https://community.cisco.com/t5/network-access-control/port-disabled/m-p/3810418#M484795 <P>I have this issue and could not figure out why it is happening&nbsp;</P> <P>&nbsp;</P> <UL> <LI>sho int Gi4/0/16 <BR />GigabitEthernet4/0/16 is down, line protocol is down<STRONG> (err-disabled)</STRONG></LI> </UL> <P>&nbsp;</P> <UL> <LI>interface GigabitEthernet4/0/16<BR />switchport access vlan 20<BR />switchport mode access<BR />switchport voice vlan 50<BR />device-tracking<BR />authentication host-mode multi-domain<BR />authentication open<BR />authentication order dot1x mab<BR />authentication priority dot1x mab<BR />authentication port-control auto<BR />mab<BR />trust device cisco-phone<BR />dot1x pae authenticator<BR />dot1x timeout tx-period 10<BR />storm-control broadcast level 0.10<BR />storm-control multicast level 0.10<BR />auto qos voip cisco-phone <BR />spanning-tree portfast<BR />spanning-tree bpduguard enable<BR />service-policy input AutoQos-4.0-CiscoPhone-Input-Policy<BR />service-policy output AutoQos-4.0-Output-Policy</LI> </UL> <P>&nbsp;</P> <P>switch log</P> <UL> <LI>Feb 26 12:25:33.129: %PM-4-ERR_DISABLE: security-violation error detected on Gi4/0/16, putting Gi4/0/16 in err-disable state</LI> <LI>Feb 26 12:25:33.133: %AUTHMGR-5-SECURITY_VIOLATION: Security violation on the interface GigabitEthernet4/0/16, new MAC address (9890.96c2.2eed) is seen.AuditSessionID Unassigned</LI> <LI>Feb 26 12:25:34.130: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet4/0/16, changed state to down</LI> </UL> Tue, 26 Feb 2019 22:56:46 GMT BigK 2019-02-26T22:56:46Z https://community.cisco.com/t5/network-access-control/port-disabled/m-p/3810418#M484795 <P>I have this issue and could not figure out why it is happening&nbsp;</P> <P>&nbsp;</P> <UL> <LI>sho int Gi4/0/16 <BR />GigabitEthernet4/0/16 is down, line protocol is down<STRONG> (err-disabled)</STRONG></LI> </UL> <P>&nbsp;</P> <UL> <LI>interface GigabitEthernet4/0/16<BR />switchport access vlan 20<BR />switchport mode access<BR />switchport voice vlan 50<BR />device-tracking<BR />authentication host-mode multi-domain<BR />authentication open<BR />authentication order dot1x mab<BR />authentication priority dot1x mab<BR />authentication port-control auto<BR />mab<BR />trust device cisco-phone<BR />dot1x pae authenticator<BR />dot1x timeout tx-period 10<BR />storm-control broadcast level 0.10<BR />storm-control multicast level 0.10<BR />auto qos voip cisco-phone <BR />spanning-tree portfast<BR />spanning-tree bpduguard enable<BR />service-policy input AutoQos-4.0-CiscoPhone-Input-Policy<BR />service-policy output AutoQos-4.0-Output-Policy</LI> </UL> <P>&nbsp;</P> <P>switch log</P> <UL> <LI>Feb 26 12:25:33.129: %PM-4-ERR_DISABLE: security-violation error detected on Gi4/0/16, putting Gi4/0/16 in err-disable state</LI> <LI>Feb 26 12:25:33.133: %AUTHMGR-5-SECURITY_VIOLATION: Security violation on the interface GigabitEthernet4/0/16, new MAC address (9890.96c2.2eed) is seen.AuditSessionID Unassigned</LI> <LI>Feb 26 12:25:34.130: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet4/0/16, changed state to down</LI> </UL> Tue, 26 Feb 2019 22:56:46 GMT https://community.cisco.com/t5/network-access-control/port-disabled/m-p/3810418#M484795 BigK 2019-02-26T22:56:46Z https://community.cisco.com/t5/network-access-control/port-disabled/m-p/3810532#M484797 <P>Hi,please shut the port than on the port type no switchport port-security and no shut the port.</P> Wed, 27 Feb 2019 05:50:47 GMT https://community.cisco.com/t5/network-access-control/port-disabled/m-p/3810532#M484797 ognyan.totev 2019-02-27T05:50:47Z https://community.cisco.com/t5/network-access-control/port-disabled/m-p/3810549#M484830 Hi,<BR /><BR />Can you try the command 'authentication mac-move permit'?<BR /><BR />**** Please remember to rate useful posts<BR /> Wed, 27 Feb 2019 06:13:26 GMT https://community.cisco.com/t5/network-access-control/port-disabled/m-p/3810549#M484830 Mohammed al Baqari 2019-02-27T06:13:26Z https://community.cisco.com/t5/network-access-control/port-disabled/m-p/3810569#M484831 <P>I had the same issue where I was doing dot1x for an endpoint where was behind an IP&nbsp;phone. My workaround is to add:</P> <P>&nbsp;</P> <P><STRONG>authentication violation replace</STRONG></P> <P>&nbsp;</P> <P>&nbsp;</P> Wed, 27 Feb 2019 06:54:30 GMT https://community.cisco.com/t5/network-access-control/port-disabled/m-p/3810569#M484831 socratesp1980 2019-02-27T06:54:30Z