Specifications
9-72
Cisco NAC Appliance - Clean Access Manager Configuration Guide
OL-28003-01
Chapter 9 Configuring Cisco NAC Appliance for Agent Login and Client Posture Assessment
Configuring Agent-Based Posture Assessment
shown in Figure 9-31, a rule can combine several checks with Boolean operators, “&” (and), “|” (or),
and “!” (not). A requirement can rely on more than one rule, specifying that any selected rule, all rules,
or no rule must be satisfied for the client to be considered in compliance with the requirement.
Figure 9-31 Custom Checks, Rules, and Requirements
Custom Rules
A rule is a condition statement made up of one or more checks. A rule combines checks with logical
operators to form a Boolean statement that can test multiple features of the client system.
Cisco Pre-Configured Rules (“pr_”)
Cisco NAC Appliance provides a set of pre-configured rules and checks that are downloaded to the CAM
via the Updates page on the CAM web console (under Device Management > Clean Access >
Updates).
Pre-configured rules have a prefix of “pr” in their names (e.g. “pr_XP_Hotfixes”), and can be copied for
use as a template, but cannot be edited or removed. You can click the Edit icon for any “pr_” rule to view
the rule expression that defines it. The rule expression for a pre-configured rule will be composed of
pre-configured checks (e.g. “pc_Hotfix835732”) and boolean operators. The rule expressions for
pre-configured rules are updated via Cisco Updates. For example, when new Critical Windows OS
hotfixes are released for Windows XP, the pr_XP_Hotfixes rule will be updated with the corresponding
hotfix checks.
Pre-configured rules are listed under Device Management > Clean Access > Clean Access Agent >
Rules > Rule List.
Note Cisco pre-configured rules are intended to provide support for Critical Windows operating system
hotfixes only.
Look 4Sy mAV
rules
requirements
Look4McAfeeAV
any
&
checks
sym_exeE xists
proc essI sAc tive
RecentVDefExist
mcaf ee_exe Exists
proc essI sActive
RecentVDefExist
MustHaveA ntiVirus
&
campusAVInstall.zip
Message: install, update
or start software
184073