Solved: Re: Laptops cannot move around office on switch- Mac gets stuck on original port

JeffreyGriffin1505 · ‎04-07-2020

Hello,

I am currently experiencing issues across a stack of 3750 Switches.

Version: c3750e-universalk9-mz.152-4.E9.bin

When an end user takes their laptop and walks to another office in the building they are unable to connect. We check the mac address-table and the switch says the mac is on the original port that the end user was working from. I can also verify this by our Forescout appliance saying it is on the old port as well. I have to clear the mac address table and turn the original port on and off for the end user's laptop to show up on the new port.

Current Port Configs:

interface Gigabitethernet1/0/6

description User Interface

Switchporot access vlan 159

switchport mode access

switchport voice vlan 158

authentication host-mode multi-domain

authentication order mab dot1x

authentication priority dot1x mab

authentication port-control auto

authentication periodic

mab

dot1x pae authenticator

spanning-tree portfast egde

!

Is there something that i am missing or need to tweak to make end users able to plug in to any port on the switch without getting blocked?

Thank you very much!

pieterh · ‎04-08-2020

Hm... I see no port-security statements in your current config?

try adding "authentication mac-move permit" at the global configuration level

View solution in original post

pieterh · ‎04-08-2020

Hm... I see no port-security statements in your current config?

try adding "authentication mac-move permit" at the global configuration level

JeffreyGriffin1505 · ‎04-16-2020

That seems to have fixed the issue!!!

Thank you so much!!!