Hi All! I heard that you can put your NAC device into learning mode to get an idea as to what comes onto the network but I am unsure how to do this? I would like to do this in my lab environment to see how it works. Can anyone give me instructions?
We do this by the following way. We activate MAC Auth at all ports via Policy Manager and create a Rule "Allow All". In NAC we create a Profile with Response of this Policy "Allow All". Then we create a rule and put in this Profile. So you can see all Clients behind you Switch Ports and in the first step they will be allowed to connect. In other steps you can create End-System Groups and other criteria and do an authentication.