MAC Address Authentication with Profiler

Devices that have a native 802.1x supplicant or Pulse Client can authenticate themselves using the appropriate credentials (username/password, certificate, token-based, etc) and access the network.

However, devices such as VoIP phones, printers, IP cameras often do not have a supplicant or Pulse client. VoIP phones which support 802.1x can be configured to use 802.1x based authentication.

To allow such devices on the network, the PPS admin can configure MAC Address Authentication server using RADIUS and profile them using Profiler to ensure that only devices of a certain “profile” can access the network.

This document explains how to configure a typical host, such as a VoIP phone, that is not 802.1x enabled to be permitted on the network using MAC address authentication and the native Profiler.