This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Local Administrator account and Extreme NAC

Local Administrator account and Extreme NAC

ExtremeNewbie
New Contributor II

2 weeks ago

Hello Community,

 

Apologies if this question is in the wrong section.

We are using XMC- SE and NAC control in our environment.  We are currently testing User and Machine Authentication via Certificates.  The User and Machine are domain joined and can authenticate as expected.

However, I am finding I cannot authenticate an end user device when I login with a local administrator account.  This makes sense as the settings are setup to use domain joined authentication.

My question is, can local administrator accounts on end user devices somehow be authenticated to give network access?  When I login with the local administrator account, the network drops off after a short time.  In XMC I can see for the local administrator account the message "Rejected NTLM Authentication".

Many thanks,

0 Kudos
15 REPLIES 15

Ryan_Yacobucci
Extreme Employee

2 weeks ago

Hello,

You can set up a username/password in the local password repository that can be used with local admin accounts. The "LDAP Authentication" or "Local Authentication" authentication method in your AAA should both also check the local password repository during the authentication. I don't believe you'll need any additional rules, just add the credentials into the local password repository which can be found in the AAA configurations.

Thanks

-Ryan

GTM-P2G8KFN