beardog1113
asked on
necessary of deploy 802.1x in our network LAN
hello Experts
in our network we are using Cisco 3560 as core switch, Cisco 2950 as access switch for users, for more and more unauthorized computer connecting to our network, so company management board ask me to limit unauthorized computer connecting to our LAN. and we have MS Active Directory environment, one is window 2003 domain and the other one is windows 2008 domain, so l have the following question about this topic
1. does Cisco ACS is necessary for 802.1x authentication?
2. does it possible authenticate computer object of AD, not user object?
3. could you give me some links and examples for deploy 802.1x in our LAN on Cisco platform?
thank you
in our network we are using Cisco 3560 as core switch, Cisco 2950 as access switch for users, for more and more unauthorized computer connecting to our network, so company management board ask me to limit unauthorized computer connecting to our LAN. and we have MS Active Directory environment, one is window 2003 domain and the other one is windows 2008 domain, so l have the following question about this topic
1. does Cisco ACS is necessary for 802.1x authentication?
2. does it possible authenticate computer object of AD, not user object?
3. could you give me some links and examples for deploy 802.1x in our LAN on Cisco platform?
thank you
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
perfect
I would not use static IP addresses, I would use DHCP.
I would consider using certificates for machine based authentication, this is far more secure than using static addresses and simpler to manage.