err-disable WS-X45-SUP7L-E' switch model.

ddesai · ‎06-20-2023

I have recently configured port security in all ports only two ports error-disable and after i have shut no shut but no luck. I tried mode auto and full duplex but no luck.

anyone can help?

ddesai · ‎06-20-2023

More information

I have allowed max 10 Mac address till my ports are going on error-disable only two ports devices connected one is phone and PC

ddesai · ‎06-20-2023

Still issue is not resolved please help me

MHM Cisco World · ‎06-20-2023

Can I see the config

ddesai · ‎06-20-2023

Following configuration all ports are working properly except two ports.

switchport access vlan XX
switchport mode access
switchport voice vlan XXX
switchport port-security maximum 10
switchport port-security mac-address sticky
switchport port-security
auto qos voip cisco-softphone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Softphone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy

ddesai · ‎06-20-2023

Shutdown ports command applied but did not show in configuration, if i will remove switch port-security than ports are two ports working good which i was facing issue, when I will enable port security on two port its going immediately on error-disable and after bounce port its disable after 1 mini and same error.

ddesai · ‎06-20-2023

I got following error

%PORT_SECURITY-2-PSECURE_VIOLATION: Security violation occurred, caused by MAC address xxxxxxxx on port GigabitEthernet2/10.
Jun 20 14:16:03 pdt: %SYS-5-CONFIG_I: Configured from console by xxxxxxx on vty5 (x.x.x.x)
Jun 20 14:16:09 pdt: %LINK-3-UPDOWN: Interface GigabitEthernet2/10, changed state to up

MHM Cisco World · ‎06-20-2023

switchport port-security mac-address sticky <<- change the mode to dynamic

Then

Show run

no switchport port-security mac-address xxxx.xxxx.xxxx

This way you clear mac from port.

ddesai · ‎06-21-2023

I got PC and phone mac address

but after remove sticky command when i do show run only i can see following configuration

interface GigabitEthernet5/46
switchport access vlan xx
switchport mode access
switchport voice vlan xx
switchport port-security maximum 10
auto qos voip cisco-softphone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Softphone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy
!

ddesai · ‎06-20-2023

Thanks let me try

ddesai · ‎06-20-2023

How can I configure dynamic mode?
There is no dynamic mode

MHM Cisco World · ‎06-20-2023

Only remove

switchport port-security mac-address sticky

The mode will be default which is dynamic

Then as I mention above

Show run

And remove sticky mac in show run

Note:- done forget shut/no shut port to get out from errdisable status

ddesai · ‎06-20-2023

Instead of sticky we will need to define MAC Address?

ddesai · ‎06-20-2023

Here issue is I have allowed 10 MAC address and on port connected only 2 devices than why port is going to error disable ? other port are applying switchport port-security maximum 10 command no issue only two ports are facing issue?

ddesai · ‎06-21-2023

Thanks for helping me this.

I have done as per you update me but no luck, After I have default port and do again configuration as per follow but still ports was going to error-disable.

switchport access vlan XX
switchport mode access
switchport voice vlan XXX
switchport port-security maximum 10
switchport port-security mac-address sticky
switchport port-security
auto qos voip cisco-softphone
spanning-tree portfast edge
spanning-tree bpduguard enable
service-policy input AutoQos-4.0-Cisco-Softphone-Input-Policy
service-policy output AutoQos-4.0-Output-Policy