Specifications

ManualsBrandsHP ManualsComputer equipment3350 - Cisco NAC Appliance

401

402

403

404

405

406

407

408

409

410

9-100

Cisco NAC Appliance - Clean Access Manager Configuration Guide

OL-28003-01

Chapter 9 Configuring Cisco NAC Appliance for Agent Login and Client Posture Assessment

Configuring Agent-Based Posture Assessment

Step 4 Enter a value for the Interval [] Secs setting:

• Interval [] Secs—Default is 0. Depending on the requirement type, this interval either sets the delay

before the Agent re-attempts remediation or sets the total time allowed for a particular remediation

process. When the interval is set to 0, the Agent continues to attempt Auto Remediation until the

temporary role times out.

–

AV Definition Update/AS Definition Update/Windows Server Update Services—when the

initial remediation attempt fails, this interval defines how long the Agent waits before it restarts

the next update attempt. For example, if setting this interval to 30 seconds for an AV Definition

Update, at the end of the initial attempt to update the client’s AV definition file, the Agent waits

30 seconds then starts the next update attempt if the requirement failed.

–

Link Distribution/Windows Update/Launch Programs—for these requirement types, the

interval defines the total number of seconds the Agent allows for the remediation attempt to

complete. For example, if setting this interval to 60 seconds for a Launch Programs requirement,

the Agent launches the program(s) and allows 60 seconds for the programs to execute. If the

client has not met the requirement at the end of 60 seconds, the Agent launches the programs

again immediately.

Step 5 Enter a value for the Retry Count []:

• Retry Count [] - Default is 0. When the interval is 0, the Agent continues to attempt Auto

Remediation until the temporary role times out. Otherwise, specifying a retry count sets a limit on

the number of times the Agent automatically retries the requirement if it initially fails. If the Retry

Count is reached before the Temporary role timeout, the Auto Remediation dialog displays red

status text telling the user to click the Manual button.

–

AV Definition Update / AS Definition Update / Windows Server Update Services

–

Link Distribution / Windows Update / Launch Programs

If a Mandatory requirement still fails after the Retry Count, the Agent stops and does not perform the

next priority requirement for the user role. Users will not have network access.

For an Optional requirement, the Agent always continues to the next requirement after the initial attempt

finishes, regardless of the Retry Count specified and whether the initial attempt succeeded or failed.

However, if an Interval is specified, the Agent waits that amount of time before continuing to the next

requirement.

If Auto Remediation fails, the user receives a failure message and can click the Details button to view

the remediation results, or click Continue to return to the Clean Access Agent authentication process.

The user can then either cancel the login session or accept “restricted” network access.