In the "AOS-CX 10.07 Security Guide(8xxx Switch Series" manual it states:
"A MACsec policy can be applied to a physical interface port that is not part of any LAG ports or to a lag port."
In the data sheet: Aruba CX 6300 Switch Series Data Sheet (arubanetworks.com), manual it states:
Security: MACsec with EAP-TLS
In: AOS-CX 10.10.0002 Release Notes 6300, 6400 Switch Series, it states:
Security: AOS-CX improvements enable EAP-TLS based MACsec. It is supported on select models
with MACsec-enabled ports. (6300 Switch series only)
MACsec Support for switch-switch MACSec through PSK, dot1x supplicant instead of PSK, and
dot1x authenticator to enable colorless port for MACSec. The feature is supported on
select 6300 switches which have MACSec capable ports. (6300 Switch series only)
In our: JL661A 6300M 48G CL4 PoE 4SFP56 Swch
I am not allow either:
(config-if)# interface 2/1/51
(config-if)# apply macsec policy MACsec-policy
MACsec is not supported on the interface.
(config)# interface lag 1
(config-lag-if)# apply macsec policy MACsec-policy
MACsec is not supported on interfaces 1/1/52 that are members of the LAG.
These interfaces will be blocked until either the MACsec policy is
removed from the LAG or the interface is removed from the LAG.
Continue (y/n)? n
What am I missing..? please anyone
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2021 Hewlett Packard Enterprise Development LPAll Rights Reserved.