The static MAC list provides an authentication bypass mechanism for clients connecting to a 802.1x enabled port. The MAC address of the client is checked in the local database, if a match is found, the client is assumed to be successfully authenticated and the port is opened for the client. No further authentication is necessary. If the match is not found, 802.1x authentication is initiated. The VLAN that the client should be moved to or the interfaces on which the MAC addresses should be allowed can be configured. This will enable devices like printers, which do not support 802.1x to be connected to 802.1x enabled ports. Below is a configuration example for setting up MAC static list for bypassing 802.1x authentication. The desired goal: When device with MAC 00:0a:0b:0c:0d:0e is connected to port ge-0/0/10, the device will bypass 802.1x authentication and port ge-0/0/10 will be assigned to VLAN support Points to Consider: The EX-series Ethernet switch is installed and initi
http://www.ebrahma.com/2013/09/juniper-ex-series-bypassing-802-1x-authentication-with-mac-static-list/Labels: eBrahma