Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1104
Views
3
Helpful
4
Replies

Configure macsec on 8500

Go to solution
heba-elsherbiny
Level 1
Level 1

‎03-23-2024 03:47 AM

I have Cisco 8500 router with IOS 17.9

i can't find command line to configure macsec / mka

do i need additional license for this ?

#sh ver
Cisco IOS XE Software, Version 17.09.03a
Cisco IOS Software [Cupertino], c8000aep Software (X86_64_LINUX_IOSD-UNIVERSALK9-M), Version 17.9.3a, RELEASE SOFTWARE (fc2)

 

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
liviu.gheorghe
VIP
VIP
In response to heba-elsherbiny

‎03-23-2024 06:35 AM

From the output provided, I can see that you don't have any DNA subscriptions activated on the router - this is the reason you cannot find the command for activating MACsec..

You can try activating the perpetual licenses that are present usually on the device with the following command:

license boot level network-essentials addon dna-essentials

save the configuration and reload the router. If the perpetual licenses are present on the router, then after the reload you should have the MACsec commands available.

You can verify that the licenses are activated on the router with the show license usage command.

Regards, LG
*** Please Rate All Helpful Responses ***

View solution in original post

4 Replies 4

Go to solution
liviu.gheorghe
VIP
VIP

‎03-23-2024 06:01 AM

Hello @heba-elsherbiny ,

MACsec support require a DNA Essentials or DNA Advantage subscription activated on the router. You can verify what licenses are activated on the router with the show license usage command.

Hope this helps.

Regards, LG
*** Please Rate All Helpful Responses ***

Go to solution
heba-elsherbiny
Level 1
Level 1
In response to liviu.gheorghe

‎03-23-2024 06:26 AM

so this the output of show license on my device 

#show license summary
Account Information:
Smart Account: <none>
Virtual Account: <none>

License Usage:
License Entitlement Tag Count Status
-----------------------------------------------------------------------------
Router US Export Lic... (DNA_HSEC) 0 NOT IN USE

0 Helpful

Go to solution
liviu.gheorghe
VIP
VIP
In response to heba-elsherbiny

‎03-23-2024 06:35 AM

From the output provided, I can see that you don't have any DNA subscriptions activated on the router - this is the reason you cannot find the command for activating MACsec..

You can try activating the perpetual licenses that are present usually on the device with the following command:

license boot level network-essentials addon dna-essentials

save the configuration and reload the router. If the perpetual licenses are present on the router, then after the reload you should have the MACsec commands available.

You can verify that the licenses are activated on the router with the show license usage command.

Regards, LG
*** Please Rate All Helpful Responses ***

Go to solution
johneofficial
Level 1
Level 1

‎10-23-2024 07:34 AM

for me this command did not work

license boot level network-essentials addon dna-essentials

I went with license boot level network-advantage
add-on dna-advantage and i was able to enable macsec on my 8500

0 Helpful
Customers Also Viewed These Support Documents