User`s guide
Chapter 22 Network Admission Control
Create NAC Tab
22-22
Cisco Router and Security Device Manager Version 2.2 User’s Guide
OL-4015-08
The NAC configuration on the router is only one part of a complete NAC
implementation. Click Other Tasks in a NAC Implementation to learn the tasks
that must be performed on other devices in order to implement NAC.
Enable AAA Button
Authentication, Authorization, and Accounting (AAA) must be enabled on the
router before you can configure NAC. If AAA is not enabled, click the Enable
AAA button. If AAA has already been configured on the router, this button is
disabled.
Launch NAC Wizard Button
Click this button to launch the NAC wizard. The wizard breaks down NAC
configuration into a series of screens in which you complete a single
configuration task
How Do I List
If you want to create a configuration that this wizard does not guide you through,
click the button next to this list. It lists other types of configurations that you
might want to perform. If you want to learn how to create one of the
configurations listed, choose the configuration and click Go.
Other Tasks in a NAC Implementation
A full NAC implementation includes the following configuration steps:
Step 1 Install and configure the Cisco Trust Agent (CTA) software on network hosts.
This provides hosts with a posture agent capable of responding to EAPoUDP
queries by the router.
Step 2 Install and configure an AAA authentication EAPoUDP server. This server must
be a Cisco Secure Access Control Server (ACS) using the Remote Authentication
Dial-In User Service (RADIUS) protocol. Cisco Secure Access Control Server
software version 3.3 is required.
Step 3 Install and configure the posture validation and remediation server.