Configuring MAC addresses and MAC authentication bypass (MAB) on the LAN Enforcer
You can change the MAC authentication settings on a management server. The configuration settings are automatically downloaded from the management server to the LAN Enforcer appliance during the next heartbeat.
To configure MAC addresses and MAC authentication bypass on the LAN Enforcer
In the Symantec Endpoint Protection Manager Console, click Admin.
Under Servers, select and expand the group of Enforcers.
Select the LAN Enforcer.
Under Tasks, click Edit Group Properties.
Open the Advanced tab.
In the dropdown list on the left, select MAC Authentication Bypass, and click Enable.
In the Settings dialog box, on the Advanced tab, next to MAC address, click Add.
In the Add Trusted Host dialog box, type the MAC address for the client or the trusted host in the Host MAC address field.
When you specify a MAC address, you can use a wildcard character if you type it for all three fields on the right.
For example, 11-22-23-*-*-* represents the correct use of the wildcard character. However, 11-22-33-44-*-66 does not represent the correct use of the wildcard character.
You can also copy a set of MAC addresses from a text file.
Symantec supports the following format for imports: single MAC address, and MAC address with mask.
To import MAC addresses, click Import. Specify the file in the Import MAC Address From File dialog box.
To export MAC addresses, highlight several MAC addresses, and then click Export. Specify the file in the Export MAC Address To File dialog box.