Specifications
1-11
Cisco NAC Appliance - Clean Access Manager Configuration Guide
OL-28003-01
Chapter 1 Introduction
Client Login Overview
Web Login
Figure 1-3 Web Login—General Setup
Web login users see the login and logout pages, quarantine role or blocked access pages and Nessus scan
vulnerability reports, if enabled. You can also configure a User Agreement Page that appears to web
login users before accessing the network.
If you configure the Clean Access Manager to use a RADIUS server to validate remote users, the initial
Web Login session may feature extra authentication challenge-response dialogs beyond the standard user
ID and password. This additional interaction is due to the user authentication profile on the RADIUS
server, itself, and does not require any additional configuration on the Clean Access Manager or Clean
Access Server. For example, the RADIUS server profile configuration may feature an additional
authentication challenge like verifying a token-generated PIN or other user-specific credentials in
addition to the standard user ID and password. In this case, one or more additional login dialog screens
may appear as part of the login session.
Note Ensure that your RADIUS server and associated clients are configured to interact correctly according to
the RADIUS authentication method you choose.
Table 1-2 explains the General Setup > Web Login configuration options shown in Figure 1-3. For
examples and descriptions of web login user pages, see Table 1-3 on page 1-18.
Table 1-2 Web Login—General Setup Configuration Options
Control Description
User Role Choose the user role for which to apply Cisco NAC Appliance General Setup controls. The
dropdown list shows all roles in the system. Configure user roles from User Management >
User Role (see Adding a New User Role, page 6-7.)
Operating System Choose the client OS for the specified user role. By default, 'ALL' settings apply to all client
operating systems if no OS-specific settings are specified.