Hello Chad, You will block it based on the method of authentication. Let say you want to do that on the wired, assuming you are doing wired 802.1x EAP PEAP (Computer + User authentication) and if the device does not have 802.1x supplicant it would do Mac authentication.
The simple way to handle that is that you return -1 for the registration role. It would automatically reject unregistered devices doing Mac auth. Thanks, Ludovic Zammit Product Support Engineer Principal Lead Cell: +1.613.670.8432 Akamai Technologies - Inverse 145 Broadway Cambridge, MA 02142 Connect with Us: <https://community.akamai.com/> <http://blogs.akamai.com/> <https://twitter.com/akamai> <http://www.facebook.com/AkamaiTechnologies> <http://www.linkedin.com/company/akamai-technologies> <http://www.youtube.com/user/akamaitechnologies?feature=results_main> > On Jun 12, 2023, at 9:17 AM, Chad Boese via PacketFence-users > <packetfence-users@lists.sourceforge.net> wrote: > > How do I block and audit all machines in PF? I have an Authorization Source > setup for AD, this seems to be working fine. This is the only Authorization > Source setup. If I hook up a test PC that is not part of the domain (I want > to block) - I do not see that PC in nodes. I would like to see that. How can > I get that PC to show up and have it blocked? > > Thanks, > Chad > _______________________________________________ > PacketFence-users mailing list > PacketFence-users@lists.sourceforge.net > https://urldefense.com/v3/__https://lists.sourceforge.net/lists/listinfo/packetfence-users__;!!GjvTz_vk!QTSP9n_iG8vwvN_sixsGayTtKuf1H1vtpcPl0EPHQKdo0kffG-rcdR7jWF2cQWJCyslC2ub5tlE3WoQoi3o_CNlEfcVkwWwoCWGzwA$ >
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users
