"The resource assets in this website may include abbreviated and/or legacy terminology for HPE Aruba Networking products. See www.hpe.com for current and complete HPE Aruba Networking product lines and names."

Beginning Nov 15, 2021, the Networking Forums moved to the Airheads community

HPE Aruba Networking & ProVision-based

1834646 Members

2282 Online

110069 Solutions

New Discussion

Aruba 2530, 802.1x, mab and address-limit

Hello!

I need to configure port-security for 1 mac-address per port on Aruba 2530 switch with 802.1x or mab (mac-access-bypass) enabled.

1.. The main command port-security %port-number% address-limit %mac-count% is not compatible with 802.1x

2. Command aaa port-access authenticator %port-number% client-limit %mac-count% is not working for mab clients and aaa port-access mac-based %port-number% addr-limit %mac-count% i is not working for 802.1x, so there 2 devices working together.

So is it possible to create a limitation with 1 mac per port with 802.1x and mab?

My config:

untagged vlan 826
port-security action send-alarm
aaa port-access authenticator
aaa port-access authenticator reauth-period 900
aaa port-access authenticator auth-vid 1
aaa port-access authenticator unauth-period 10
aaa port-access authenticator client-limit 1
aaa port-access mac-based
aaa port-access mac-based quiet-period 30
aaa port-access mac-based reauth-period 900
aaa port-access mac-based unauth-period 10
aaa port-access mac-based unauth-vid 828
aaa port-access auth-order authenticator mac-based
aaa port-access auth-priority authenticator mac-based
spanning-tree admin-edge-port
spanning-tree root-guard bpdu-protection pvst-protection

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Aruba 2530, 802.1x, mab and address-limit

Aruba 2530, 802.1x, mab and address-limit