220
Syntax
port-security mac-move permit
undo port-security mac-move permit
Default
MAC move is disabled on the device.
Views
System view
Predefined user roles
network-admin
Usage guidelines
This command takes effect on both 802.1X and MAC authentication users.
MAC move allows 802.1X or MAC authenticated users to move between ports on a device. For
example, if an 802.1X-authenticated user moves to another 802.1X-enabled port on the device, the
authentication session is deleted from the first port. The user is reauthenticated on the new port.
If MAC move is disabled, 802.1X or MAC users authenticated on one port cannot pass
authentication after they move to another port.
Examples
# Enable MAC move.
<Sysname> system-view
[Sysname] port-security mac-move permit
Related commands
display port-security
port-security max-mac-count
Use port-security max-mac-count to set the maximum number of secure MAC addresses that port
security allows on a port.
Use undo port-security max-mac-count to restore the default.
Syntax
port-security max-mac-count max-count
undo port-security max-mac-count
Default
Port security does not limit the number of secure MAC addresses on a port.
Views
Layer 2 Ethernet interface view
Predefined user roles
network-admin
Parameters
max-count: Specifies the maximum number of secure MAC addresses that port security allows on
the port. The value range is 1 to 2147483647. Make sure this value is not less than the number of
MAC addresses currently saved on the port.
To Next Page
Loading...
Need help?
General
