Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1040
Views
0
Helpful
2
Replies

MAC Authentication on Catalyst 3550/2950

nohare
Level 1
Level 1

‎02-18-2004 03:15 AM - edited ‎02-21-2020 10:09 AM

Hi

I have a requirement similar to the way APs use MAC authentication on the ACS/RADIUS box. I want the switch to authenticate a "sensed" MAC address on a switchport using RADIUS. I assume that on RADIUS you'd have a list of MAC-Address "users" and when the switch queries the ACS for authenication it returns a success or failure.

.

Also, if this configurable, what happens to the port if the authentication fails (invlaid/unknown MAC). Does is shutdown for a period of time

.

Am I touching on a feature of Port Security here? I assumed port security only allowed local MAC address tables for that switch....ideally, I'd like the MACs on the ACS server as users where it is a lot easier to manage

Any suggestions on how I can get this working ?

Regards

Nathan

Labels:
0 Helpful
2 Replies 2

seanm
Level 1
Level 1

‎02-18-2004 11:34 AM

This can be handled with port security/802.1x.

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat2950/12119ea1/2950scg/sw8021x.htm#1063385

The action taken in the event of a violation (failed authentication) is configurable.

0 Helpful

zhichao
Level 1
Level 1
In response to seanm

‎04-12-2005 11:03 PM

I have the same requirement. We want to use ACS for MAC authentication.

Sean, your solution still requires the MAC to be on the switch locally instead of ACS, since it is still port security.

regards

0 Helpful
Customers Also Viewed These Support Documents