Restricting access to Nondomain devices
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎01-19-2016 05:00 AM
Hi everyone,
Followed this article to restrict access to non-domain devices.
https://extremeportal.force.com/ExtrArticleDetail?an=000082958
But I want to assign a different role to non-domain devices other than placeholder rule. Is it possible?
1 REPLY 1
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎01-19-2016 06:14 AM
The Placeholder rule is just a temporary rule that will be assigned to all 802.1X devices. this would be your non-domain devices. However, when a device first comes in, we do not know if it is a domain or non-domain device, until we do the reverse DNS lookup, so everything gets put into this rule. Later, once we know that it is a domain device, we will reauthenticate the device and it will run through the ruleset and get the earlier rule for Domain Computers or Domain Users. This only applies to 802.1X devices. if you also use MAC authentication you will need additional rules to handle that.