Cisco CCNA Certification Exam Tutorial PortBased Authentication

Cisco Certification

Cisco Certification Central

Home | Article List | Submit An Article | Contact Us

Cisco CCNA Certification Exam Tutorial PortBased Authentication

To pass your CCNA exam and earn this coveted certification, you must understand the details of port-based authentication. This knowledge has a great deal of value in production networks as well, since this authentication scheme is regularly implemented. Let's take a look at this particular CCNA skill.

Consider a situation where you have a server that will be connected to your switch, and you want the port to shut down if a device with a different MAC address that that of the switch attempts to connect to that port. You could also have a situation where you have someone who has a connection to a switch port in his office, and he wants to make sure that only his laptop can use that port.

Both of these examples are real-world situations, and there are two solutions for each. First, we could create a static MAC entry for that particular switch port. I don't recommend this, mainly because both you and I have better things to do than manage static MAC entries. The better solution is to configure port-based authentication on the switch.

The Cisco switch uses MAC addresses to enforce port security. With port security, only devices with certain MAC addresses can connect to the port successfully. This is another reason source MACs are looked at before the destination MAC is examined. If the source MAC is non-secure and port-based authentication is in effect, the destination does not matter, as the frame will not be forwarded. In essence, the source MAC address serves as the password.

MAC addresses that are allowed to successfully communicate with the switch port are secure MAC addresses. The default number of secure MAC addresses is 1, but a maximum of 132 secure MACs can be configured.

Cisco CCNA CCNP Certification Exam Review Protocol Basics
Cisco CCNA / CCNP Certification Exam Review: Protocol Basics To earn your Cisco CCNA certification and pass the BSCI CCNP exam, you have to know your protocol basics like the back of your hand! To he..


When a non-secure MAC address attempts to communicate with the switch port, one of three actions will occur, depending on the port security mode. In Protect mode, frames with non-secure MAC addresses are dropped. There is no notification that a violation has occurred. The port will continue to switch frames for the secure MAC address.

In Restrict mode, the same action is taken, but a syslog message is logged via SNMP, which is a messaging protocol used by Cisco routers.

In Shutdown mode, the interface goes into error-disabled state, the port LED will go out, and a syslog message is logged. The port has to be manually reopened. Shutdown mode is the default port-security mode.

Port-based authentication is just one of the many switching skills you'll have to demonstrate to earn your CCNA certification. Make sure you know the basics shown here, including the action of each particular mode, and you're on your way to CCNA exam success!

Cisco CCNA Certification and Career Path
Cisco CCNA Certification and Career Path Following your computer training toward your career path, you can go for the CCNA certification (Cisco Certified Network Associate), which indicates a foundat..


Chris Bryant, CCIE #12933, is the owner of The Bryant Advantage, home of freeCCNA andCCNP tutorials, The Ultimate CCNA Study Package, and Ultimate CCNP Study Packages.

You can also join his RSS feed and visit his blog, which is updated several times daily with new Cisco certification articles, free tutorials, and daily CCNA / CCNP exam questions! Details are on the website.

For a FREE copy of his latest e-books, ,How To Pass The CCNA, and ,How To Pass The CCNP,, visit the website and download your free copies. You can also get FREE CCNA and CCNP exam questions every day! Get yourCCNA study guide from The Bryant Advantage!

 

Full List of Articles
 

Latest Cisco Certification News:

  1. JBS awarded Cisco Silver

    Systems integrator Jordan Business Systems (JBS) has achieved silver certification in the Cisco Channel Partner Programme.

    Read More ...

  2. Intertec Systems achieves Silver Certified Partner status from Cisco Systems

    Intertec Systems, a leading IT solutions provider with clients and implementations across the GCC and India, has been awarded the Silver Certified Partner accreditation by Cisco Systems, the worldwide leader in networking that transforms how people connect, communicate and collaborate.

    Read More ...

  3. New Linksys by Cisco Simultaneous Dual-N Band Wireless Router Makes Home Networking Multimedia Friendly

    Linksys®, a Division of Cisco, and the recognized leading global manufacturer of wireless, and networking hardware for home, Small Office/Home Office and the small business user, today announced the Linksys by Cisco Simultaneous Dual-N Band Wireless Router .

    Read More ...

  4. Quickcomm Renews U.S. Department of Commerce Safe Harbor Certification for Global Telecom Expense Management

    Quickcomm Software Solutions, the leading global provider of telecom expense management , Software as a Service and ASP solutions, today announced the annual renewal of its Safe Harbor Certification from the U.S.

    Read More ...

  5. Europe's Fastest Prince2 Qualification at Firebrand Training in High Demand

    The certification time for Prince2 qualification has been significantly reduced by accelerated learning expert Firebrand Training, making it the fastest Prince2 course in Europe. There are several extra courses planned due to high demand over the summer to gain Prince2 qualification.

    Read More ...

  6. Putting wireless expertise to the IEEE test

    The IEEE Communications Society has launched a web site to provide detailed information on its recently introduced certification program for wireless technologies.

    Read More ...

  7. Europe’s fastest Prince2 qualification at Firebrand Training in high demand

    Firebrand Training, an accelerated learning expert, has slashed the Prince2 certification time. The new Prince2 course is the fastest in Europe and extra courses have been scheduled to handle the high demand. The IT project management course now takes just five days for both Foundation and Practitioner...

    Read More ...

Cisco Certification

Cisco CCNA Certification Exam Tutorial PortBased Authentication