HPE FlexNetwork 7500 Series Security Configuration Manual page 253

[Device] interface gigabitethernet 1/0/1
[Device-GigabitEthernet1/0/1] dot1x mandatory-domain sun
[Device-GigabitEthernet1/0/1] quit
3. Configure port security:
# Enable port security.
[Device] port-security enable
# Add five OUI values. (You can add up to 16 OUI values. The port permits only one user
matching one of the OUIs to pass authentication.)
[Device] port-security oui index 1 mac-address 1234-0100-1111
[Device] port-security oui index 2 mac-address 1234-0200-1111
[Device] port-security oui index 3 mac-address 1234-0300-1111
[Device] port-security oui index 4 mac-address 1234-0400-1111
[Device] port-security oui index 5 mac-address 1234-0500-1111
# Set the port security mode to userLoginWithOUI.
[Device] interface gigabitethernet 1/0/1
[Device-GigabitEthernet1/0/1] port-security port-mode userlogin-withoui
[Device-GigabitEthernet1/0/1] quit
Verifying the configuration
# Verify that GigabitEthernet 1/0/1 allows only one 802.1X user to be authenticated.
[Device] display port-security interface gigabitethernet 1/0/1
Global port security parameters:
Port security
AutoLearn aging time
Disableport timeout
MAC move
Authorization fail
NAS-ID profile
Dot1x-failure trap
Dot1x-logon trap
Dot1x-logoff trap
Intrusion trap
Address-learned trap
Mac-auth-failure trap
Mac-auth-logon trap
Mac-auth-logoff trap
OUI value list
Index :
Index :
Index :
Index :
Index :
GigabitEthernet1/0/1 is link-up
Port mode
NeedToKnow mode
Intrusion protection mode
Security MAC address attribute
Learning mode
: Enabled
: 30 min
: 30 s
: Denied
: Online
: Not configured
: Disabled
: Disabled
: Disabled
: Disabled
: Disabled
: Disabled
: Disabled
: Disabled
:
1 Value : 123401
2 Value : 123402
3 Value : 123403
4 Value : 123404
5 Value : 123405
: userLoginWithOUI
: Disabled
: NoAction
: Sticky
239