cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
701
Views
0
Helpful
3
Replies

Mac Address Bypass on Cisco Nexus N9K-C93180YC-EX

PutmanoAIT
Level 1
Level 1

I planned to deploy Cisco ISE as 802.1X and MAB authentication server in our environment. We have two units of Cisco N9K-C93180YC-EX version 9.2.2 running as server Switches. We would like to configure MAC Address Bypass authentication on connect to Server which running as Trunk and vPC. I'm not sure whether MAC Address Bypass does support on Nexus Trunk and vPC or not. Does anyone have experienced with that?

 

 

1 Accepted Solution

Accepted Solutions

gbekmezi-DD
Level 5
Level 5

From the link below:

Note

Dot1x supports static port-channels.


Note

You must disable 802.1X on FEX and VPC ports, and the unsupported features.

 

https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/7-x/security/configuration/guide/b_Cisco_Nexus_9000_Series_NX-OS_Security_Configuration_Guide_7x/b_Cisco_Nexus_9000_Series_NX-OS_Security_Configuration_Guide_7x_chapter_011001.htm...

 

Tells me what you want to do is unsupported with VPC, but will work if it's just a static trunk.

View solution in original post

3 Replies 3

gbekmezi-DD
Level 5
Level 5

From the link below:

Note

Dot1x supports static port-channels.


Note

You must disable 802.1X on FEX and VPC ports, and the unsupported features.

 

https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/7-x/security/configuration/guide/b_Cisco_Nexus_9000_Series_NX-OS_Security_Configuration_Guide_7x/b_Cisco_Nexus_9000_Series_NX-OS_Security_Configuration_Guide_7x_chapter_011001.htm...

 

Tells me what you want to do is unsupported with VPC, but will work if it's just a static trunk.

Thank Gbekmazi.

 So it's not support even we configure it on the physical ports(member of the vPC)?


@gbekmezi-DD wrote:

From the link below:

Note

Dot1x supports static port-channels.


Note

You must disable 802.1X on FEX and VPC ports, and the unsupported features.

 

https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/7-x/security/configuration/guide/b_Cisco_Nexus_9000_Series_NX-OS_Security_Configuration_Guide_7x/b_Cisco_Nexus_9000_Series_NX-OS_Security_Configuration_Guide_7x_chapter_011001.htm...

 

Tells me what you want to do is unsupported with VPC, but will work if it's just a static trunk.



Thank Gbekmezi.

 So it's not support even we configure it on the physical ports(member of the vPC)?

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: