLC 2504

BR,

Scott Fella · ‎01-06-2020

I don’t understand what you mean? You want MacBooks to connect to 802.1x and not any other SSID? You only want MacBooks to connect to 802.1x and not any other?

-Scott
*** Please rate helpful posts ***

Andrey23 · ‎01-07-2020

I would like to have 1 corp SSID.

All WIN users will authenticate with 802.1x and AppleMAC with MAC FILTER.

Scott Fella · ‎01-07-2020

When you have one Corp SSID, there is no reason to have multiple types of ways to authenticate as that complicates your overall implementation. If you have one SSID, dot1x, then you should just allow all devices to authenticate via dot1x. To have dot1x and then add a Mac filter list to only allow certain MacBooks, doesn’t make sense. You should have a rule for WIN machines to use computer authentication and or tap-tls and then another rule that uses Mac filter that allows any other devices.

-Scott
*** Please rate helpful posts ***

Andrey23 · ‎01-13-2020

you talking about rules on NPS?

BR

Scott Fella · ‎01-13-2020

Yes so you have a single point to manage.

-Scott
*** Please rate helpful posts ***