Brocade Communications Systems Brocade ICX 6650 6650 User Manual
Brocade ICX 6650 Security Configuration Guide
231
53-1002601-01
Chapter
9
Multi-Device Port Authentication
lists the multi-device port authentication features supported on Brocade ICX 6650. These
features are supported in the Layer 2, base Layer 3, edge Layer 3, and full Layer 3 software
images, except where explicitly noted.
images, except where explicitly noted.
Multi-device port authentication is a way to configure a Brocade device to forward or block traffic
from a MAC address based on information received from a RADIUS server.
from a MAC address based on information received from a RADIUS server.
How multi-device port authentication works
Multi-device port authentication is a way to configure a Brocade device to forward or block traffic
from a MAC address based on information received from a RADIUS server.
from a MAC address based on information received from a RADIUS server.
TABLE 54
Supported Multi-device port authentication (MDPA) features
Feature
Brocade ICX 6650
Multi-Device Port Authentication
Yes
Support for Multi-Device Port
Authentication together with:
Authentication together with:
•
Dynamic VLAN assignment
Yes
•
Dynamic ACLs
Yes
•
802.1X
Yes
•
Denial of Service (DoS) attack
protection
protection
Yes
•
Source guard protection
Yes
•
ACL-per-port-per-VLAN
Yes
Authenticating multiple MAC addresses on
an interface
an interface
Yes
Specifying the format of the MAC
addresses sent to the RADIUS server
addresses sent to the RADIUS server
Yes
Specifying the authentication-failure
action
action
Yes
Password override
Yes
Specifying the RADIUS timeout action
Yes
SNMP Traps
Yes
MAC Address Filters
Yes
Aging time for blocked MAC Addresses
Yes