Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 8 replies
  • Answers 2 answers
  • Subscribers 28 subscribers
  • Views 19727 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Client Less authentication with MAC?

JensStraten

I have assigned my network printer that is using a static IP as a client less user which seems to work great. However, I am wondering about mobile devices (phones and tablets). While I understand that there is an SSO client for them, I would prefer a client less solution.

Why can't we use a MAC address for that?

If that's not possible, what are other people using? Is everybody using the SSO client?

Thanks,

Jens



This thread was automatically locked due to age.
Parents
  • 0

    JensStraten said:

    I have assigned my network printer that is using a static IP as a client less user which seems to work great. However, I am wondering about mobile devices (phones and tablets). While I understand that there is an SSO client for them, I would prefer a client less solution.

    Why can't we use a MAC address for that?

    If that's not possible, what are other people using? Is everybody using the SSO client?

    Thanks,

    Jens

    The problem with MAC addresses is that they can be cloned and changed (such as in the XG Firewall).  Plus, depending on how a device connects to your network, it will have a different MAC address (one for Ethernet, once for Wi-Fi, one for Bluetooth, etc).  This can change the way security is handled for that device depending on how it is connected to your network.

    For a device like a central printer that will probably only ever be connected by ethernet, MAC addressing is a decent solution, but you need to a system or procedure to watch for cloned MAC addresses.

Reply
  • 0

    JensStraten said:

    I have assigned my network printer that is using a static IP as a client less user which seems to work great. However, I am wondering about mobile devices (phones and tablets). While I understand that there is an SSO client for them, I would prefer a client less solution.

    Why can't we use a MAC address for that?

    If that's not possible, what are other people using? Is everybody using the SSO client?

    Thanks,

    Jens

    The problem with MAC addresses is that they can be cloned and changed (such as in the XG Firewall).  Plus, depending on how a device connects to your network, it will have a different MAC address (one for Ethernet, once for Wi-Fi, one for Bluetooth, etc).  This can change the way security is handled for that device depending on how it is connected to your network.

    For a device like a central printer that will probably only ever be connected by ethernet, MAC addressing is a decent solution, but you need to a system or procedure to watch for cloned MAC addresses.

Children
No Data