Using Mac Authentication / Mac Bypass for non dot1x dvices
[ Edited ]
You enabld dot1x on your EX Switches , dot1x users are able to connect succesfully after succesful authentication from the Radius Server
What about non dot1x devices ( like a printer ) , You have 3 choices :
1- disable dot1x on the Switch ports that will have non dot1 x devices connecting to it ( the disadvantage here is that you need to specify some ports with non dot1x enabled that may led to any user connecting his PC to it )
2- You can use " mac-radius " option which will tell the switch to try dot1x with the connected device & if it didnot work try mac authentication ( you should have mac authentication database on your Radius server )
3-Configure static mac bypass on the switch port the MAC address of the host is first checked in a local database (a user configured list of MAC addresses). If a match is found, the host is assumed to be successfully authenticated and the interface is opened up for it. No further authentication is done for that host. If a match is not found and 802.1X authentication is enabled on the switch, the switch attempts to authenticate the host through the RADIUS server.