Specifications
mac-authentication roaming
519
mac-authentication roaming
Sets communication permissions (roaming) when the port for an authenticated terminal
changes to another port connected via a hub or similar means without a link-down event
occurring.
Syntax
To set or change information:
mac-authentication roaming [action trap]
To delete information:
no mac-authentication roaming
Input mode
(config)
Parameters
[action trap]
When a change to another port due to roaming is detected, a private trap is issued.
Default value when this parameter is omitted:
When a change to another port due to roaming is detected, a private trap is
not issued.
Range of values:
action trap
Default behavior
Communication is not permitted when an authenticated terminal moves to another port.
Impact on communication
None
When the change is applied
The change is applied immediately after setting values are changed.
Notes
1. All MAC-based authentication settings take effect when the mac-authentication
system-auth-control command is set.
2. See Table 24-1 Configuration commands and MAC-based authentication modes for
the authentication mode in which the command's settings are operable.
3. If the destination port is a port in dynamic VLAN mode and the change of port is
within the same VLAN, communication is possible after the change.
4. If the DHCP snooping functionality is also used when this command is set and if the
port of an authenticated terminal changes to another port, the authentication status
also moves to the destination port. However, communication is impossible because
the binding database is not updated.
5. Before issuing private traps, you must use the
snmp-server host command to set
the destination IP address for traps and
mac-authentication.