How can we secure these ports? This is the main questions.
To clarify further the user case with assumption that both switches are configured and working fine with Clearpass, here is an example
A small office has 4 users "PCs" that are all connected to CIsco SF302-08P Workgroup switch with 8 ports. This switch support dot1.x. and itself is connected "up link" to another CISCO switch "Edge" that is located in a secure Cabinet.
What if a person sneak to the office and remove the cable "up link" that connect to the edge switch and plug it in his/her notebook. He/she will be able to access the LAN with a forced authorization and by pass Clearpass.
Is there a way to configure the edge switch port that is located in the secured cabinet?
Thanks a lot.