https://live.paloaltonetworks.com/t5/general-topics/802-1x-wired-authenicaton-with-ms-ca-and-paloalto/m-p/233455#M66942 <P>Hello,</P><P>Unfortunatly no. The PAN is not a RADIUS server nor a NAC device. As for enforcer, not sure what you mean by that since if the client fails 802.1x authentication, their traffic is blocked at the switch port and the traffic will never get to the PAN.&nbsp;</P><P>&nbsp;</P><P>Hope that helps.</P> Tue, 02 Oct 2018 21:05:19 GMT OtakarKlier 2018-10-02T21:05:19Z https://live.paloaltonetworks.com/t5/general-topics/802-1x-wired-authenicaton-with-ms-ca-and-paloalto/m-p/233193#M66889 <P>Dear Sir,</P><P>I am beginner in 802.1x authenication and paloalto.So please help explained and guide.</P><P>I want to use 802.1x with MS CA.Can i use paloalto firewall as a policy enforcer for 802.1x authenication ?</P><P>can use PA as a radius server for user log and mornitor ?</P><P>&nbsp;</P> Mon, 01 Oct 2018 13:47:39 GMT https://live.paloaltonetworks.com/t5/general-topics/802-1x-wired-authenicaton-with-ms-ca-and-paloalto/m-p/233193#M66889 crypto 2018-10-01T13:47:39Z https://live.paloaltonetworks.com/t5/general-topics/802-1x-wired-authenicaton-with-ms-ca-and-paloalto/m-p/233455#M66942 <P>Hello,</P><P>Unfortunatly no. The PAN is not a RADIUS server nor a NAC device. As for enforcer, not sure what you mean by that since if the client fails 802.1x authentication, their traffic is blocked at the switch port and the traffic will never get to the PAN.&nbsp;</P><P>&nbsp;</P><P>Hope that helps.</P> Tue, 02 Oct 2018 21:05:19 GMT https://live.paloaltonetworks.com/t5/general-topics/802-1x-wired-authenicaton-with-ms-ca-and-paloalto/m-p/233455#M66942 OtakarKlier 2018-10-02T21:05:19Z