Manualshelf

Specifications

ManualsBrandsHP ManualsComputer equipment3350 - Cisco NAC Appliance
221222223224225226227228229230
6-14
Cisco NAC Appliance - Clean Access Manager Configuration Guide
OL-28003-01
Chapter 6 User Management: Configuring User Roles and Local Users
Create User Roles
Modifying an Existing Temporary, Quarantine, or Login Role
From the List of Roles tab (Figure 6-3), you can configure traffic and bandwidth policies for any user
role. You can also edit the Agent Temporary role, Quarantine role, and any normal login role you have
created.
Figure 6-3 List of Roles
Operations you can perform from the List of Roles tab are as follows:
The Policies icon links to the Traffic Control tab and lets you set traffic filter policies for the role.
For details, see Chapter 8, “User Management: Traffic Control, Bandwidth, Schedule.
The BW icon links to the Bandwidth tab and lets you set upstream and downstream bandwidth
restrictions by role. For details, see Control Bandwidth Usage, page 8-13.
The Edit icon links to the Edit Role tab and lets you modify role properties. See Editing an Existing
Role, page 6-14 below.
The Delete icon removes the role and all associated polices from the system and assigns users to the
Unauthenticated role. See Delete Role, page 6-15.
Specify a network access schedule for the role. For details, see Configure User Session and
Heartbeat Timeouts, page 8-15.
Editing an Existing Role
Step 1 Go to User Management > User Roles > List of Roles.
Step 2 Roles listed will include the following:
Temporary Role—Assigned to users to force them to meet Agent packages or requirements when
Agent is required to be used for login and posture assessment. There is only one Agent Temporary
Role which is already present in the system. This role can be edited but not added.
Quarantine Role—Assigned to users to quarantine them when network scanning finds a
vulnerability on the user system. You can configure the system Quarantine role only or add
additional quarantine roles if needed.
User-defined role—The user roles you have created.
Note You can configure traffic and bandwidth policies for the Unauthenticated Role, but otherwise
this system default role cannot be edited or removed.