i will deploy SNAC as lan enforce mode,but some question are confused.
1.if i use lan enforcer,i need change NAC client to PEAP authentication.but my DC is Win server 2003,and client is win XP Sp2,what is the best practise setting PEAP authentication properties of all NAC client.
2.if i enable MAB in the enforcer,the device whose mac address in MAB DB will enforcing to which vlan.