Specifications
9-43
Cisco NAC Appliance - Clean Access Manager Configuration Guide
OL-28003-01
Chapter 9 Configuring Cisco NAC Appliance for Agent Login and Client Posture Assessment
Configuring Agent-Based Posture Assessment
Figure 9-12 Required AV Definition Update (Mac OS X Agent)
AV Rules and AS Rules
Antivirus rules (AV Rule) and anti-spyware rules (AS Rule) are preconfigured rule types that are mapped
to the matrix of vendors and products sourced in the Supported AV/AS Product List. There is no need to
configure checks with this type of rule.
There are two basic types of AV Rules:
• Installation AV Rules check whether the selected antivirus software is installed for the client
operating systems.
• Virus Definition AV Rules check whether the virus definition files are up-to-date on the client.
Virus Definition AV Rules can be mapped into AV Definition Update requirements so that a user
that fails the requirement can automatically execute the update by clicking the Update button in the
Agent and the system reporting function can alert Cisco NAC Web Agent users of the requirement.
There are two basic types of AS Rules:
• Installation AS Rules check whether the selected anti-spyware software is installed for the client
OS.
• Spyware Definition AS Rules check whether the spyware definition files are up-to-date on the
client. Spyware Definition AS Rules can be mapped into AS Definition Update requirements so that
a user that fails the requirement can automatically execute the update by clicking the Update button
in the Agent and the system reporting function can alert Cisco NAC Web Agent users of the
requirement.
Note In some cases, the specific AV/AS vendor software requires the user to have administrator privileges on
the client machine to enable updates.
• AV R u l e s are typically associated with AV Definition Update requirements, and AS Rules are
typically associated with AS Definition Update requirements.