MAC-based RADIUS port security not detected on switch ports #176
Description
Problem
When using MAC-based (RADIUS) authentication on switch port profiles, Network Optimizer does not detect that port security is enabled. The app only recognizes the port_security_enabled field and misses RADIUS-based MAC authentication.
Steps to Reproduce
- Configure a port profile with MAC-based RADIUS authentication enabled
- Assign the profile to switch ports
- Run a security audit
Expected Behavior
Ports with MAC-based RADIUS authentication should be recognized as having port security enabled.
Actual Behavior
The app only detects port_security_enabled on profiles that explicitly set that field (like disabled/off profiles), but misses RADIUS MAC authentication configured on other profiles.
From the logs, only the "Off_port" profile shows port security:
Port USW Pro Max 16 PoE port 10: resolving port_security_enabled from profile 'Off_port': False -> True
But "IOT_port" and "Home_port" profiles with MAC-based RADIUS auth don't show port security being detected, even though RADIUS is actively authenticating devices:
radiusd[2017]: (21611) Login OK: [A0CExxxxxxxx] (from client ... port 9 cli A0:CE:xx:xx:xx:xx)
Additional Context
The UniFi API likely has a different field for RADIUS/802.1X/MAC-based authentication that we need to check in addition to port_security_enabled.
Reported by: @flyindasky