Nauman,
If this helps simplify what you are trying to do, you can deploy MAB - MAC
Authentication Bypass. Although its still part of 802.1X, this is only a
Cisco proprietary extension of the protocol that would not require any
client configuration, certificates and AD configuration with ACS. All that
is required is a list of MAC address of the clients in question, although a
RADIUS server is still required.
FreeRADIUS would do the job for you ;-)
HTH,
Sadiq
On Sat, Sep 5, 2009 at 2:42 PM, Ryan West <rwest_at_zyedge.com> wrote:
> If this is a windows domain, you can deploy IAS for free. At most you
> may need to extend your schema to support the more feature rich GPO
> options.
>
> Sent from handheld.
>
> On Sep 5, 2009, at 5:44 AM, "Nauman Habib" <mrnauman_at_gmail.com> wrote:
>
> > Its not a very big network, but as its a new setup
> >
> > they are going to have 2 core - 4500
> >
> > and 3750PoE switches
> >
> > So there is a possibility that i do not include ACS and instead use
> > VMPS -
> > and save cost.
> >
> > Regards,
> >
> > Nauman
> >
> >
> > Blogs and organic groups at http://www.ccie.net
> >
> > _______________________________________________________________________
>
>
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>
>
-- CCIE #19963 Blogs and organic groups at http://www.ccie.netReceived on Sat Sep 05 2009 - 16:07:53 ART
This archive was generated by hypermail 2.2.0 : Sun Oct 04 2009 - 07:42:02 ART