Working on a project, need to restricted access to a network. end users that our domain joined, as well as mobile users, can access the network. i.e "users that have the Cisco any connect app" using AD credentials.
What would be best practice for restricting access for the mobile users?
These are some methods I have come across.
MDM Server - This would not work in this case, due to the fact that most of the devices are not owned by the company.
Profiling in ISE - Not sure if this works how I am thinking it would.
Any input in the would be greatly appreciated.
With ISE you can create an enrolment portal for certificates, for non domain joined devices.