In Cisco ISE, what does the term 'MAB' stand for?

The term 'MAB' stands for MAC Authentication Bypass. This authentication method is used primarily for endpoint devices that do not support 802.1X authentication, which is the standard protocol often employed for authenticating devices in a network. MAB allows these devices to be authenticated based on their MAC address instead.

When a device connects to the network and fails to perform 802.1X authentication, the switch or access point can fall back to MAB. The device's MAC address is checked against a database in Cisco Identity Services Engine (ISE), which determines if the device should be granted access to the network based on its identity. This is particularly useful for devices like printers, IP cameras, and other non-user devices that cannot perform standard authentication protocols.

In the broader context of network access, MAB offers a flexible solution to integrate a wider range of devices into a secure environment while maintaining a level of access control through their identity.