As title says, I’m looking to enable dot1x on our Nexus 9K (don’t ask, I didn’t choose them at access layer) switches that act as radius clients for ISE 2.4. I’ve read that monitor mode is the way to go when starting these deployments so you gain visibility before making decisions on who/how to restrict access. The problem is my code of NX-OS (7.0.3) doesn’t run MAB so I have no fallback if say the device has no supplicant. Or do I? Other than upgrading to code 9.x that has the MAB feature is there any other way I could run this deployment in monitor mode?
Only think I can think of is just not running dot1x on ports for sure don’t have modern day supplicants.
Thanks!
No comments:
Post a Comment