Manualshelf

Specifications

ManualsBrandsHP ManualsComputer equipment3350 - Cisco NAC Appliance
331332333334335336337338339340
9-31
Cisco NAC Appliance - Clean Access Manager Configuration Guide
OL-28003-01
Chapter 9 Configuring Cisco NAC Appliance for Agent Login and Client Posture Assessment
Setting Up Agent Distribution/Installation
Refer to Configure Access to Authentication VLAN Change Detection, page 3-67 for additional details.
PingMaxTimeout 1 1-10 Poll using ICMP and if no response in <x> seconds,
then declare ICMP polling failure.
VlanDetectInterval
1
0
2
, 5
3
0,
5-900
4
If this setting is 0, the Access to Authentication
VLAN change feature is disabled.
If this setting is 1-5, the Agent sends ICMP/ARP
queries every 5 seconds.
If this setting is 6-900, ICMP/ARP every <x>
seconds.
EnableVlanDetectWith-
outUI
0 0,1 This parameter is used to enable the VLAN detect
feature when the NAC Agent Tray icon is not running
(for example: When the client machine is at the
Windows login prompt). This can be used by
administrators who have CDL timers setup, to "kick"
users out when their machines are powered-on but not
logged-in. This would confirm that the machine has a
valid IP when the network has changed.
If this value is set to 0, the VLAN detect feature is
disabled. This is the default setting.
If this value is set to 1, the VLAN detect feature is
enabled.
1. VLAN Detect may fail when using ARP as discovery method in situations with high network utilization. Use ICMP as an
alternative method.
2. For Windows NAC Agent, the default value is 0. By default, the Access to Authentication VLAN change feature is disabled
for Windows.
3. For Mac OS X Agent, the default value is 5. By default, the Access to Authentication VLAN change feature is enabled with
“VlanDetectInterval” as 5 seconds for Mac OS X.
4. The maximum range for the Cisco NAC Agent is 900 seconds (15 minutes). The maximum range for the Cisco Clean Access
Agent is 60 seconds (1 minute). For more information, refer to the Cisco NAC Appliance - Clean Access Manager Installation
and Configuration Guide, Release 4.5(1) and Release Notes for Cisco NAC Appliance, Version 4.5(1).
Table 9-9 Access to Authentication VLAN Change Detection on Clients with Multiple Active
NICs (continued)
Parameter
Default
Value
(Decimal)
Valid
Range Description/Behavior