I'm looking at putting 802.1x into our Access Layer and we specifically want to use User Auth for connections. It's gonna work in conjunction with a visibility tool. So far we are only using Windows NPS.
But what I am realizing is that any user can just bring a device in and use their credentials to authenticate to the switch. Not exactly what I want. I'd like authentications to only be successful when done from a client that is on our domain.
What kind of configuration am I looking for? Cert-based maybe?
No comments:
Post a Comment