[an error occurred while processing this directive] [an error occurred while processing this directive]



static mac-address {
interface interface-names;
vlan-assignment (vlan-id |vlan-name );

Hierarchy Level

[edit protocols dot1x authenticator authentication-profile-name]

Release Information

Statement introduced in JUNOS Release 9.0 for EX Series switches.


Configure MAC addresses to exclude from 802.1X authentication. The static MAC list provides an authentication bypass mechanism for supplicants connecting to a port, permitting devices such as printers that are not 802.1X-enabled to be connected to the network on 802.1X-enabled ports.

Using this 802.1X authentication-bypass mechanism, the supplicant connected to the MAC address is assumed to be successfully authenticated and the port is opened for it. No further authentication is done for the supplicant.

You can optionally configure the VLAN that the supplicant is moved to or the interfaces on which the MAC address can gain access from.


mac-address —The MAC address of the device for which 802.1X authentication should be bypassed and the device permitted access to the port.

The remaining statements are explained separately.

Required Privilege Level

routing—To view this statement in the configuration.
routing-control—To add this statement to the configuration.

Published: 2009-07-21

[an error occurred while processing this directive]