I think for that scenario you need to use machine authentication.
From: luca comes [mailto:[email protected]]
Sent: Monday, May 29, 2017 3:12 PM
To: [email protected]
Subject: [PacketFence-users] mab+802.1x authentication
Hi all,
I succesfully configured last release of PF with Cisco Catalyst 3750G to
perform 802.1x authentication over my AD Domain.
I'm studying the solution because the intention is to deploy it on all my
sites (more or less 15 sites and 1000 users). Actually the server is located
on our datacenter in out-of-band deployment and locally on my test site I've
configured registration and isolation VLAN even if they are not used in
802.1x environment. The problem now is that I need to permit AD
authentication on PC's where credentials are not in client's cache but at
the begininning neither IP traffic nor DHCP is permitted so users can't
access the network. I thought that a solution could be perform to factor
authentication so at the start of the process I could use MAB authentication
and put them on the registration VLAN opened to access the AD. But then I
need to do 802.1x user authentication without pass through the registration
portal, is that possible? Is there a better way to deploy a solution like
that?
Thank you in advance
Luca
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
