But now I want to block unauthorized computers to login in our network, for example, we have some computers outside the domain, so I can't use radius authentication for domain computers.
We have our 802.1x configured to authenticate against a Windows NPS server. The policy verifies both user and computer. That configuration would meet your above requirement. If you just have your 802.1x configured to authenticate a domain user then conceptually a domain user could connect via a non domain joined computer.
Adam R MS | CISSP, CISM, VCP, MCITP, CCNP, ITILv3, CMNO If this was helpful click the Kudo button below If my reply solved your issue, please mark it as a solution.