configure identity-management ports

configure identity-management {add | delete} ports [port_list | all]


Adds or deletes identity management for the specified ports.

Syntax Description


Enables identity management on the specified port list.


Disables identity management on the specified port list.


Specifies the ports to which this command applies.


Specifies that this command applies to all ports.


No ports are in the identity management enabled port list.

Usage Guidelines

If neither the add nor the delete keyword is entered, identity management is enabled on the specified port list, and the new port list overrides any previous port list.

If identity management is enabled on a port and a user or device is connected to it, information about the user or device is present in the identity management database. If this port is removed from the identity-management enabled port list, the user or device information remains in the data base until the user logs out or the device disconnects. However, once a port is deleted from enabled port list, no new information is added to the identity management database for that port.



Kerberos identities are not detected when both server and client ports are added to identity management.


The following command enables identity management on ports 2:3 and 2:5:

configure identity-management add ports 2:3,2:5


This command was first available in ExtremeXOS 12.4.

Platform Availability

This command is available on ExtremeSwitching X435, X440-G2, X450-G2, X460-G2, X465, X590, X620, X670-G2, X690, X695, X870, 5320, 5420, and 5520 series switches.