Zigbits Network Design Podcast

Today's show is all about Cisco ISE Client Authentication Design with Guest Expert Andy Richter, who is a Security Practice Manager and Distinguished Engineer at Presidio. This episode is a follow up episode from ZNDP # 29 - Cisco ISE Authentication Design!  In this episode we are focusing on the Client Authentication piece of the puzzle.  Andy and I talk about Supplicants, PEAP, EAP-TLS, EAP-Chaining, AnyConnect NAM, and much more! So much Tech in this episode so lets get to it!   Cisco ISE Client Authentication - Methodologies Overview Discussion of general supplicant capabilities and limitations Password vs certificate inner methods Go over TLS tunnel for outer security - Preventing rogue WLANs Server certificate trust design - Wildcard Certs and SAN Certs User vs Machine Cisco ISE Client Authentication - Supplicants Windows Native  GPO PEAP EAP-TTLS EAP-TLS Prevent Guest access Anyconnect NAM MIX methods EAP-Chaining - EAP-fast overview Corp SSID Wired Switching M