Ok Fellas.... Of course I knew when I posted to the site that I was inquiring about a Microsoft product. And secondly when people have networking issues they don't call Microsoft first. Perhaps I should have worded my question differently. I'm looking for support (or a reasonable arguement against) having network issues addressed using both platforms. I, of course as a Network Engineeer favor all things Cisco and the like. As far as dot1x goes the certificate authority and md5 give me pause and difficulty with implementation. And lastly my good people, my question is how to better thwart unauthorized machines with ISA that are not governed by its policies. If the ISA server can not push policy to them what is ISA able to do with those machines? Forgive me...our SR guy talks the talk and while there is room to share on our network, but I guess I'm just looking for a more clarification of how to best integrate this solution into our Cisco network (not the other way around). Thanks in advance for fielding a Network Engineer's questions. Dorothy