In the "AOS-CX 10.07 Security Guide(8xxx Switch Series" manual it states:
"A MACsec policy can be applied to a physical interface port that is not part of any LAG ports or to a lag port."
In the data sheet: Aruba CX 6300 Switch Series Data Sheet (arubanetworks.com), manual it states:
Security: MACsec with EAP-TLS
In: AOS-CX 10.10.0002 Release Notes 6300, 6400 Switch Series, it states:
- Enhancements for 6300 and 6400 Switches in AOS-CX 10.10.0002
Security: AOS-CX improvements enable EAP-TLS based MACsec. It is supported on select models
with MACsec-enabled ports. (6300 Switch series only)
MACsec Support for switch-switch MACSec through PSK, dot1x supplicant instead of PSK, and
dot1x authenticator to enable colorless port for MACSec. The feature is supported on
select 6300 switches which have MACSec capable ports. (6300 Switch series only)
In our: JL661A 6300M 48G CL4 PoE 4SFP56 Swch
I am not allow either:
(config-if)# interface 2/1/51
(config-if)# apply macsec policy MACsec-policy
MACsec is not supported on the interface.
Nor:
(config)# interface lag 1
(config-lag-if)# apply macsec policy MACsec-policy
MACsec is not supported on interfaces 1/1/52 that are members of the LAG.
These interfaces will be blocked until either the MACsec policy is
removed from the LAG or the interface is removed from the LAG.
Continue (y/n)? n
What am I missing..? please anyone