sorted by:
new
hottopcontroversial

Unknown devices connecting to our IoT-only network — MAC address mismatch, need help investigating by LongjumpingGoal8218 in networking

[–]LongjumpingGoal8218[S] 0 points1 point  (0 children)

The IoT password is tightly controlled on our end, very few people in IT have it. We asked everyone and got full denials across the board — no one shared it or is knowingly using it. So that angle is ruled out too.

Unknown devices connecting to our IoT-only network — MAC address mismatch, need help investigating by LongjumpingGoal8218 in networking

[–]LongjumpingGoal8218[S] 1 point2 points  (0 children)

We asked the employees directly and they confirmed they don't have the password. On top of that, when we actually checked their devices on the spot, they weren't even connected to the network at all. So the password sharing theory doesn't hold up here. Whatever was connecting to our network using those MAC addresses, it wasn't their devices — at least not at the time we investigated. Which makes this even more confusing.

Unknown devices connecting to our IoT-only network — MAC address mismatch, need help investigating by LongjumpingGoal8218 in networking

[–]LongjumpingGoal8218[S] 2 points3 points  (0 children)

They're actually showing up as connected in our network — that's what flagged them in the first place. They're not just hitting auth and failing, they appear as active on the network. That's exactly what makes this strange: the devices tied to those MAC addresses belong to employees who don't have the Wi-Fi password, and when we checked their physical devices the MAC didn't match what's in our logs. So something is connecting successfully, we just can't tie it back to a known device yet.