Specifications
1-5
Cisco NAC Appliance - Clean Access Manager Configuration Guide
OL-28003-01
Chapter 1 Introduction
Cisco NAC Appliance Components
Figure 1-1 Cisco NAC Appliance Deployment (L2 In-Band Example)
Clean Access Manager (CAM)
The Clean Access Manager (CAM) is the administration server and database which centralizes
configuration and monitoring of all Clean Access Servers, users, and policies in a Cisco NAC Appliance
deployment. You can use it to manage up to 20 Clean Access Servers. The web admin console for the
Clean Access Manager is a secure, browser-based management interface. See Admin Console Summary,
page 1-24 for a brief introduction to the modules of the web console. For Out-of-Band (OOB)
deployment, the web admin console provides the OOB Management module to add and control
switches in the Clean Access Manager’s domain and configure switch ports.
Clean Access Server (CAS)
The Clean Access Server (CAS) is the gateway between an untrusted and trusted network. The Clean
Access Server can operate in one of the following In-Band (IB) or Out-of-Band (OOB) modes:
• IB Virtual Gateway (L2 transparent bridge mode)
• IB Real-IP Gateway
• OOB Virtual Gateway
• OOB Real-IP Gateway
Clean Access
Server (CAS)
Authentication sources
(LDAP, RADIUS, Kerberos,
WindowsNT)
DNS
server
Clean Access
Manager (CAM)
Firewall
183469
Clients with
co NAC Appliance
Agent
Switch
L2
Router
L3
Internet
eth1 eth0
Admin laptop
Clean Access Manager
Web admin console
LAN/Intranet