Manualshelf

Specifications

ManualsBrandsHP ManualsComputer equipment3350 - Cisco NAC Appliance
151152153154155156157158159160
3-69
Cisco NAC Appliance - Clean Access Manager Configuration Guide
OL-28003-01
Chapter 3 Switch Management: Configuring Out-of-Band Deployment
Out-of-Band Users
MAC notification traps
Note To support a variety of switch configurations, Cisco NAC Appliance supports switches using
both MAC Change Notification and MAC Move Notification traps.
Certified Timer expiration
Session Timer expiration
Manual removal from CAM
For additional details, see also Interpreting Event Logs, page 13-4 and Manage Certified Devices,
page 11-10.
Wired and Wireless User List Summary
Table 3-4 describes the lists used to track wired and wireless users.
Table 3-4 Wired and Wireless User List Summary
User List Description
In-Band
Online Users
The In-Band Online Users list (Figure 11-24 on page 11-31) tracks In-Band users logged into the
network.
The CAM adds a client IP/MAC address (if available) to this list after a user logs into the network either
through web login or the Agent.
Removing a user from this Online Users list logs the user off the In-Band network.
Certified
Devices List
The Certified Devices List (Figure 11-10 on page 11-13) lists the MAC addresses of all “certified” client
devices—whether Out-of-Band or In-Band—that have met Agent requirements.
The CAM adds a client MAC address to the Certified Devices List after a client device goes through
posture assessment and meets Agent requirements.
Removing a client from the Certified Devices List:
Removes an In-Band user from the In-Band Online Users list
Removes an OOB user from the Out-of-Band Online Users list (causing the port to be changed from
the Access VLAN to the Authentication VLAN) and bounces the port, unless Remove Out-of-Band
online user without bouncing the port is checked for the Port profile.