This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Remove the MAC address restriction list.

Remove the MAC address restriction list.

Go to solution
peter_stephens
New Contributor

‎08-30-2018 10:09 AM

We currently use HiveManager 8.2r2 with MAC address restriction and use this in conjunction with a RADIUS rule that require domain account authentication on the SSID. Ideally we would like to be able to restrict via a method for both domain user and something related to the hardware.

 

Any help gratefully received

0 Kudos
1 ACCEPTED SOLUTION

Go to solution
GeorgiaMason
Contributor II

‎08-31-2018 01:02 PM

I just tried to set up a Radius auth SSID with MAC auth on the same SSID (using NG) but it only allows me to use one Radius server. Changing the server in once place also changes the server in the second part of the configuration. You could theoretically use Radius auth with a MAC filter. But you might want to use a firewall or content filter for any large amount of MAC filtering so you aren't putting extra work on the APs.

View solution in original post

0 Kudos
3 REPLIES 3

Go to solution
GeorgiaMason
Contributor II

‎08-31-2018 01:02 PM

I just tried to set up a Radius auth SSID with MAC auth on the same SSID (using NG) but it only allows me to use one Radius server. Changing the server in once place also changes the server in the second part of the configuration. You could theoretically use Radius auth with a MAC filter. But you might want to use a firewall or content filter for any large amount of MAC filtering so you aren't putting extra work on the APs.

0 Kudos

Go to solution
peter_stephens
New Contributor

‎08-31-2018 08:27 AM

We use it with both at the moment, so the devices MAC has to be in the MAC list, and then the RADIUS rule prompts the user for credentials to authenticate as well

 

So, we would remove any authentication on the Aerohive side, and just configure RADIUS to use a cert and a username and password, right?

0 Kudos

Go to solution
samantha_lynn
Esteemed Contributor III

‎08-30-2018 08:22 PM

We can do Radius authentication with certificate authentication, so the client device would have to submit Radius credentials and their machine would need the proper certification installed on it in order for clients to connect. I'm not sure we can have a set up that requires Radius credentials and MAC Auth, as MAC auth uses the MAC address of the device in place of a username and password rather than in tandem with a username and password.

0 Kudos
GTM-P2G8KFN