Port security on a switch prevents authorized users from using part of all of a LAN. Admins can restrict port usage based on a number of criteria:
1. Establishing a maximum number of MAC addresses
2. Statically defining an address
3. Establishing penalties for certain network access violations
Using passwords at the command line can secure the switch management interface and prevent any unauthorized telnet or SSH access as well.