[c-nsp] NAC/802.1x and multiple users on one port

Bernard Wanyama bwanyama at syntechug.com
Mon Sep 14 10:12:31 EDT 2015


Hi,

Web authentication seems to be the best choice here.
It definitely reduces the client NAC checks you can do.

Kind regards,
Bernard


On 14 September 2015 at 03:15, Raymond Lucas (AP) <
Raymond.Lucas at dimensiondata.com> wrote:

> Rob,
>
> I haven’t used it, but Per Session VLAN Assignment might help you out here.
>
> If you can’t find anything on CCO, search for 802.1x and/or “identity
> based networking” on ciscolive.com.
>
> Ray
>
> From: cisco-nsp [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of
> Robert Hass
> Sent: Monday, 14 September 2015 6:31 a.m.
> To: cisco-nsp at puck.nether.net
> Subject: [c-nsp] NAC/802.1x and multiple users on one port
>
>
>
> Hi
> I have scenario where for each port on my Catalyst (Cat3650) are connected
> unmanageable small switch (8 ports cheap HP). Can I still use 802.1x and
> NAC (ISE) for this particular port ? If yes, how filtering is done ? ACLs ?
> I assume that guest-VLAN/quarantine-VLAN cannot be used in this
> configuration.
>
> Rob
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net<mailto:
> cisco-nsp at puck.nether.net>
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>
>
> itevomcid
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>


More information about the cisco-nsp mailing list