Filter
Top Products
Overview of Security Methods
Accessing Local Management 3-21
3.4.4 MAC Authentication Control
This global variable can be set to enabled or disabled.
If set to enabled, then
a. MAC Authentication is active on those ports whose individual port-enabled variable is set to
enabled.
b. All session and statistic information is reset to defaults.
c. Any MAC addresses currently locked to ports are unlocked.
If set to disabled, then
a. MAC Authentication stops for all ports.
b. All active sessions are terminated with the cause portAdminDisabled.
c. All policies are applied to ports as a result of a MAC Authentication reverting to the ports
default policy, if any.
d. All ports currently authenticated using 802.1X, are unaffected.
e. Any 802.1X ports, which were set to forced-unauth, revert back to discarding all frames
regardless of the MAC Authentication state.
Force
Unauthoriz
ation
Enabled No No Don’t
Care
• MAC performs authentication.
• Frames are discarded.
Force
Unauthoriz
ation
Disabled Don’t
Care
Don’t
Care
Don’t
Care
• Neither method performs
authentication.
• Frames are discarded.
Table 3-3 MAC / 802.1X Precedence States (Continued)
802.1X
Port
Control
MAC
Port
Control
Authen-
ticated?
Default
Policy
Exists?
Autho-
rized
Policy
Exists?
Action