I would like some inoput on this, I am implementing a cisco 5.1 ACS server for wire based port security.
I can get it working but the trouble is that the computers try to reauthenticare when ever a user logs on. but I only want them to authenticare to insure the machine is authenticed. I don't care about the user..
One thing I have not done is set up certificates, but I am thinking this might be the way.
Does any one know how I go about doing this. I have 1500+ PC's (windoes 2000, and various service packed XP)and the aim is stright forward.
If the PC belongs to us then it gets authenticated, if it is not ours then it does not.
I know you can set up machine only authentication but this would be a pain for all the various systems.
Any one have any ideas? I also want as little user intervention as possible.