02-10-2021 03:18 PM - edited 07-05-2021 01:13 PM
Hello
we are migrating a wireless environment to EWC running in a AP1815I and it is integrating in a RADIUS server Windows NPS.
Previous wireless solution was Aruba, where there was an option "enforce machine authentication" which enforced the user AND the machine to be authenticated by NPS in order to get access to wifi environment.
Does anyone know if I can set this option in EWC too?
Thank you
Marcos
Solved! Go to Solution.
02-11-2021 12:15 AM
I don't believe there's a Cisco equivalent on any of the wireless platforms; the assumption is that all 802.1X Auths are performed and enforced by the Authentication server which in this case is going to be windows NPS box and can also be combined with group policy if you control that part.
Machine Access Restriction (MAR) can achieve this but that requires Cisco ISE to be deployed in lieu of windows NPS. I don't think NPS can do it.
Ric
02-11-2021 12:15 AM
I don't believe there's a Cisco equivalent on any of the wireless platforms; the assumption is that all 802.1X Auths are performed and enforced by the Authentication server which in this case is going to be windows NPS box and can also be combined with group policy if you control that part.
Machine Access Restriction (MAR) can achieve this but that requires Cisco ISE to be deployed in lieu of windows NPS. I don't think NPS can do it.
Ric
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide