dev-made · March 20, 2025 12:15 · Jun 29, 2022 · May 30, 2022 · May 30, 2022
diff --git a/randomized-mac-addresses-options.md b/randomized-mac-addresses-options.md
@@ -6,6 +6,8 @@ From an I.T op perspective, this may cause DHCP pool exhaustion issues.
 
 From a user perspective, they may not know what issues this may cause, besides a "I can't connect to the network anymore" issue.
 
+This maybe of interest too, https://github.com/SystemJargon/mac-changer
+
 ----
 
 ## Mitigation:

diff --git a/randomized-mac-addresses-options.md b/randomized-mac-addresses-options.md
@@ -38,7 +38,7 @@ New-ItemProperty -Path "$RegPath\$($Key.PSChildName)" -Name "NetworkAddress" -Va
 
 ----
 
-Windows Registry Edit
+Windows Registry Edit to disable randomize mac address feature
 
 ```
 

diff --git a/randomized-mac-addresses-options.md b/randomized-mac-addresses-options.md
@@ -0,0 +1,65 @@
+## Randomized MAC addresses
+
+Most modern client devices may now support, random hardware address aka randomized mac addresses.
+
+From an I.T op perspective, this may cause DHCP pool exhaustion issues. 
+
+From a user perspective, they may not know what issues this may cause, besides a "I can't connect to the network anymore" issue.
+
+----
+
+## Mitigation:
+
+Lowering the DCHP lease time might mitigate this issue to some degree.
+
+Adopt FastRoaming or even OpenRoaming (the latter being part of Cisco DNA Spaces, now adopted as an industry standard for seamless Wi-Fi onboarding)
+
+Implement policies on company or owned devices, i.e. to turn off MAC randomization for the company-owned devices or BYOD devices if the company policy allows it.
+
+Ask users to turn off MAC randomization on their devices where and if possible.
+
+----
+
+Powershell Script to disable randomize mac address feature
+
+```
+
+$WiFi = Get-NetAdapter -Name "Wi-Fi"
+
+$RegPath = "HKLM:\SYSTEM\CurrentControlSet\Control\Class\{4D36E972-E325-11CE-BFC1-08002BE10318}"
+
+($Key = Get-ItemProperty -Path "$RegPath\*" -Name "AdapterModel") 2> $Null
+
+If ($Key.AdapterModel -eq $WiFi.InterfaceDescription){
+
+New-ItemProperty -Path "$RegPath\$($Key.PSChildName)" -Name "NetworkAddress" -Value $($WiFi.MacAddress) -PropertyType String -Force}
+
+```
+
+----
+
+Windows Registry Edit
+
+```
+
+1. Win+R, run regedit.exe
+
+2. Locate the network adapter configuration that was configured with the random mac address feature in
+HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Class\{4D36E972-E325-11CE-BFC1-08002BE10318}
+The network adapter maker's name can suggest the proper subfolder of {4D36E972-E325-11CE-BFC1-08002BE10318}.
+
+3. Right-click on the folder that matches your device. For example, if the "0001" folder matches your device, right-click on the folder. Select New → String Value. Name the new value "NetworkAddress".
+
+4. Double-click the new Network Address entry. In the "Value data" field, enter your new MAC address. MAC addresses are 12-digit values, and should be entered without any dashes or colons. For example, if you want to make the MAC address "2A:1B:4C:3D:6E:5F", you would enter "2A1B4C3D6E5F"
+
+5. Restart the computer. You will notice in the wifi adapter advanced configuration settings that the random mac address option is greyed out.
+
+```
+
+----
+
+References
+
+https://support.microsoft.com/en-us/windows/how-to-use-random-hardware-addresses-in-windows-ac58de34-35fc-31ff-c650-823fc48eb1bc
+
+https://documentation.meraki.com/General_Administration/Cross-Platform_Content/Meraki_and_iOS_14_MAC_Address_Randomization