cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

109
Views
5
Helpful
2
Replies
Beginner

IPSK without MAC address

I would like to use IPSK  and I undestrood it works like this:

-I will configure one only common SSID
-user who will connect to IPSK_SSID and use PSK_123   will be connected to VLAN  123
-user who will connect to IPSK_SSID and use PSK_456   will be connected to VLAN  456

-user who will connect to IPSK_SSID and use PSK_789   will be connected to VLAN  789

And this will be great.

 

What is not clear to me is: before any user will be able to use PSK_XXX  do  I need to know  his  MAC address?

Is it really mandatory to know their mac address   before they will be able to connect to the IPSK  SSID ?

Is there any way to bypass this with a wildcard that acceprt any mac and checks only  PSK  to decide to admit or not the clients?
My goal is to admit all clients that have the correct PSK   because (for many reasons)  I'm not able to produce a coplete database of all mac address they have now and particularly I'm not able to foresee what mac they will have in the future. 


Thank you in advance for your help

Everyone's tags (2)
2 REPLIES 2
Highlighted
VIP Advisor

Re: IPSK without MAC address

Hi

 Yes, you do. There´s no wild card for mac address as it can change significantly according with the vendor.

 

This link below will drive you very very well on this configuration, including RADIUS. 

https://ripplesinharmony.wordpress.com/2019/03/11/implementing-cisco-ipsk-with-ise/

 

-If I helped you somehow, please, rate it as useful.-

Rising star

Re: IPSK without MAC address

Correct you need to add their MAC addresses to your RADIUS server before they can connect. No wildcards unfortunately.

Keep an eye out as Cisco was talking about releasing something around on boarding IOT devices for this use case to save having to manually adding every MAC address. This was mentioned at MFD4

 

 

 

*****Help out other by using the rating system and marking answered questions as "Answered"*****
*** Please rate helpful posts ***
CreatePlease to create content
Content for Community-Ad
August's Community Spotlight Awards