In our environment we have two SSID's on a Cisco wireless OOB NAC deployment.
Our secure SSID uses dot1x and passes the credentials via VPN Auth to allow for
NAC Agent auto-logon. On the open SSID users should have to enter their
credentials into the NAC agent manually to logon.
Lately I've noticed some machines logging into the NAC automatically even
though they are on the open SSID. When I look for them in the Certified
Devices List they show up with the "Cisco VPN" as the provider as if they were
on the secure SSID. They are also associated with a user account that has
never been on their machine (this seems quite random). If I kick them off from
the Certified Device List their client will again auto logon with the same user
account being used.
Has anyone seen this behavior or have any idea what could be causing it?
Thanks,
Michael Simpson
Network Engineer
Utah Valley University
