802.1x is your friend here.
Certificates can be assigned by your domain CA and authenticated against it.
You can also configure your CA to set the certificates as non-exportable to prevent "sharing".
If you restrict network access at L2, L3+ is a moot point.
Certificates can be assigned by your domain CA and authenticated against it.
You can also configure your CA to set the certificates as non-exportable to prevent "sharing".
If you restrict network access at L2, L3+ is a moot point.
Jim Harrison
I absolutely hate "the cust...
[ more ]