Hi guys!
This is my first post so I'm sorry if it's on the wrong community.
I've seen a kind of problem when the configuration of 802.1x is applicated to a physical machine with a virtual machine on it. The physical machine works on Windows 8 and the virtual on Windows 7, both (physical and virtual) have installed Endpoint Protection and Network Access Control clients and are connected to the SEPM.
On the switch port I configured the authentication 802.1x and MAB because if isn't configured in this way the port sends an "err-disabled" error. The problem is that SNAC cannot send to the Remediation Subnet the virtual machine if it fail the Host Integrity and still has full access to the protected network.
What can I do to do the check of Host Integrity on both machines and if one fails send both to the Remediation Subnet?
I hope someone can help me.
Greetings!
P.D.: Sorry for my bad english, Google helped me to write this 
.