This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Does NAC have the capability to identify company issued devices by the certificate installed on them and can NAC mesh with Intune?

Does NAC have the capability to identify company issued devices by the certificate installed on them and can NAC mesh with Intune?

Pierre_Demassey
New Contributor II

‎06-16-2016 05:57 PM

We are trying to see what our options or for identifying mobile devices by the certificate installed on them. We would be using Intune to push group policy settings and a cert. Currently the NAC is setup with AD connectivity. Can a rule be built to catch devices with a company issued cert and also would we need to use a particular auth method? Could we use a captive portal or would we need to use 802.1X?

0 Kudos
1 REPLY 1

Zdeněk_Pala
Extreme Employee

‎06-16-2016 06:12 PM

You can define rules based on 802.1x method = if EAP-TLS and the certificate is from the right CA then access granted as "company owned device". You can also verify the username (from CN) against LDAP for additional distinguishing...
Regards Zdeněk Pala
0 Kudos
GTM-P2G8KFN