Blocking devices that use Randomized MAC Addresses to connect to SSID





I will block devices that are connected to an SSID that they are not supposed to, but because they have randomization turned on, they can get a fresh MAC address and reconnect. Devices are BYOD so I can't force people to turn it off in their settings.
Comments
-
Their is nothing you can do about the device that Randomized MAC it can not be known that it is random MAC only that its a new MAC.
One way to deal with this is a MAC filter of allowed MAC's but if thats not a option nothing anyone can do about it.
0 -
I believe randomized MAC addresses have 2, 6, A or E as their second digit. So it'd be nice if there is a setting to deny connection from devices with MAC addresses starting with *2, *6, *A, or *E.
0 -
Hi @Linda,
We will evaluate this idea. However, it is recommended to use:
- 802.1x for authentication. (If your model supports 802.1x)
- MAC authentication to allow know MAC address. (Require to learn the MAC addresses of accepted devices.)
Zyxel Melen0
Categories
- All Categories
- 439 Beta Program
- 2.8K Nebula
- 196 Nebula Ideas
- 121 Nebula Status and Incidents
- 6.3K Security
- 475 USG FLEX H Series
- 312 Security Ideas
- 1.6K Switch
- 82 Switch Ideas
- 1.3K Wireless
- 45 Wireless Ideas
- 6.8K Consumer Product
- 283 Service & License
- 446 News and Release
- 88 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.3K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 93 Security Highlight