C613-50631-01 Rev A Command Reference for IE340 Series 2266
AlliedWare Plus™ Operating System - Version 5.5.3-0.x
AUTHENTICATION COMMANDS
AUTH
-MAC ENABLE
auth-mac enable
Overview This command enables MAC authentication on the interface specified in the
Interface command mode.
Use the no variant of this command to disable MAC authentication on an interface.
Syntax
auth-mac enable
no auth-mac enable
Default MAC-Authentication is disabled by default.
Mode Interface Configuration for a static channel, a dynamic (LACP) channel group, or a
switch port; or Authentication Profile mode.
Usage notes Enabling spanning-tree edgeport on ports after enabling MAC authentication
avoids unnecessary re-authentication when the port state changes, which does
not happen when spanning tree edgeport is enabled. Note that re-authentication
is correct behavior without spanning-tree edgeport enabled.
Applying switchport mode access on ports is also good practice to set the ports
to access mode with ingress filtering turned on, whenever ports for MAC
authentication are in a VLAN.
If you attempt to change the authentication configuration on an interface that has
threat protection quarantine configured, you will see the following error message:
Before changing the interface’s authentication configuration you must either:
• remove the interface’s threat protection configuration, or
• shut down the interface.
Examples To enable MAC authentication on interface port1.0.2 and enable spanning tree
edgeport to avoid unnecessary re-authentication, use the following commands:
awplus# configure terminal
awplus(config)# interface port1.0.2
awplus(config-if)# auth-mac enable
awplus(config-if)# spanning-tree edgeport
awplus(config-if)# switchport mode access
To disable MAC authentication on interface port1.0.2, use the following
commands:
awplus# configure terminal
awplus(config)# interface port1.0.2
awplus(config-if)# no auth-mac enable
% portx.x.x: Application Proxy quarantine configuration must be
removed before port authentication is changed
To Next Page
Loading...
Need help?
General
