[x]

Configuring port security > Enabling MAC move

 

 Next

Enabling MAC move

About MAC move

MAC move allows 802.1X or MAC authenticated users to move between ports on a device. For example, if an authenticated 802.1X user moves to another 802.1X-enabled port on the device, the authentication session is deleted from the first port. The user is reauthenticated on the new port.

If MAC move is disabled, 802.1X or MAC users authenticated on one port cannot pass authentication after they move to another port.

802.1X or MAC authenticated users cannot move between ports on a device if the number of online users on the authentication server (local or remote) has reached the upper limit.

Restrictions and guidelines

As a best practice, enable MAC move for users that roam between ports to access the network.

Procedure

  1. Enter system view.

    system-view

  2. Enable MAC move.

    port-security mac-move permit

    By default, MAC move is disabled.

prev

 

up

 next

Ignoring authorization information from the server 

home

 Enabling the authorization-fail-offline feature

© Copyright 2017 Hewlett Packard Enterprise Development LP