Manualshelf

Specifications

ManualsBrandsHP ManualsComputer equipment3350 - Cisco NAC Appliance
21222324252627282930
CHAPTER
1-1
Cisco NAC Appliance - Clean Access Manager Configuration Guide
OL-28003-01
1
Introduction
This chapter provides a high-level overview of the Cisco NAC Appliance solution. Topics include:
What is Cisco NAC Appliance?, page 1-1
FIPS Compliance in the Cisco NAC Appliance Network, page 1-2
Cisco NAC Appliance Components, page 1-3
Client Posture Assessment Overview, page 1-13
Client Login Overview, page 1-6
Managing Users, page 1-20
Overview of Web Admin Console Elements, page 1-21
Clean Access Server (CAS) Management Pages, page 1-22
Admin Console Summary, page 1-24
What is Cisco NAC Appliance?
The Cisco Network Admission Control (NAC) Appliance (formerly known as Cisco Clean Access) is a
powerful, easy-to-use admission control and compliance enforcement solution. With comprehensive
security features, In-Band or Out-of-Band deployment options, user authentication tools, and bandwidth
and traffic filtering controls, Cisco NAC Appliance is a complete solution for controlling and securing
networks. As the central access management point for your network, Cisco NAC Appliance lets you
implement security, access, and compliance policies in one place instead of having to propagate the
policies throughout the network on many devices.
The security features in Cisco NAC Appliance include user authentication, policy-based traffic filtering,
and client posture assessment and remediation. Cisco NAC Appliance stops viruses and worms at the
edge of the network. With remote or local system checking, Cisco NAC Appliance lets you block user
devices from accessing your network unless they meet the requirements you establish.
Cisco NAC Appliance is a network-centric integrated solution administered from the web console of the
Clean Access Manager (CAM) administration server and enforced through the Clean Access Server
(CAS) and the Cisco NAC Agent/Cisco NAC Web Agent. You can deploy the Cisco NAC Appliance in
the configuration that best meets the needs of your network. The Clean Access Server can be deployed
as the first-hop gateway for your edge devices providing simple routing functionality, advanced DHCP
services, and other services. Alternatively, if elements in your network already provide these services,
the CAS can work alongside those elements without requiring changes to your existing network by being
deployed as a “bump-in-the-wire.