Forum Discussion
teams and 802.1x architecture
Hello everyone, We use o365 apps , teams, sharepoint, office tools, azure ad and it's great. The next phase of our o365 project is to move our old legacy telephony and old visiconference system to...
Just a general information as you seem to mix up two totally different things:
** 802.1x is a NETWORK security thing: It prevents (or allows) the hardware device to connect to the network. In other words: Without proper a proper "passport" the network switch will not forward any traffic from the device into the corporate network. This has nothing to do with more detailed info about what applications on this device try to access which hosts on the network, etc..
** Conditional access allows (or prevents) a device (or even more precise the application running on the device!) to LOGIN to network ressources like M365 Teams.
Example: A Teams device like a Teams Phone or a Teams Room System could be easily denied access to your Teams tenant because of Conditional Access failing, but it could still do all kinds of other stupid things on your network because of you simply letting it onto the network instead of approving it via 802.1x.
Hope, this makes things a little clearer for you.
** 802.1x is a NETWORK security thing: It prevents (or allows) the hardware device to connect to the network. In other words: Without proper a proper "passport" the network switch will not forward any traffic from the device into the corporate network. This has nothing to do with more detailed info about what applications on this device try to access which hosts on the network, etc..
** Conditional access allows (or prevents) a device (or even more precise the application running on the device!) to LOGIN to network ressources like M365 Teams.
Example: A Teams device like a Teams Phone or a Teams Room System could be easily denied access to your Teams tenant because of Conditional Access failing, but it could still do all kinds of other stupid things on your network because of you simply letting it onto the network instead of approving it via 802.1x.
Hope, this makes things a little clearer for you.
Many Thanks Harald