Specifications

3-34

Cisco NAC Appliance - Clean Access Manager Configuration Guide

OL-28003-01

Chapter 3 Switch Management: Configuring Out-of-Band Deployment

Configure OOB Switch Management on the CAM

Note If the Cisco NAC Appliance system somehow terminates the OOB client session (if the system

administrator is forced to “kick” the user out, for example) and the switch changes the VLAN assignment

for the client’s access port from the Access VLAN back to the Authentication VLAN, the client machine

discovers the VLAN change and, if configured, initiates an IP address refresh/renew to ensure the user

stays connected to the network. For details on the polling method and configuration guidelines, see

Configure Access to Authentication VLAN Change Detection, page 3-67.

Figure 3-17 Port Profiles List

Note The Policy Sync feature allows OOB Port Profiles and VLAN Profiles to be exported from a Master

CAM to Receiver CAMs. Refer to Policy Import/Export, page 14-28 for details.

Add Port Profile

You will need to add a Port profile for each set of Authentication/Access VLANs you configure on the

switch.

Note For OOB Virtual Gateways, you must enable and configure VLAN mapping on the CAS for each

Authentication/Access VLAN pair configured on the switch. See Figure 3-8 on page 3-27 for more

details.

Step 1 Go to OOB Management > Profiles > Port > New (Figure 3-18)