Security

last person joined: 4 hours ago 

Enterprise security using ClearPass Policy Management, ClearPass Security Exchange, IntroSpect, VIA, 360 Security Exchange, Extensions and Policy Enforcement Firewall (PEF).

Authentication with LACP

  • 1.  Authentication with LACP

    Posted Jun 12, 2019 11:28 AM

    I understand that LACP (802.3ad) provides redundancy and bandwidth benefits, but one drawback I've seen is that security (specifically, 802.1X) cannot be applied on the ports.  Is this a limitation due to LACP, 802.1X, device implementations of LACP/802.1X, or the switch implementation?  Is there a timeline to provide those features together?

     

    As a poor-man's security workaround, can MAC-Auth be implemented for ports with LACP?  Even if it means authenticating both Eth0 and Eth1 mac addresses individually?

     

    I appreciate any insights...