149
Set the sticky MAC aging timer
port-security timer autolearn aging time-
value
Optional
By default, sticky MAC
addresses do not age out,
and you can remove them
only by performing the
undo port-security mac-
address security
command, changing the
port security mode, or
disabling the port security
feature.
Configure a
secure MAC
address
port-security mac-address security [ sticky ]
mac-address interface interface-type
interface-number vlan vlan-id
Required
Use either approach
No secure MAC address
is configured by default.
In Layer 2
Ethernet
interface view
interface interface-type interface-number
port-security mac-address security [ sticky ]
mac-address vlan vlan-id
Ignoring authorization information from the server
The authorization information is delivered by the RADIUS server to the device after an 802.1X user or
MAC authenticated user passes RADIUS authentication. You can configure a port to ignore the
authorization information from the RADIUS server.
Follow these steps to configure a port to ignore the authorization information from the RADIUS server:
Enter Layer 2 Ethernet interface
view
interface interface-type interface-
number
Ignore the authorization
information from the RADIUS
server
port-security authorization ignore
Required
By default, a port uses the
authorization information from the
RADIUS server.
Displaying and maintaining port security
Display port security configuration
information, operation
information, and statistics about
one or more ports or all ports
display port-security [ interface
interface-list ] [ | { begin |
exclude | include } regular-
expression ]
To Next Page
Loading...
Need help?
General