We are in the process of refreshing our campus network. Currently we have everyone subnetted out, staff, printers, byod, security, phones, ect. We are going to be coming with aruba CX switches and tunneling everything back to clearpass. So the question got brought up about resubnetting.
There has been talk of making 1 big subnet and letting clearpass handling all of the policy stuff so one group of devices can talk to another group if they do not have permissions. All the rules would be set up in clearpass, 802.1x would be used on both wired and wireless.. the goal is that someone would have the same experience/rules with their same account regardless if they were on wired or wireless.
This seems like a crazy idea to me and I dont seem to fond of it but wanted to get other peoples opinions if you have done something like this.
No comments:
Post a Comment