Manualshelf

Specifications

ManualsBrandsHP ManualsComputer equipment3350 - Cisco NAC Appliance
401402403404405406407408409410
9-103
Cisco NAC Appliance - Clean Access Manager Configuration Guide
OL-28003-01
Chapter 9 Configuring Cisco NAC Appliance for Agent Login and Client Posture Assessment
Post-Configuration and Agent Maintenance on the CAM
Step 6 Create a Local Check requirement that provides instructions to the end user to uninstall the Agent (e.g.
4.1.x.y) and perform weblogin again to download the downgraded Agent (e.g. 4.1.2.1).
Note The Mac OS X Agent does not support downgrade. For example, if you upload an old Mac OS X Agent
(lower version number) and check the Current NAC Agent is a mandatory upgrade option, the client
machine does not prompt for auto-upgrade.
Configure Agent Auto-Upgrade
This section describes the following:
Enable Agent Auto-Upgrade on the CAM, page 9-102
Disable Agent Upgrades to Users, page 9-102
Disable Mandatory Agent Auto-Upgrade on the CAM, page 9-103
User Experience for Agent Auto-Upgrade, page 9-103
Uninstalling the Agent, page 9-103
Agent Auto-Upgrade Compatibility, page 9-106
Enable Agent Auto-Upgrade on the CAM
To enable Agent Auto-Upgrade, you must:
Be running Cisco NAC Appliance release 4.1(0) or later on the Clean Access Manager and Clean
Access Server, and already have the Agent installed on client machines. (See User Experience for
Agent Auto-Upgrade, page 9-103.)
Require use of the Agent for the role and client operating system. (See Require Agent Login for
Client Machines, page 9-3.)
Retrieve the latest version of the Agent installation file. For both mandatory or optional
Auto-Upgrade, a newer version of the Agent installer must be downloaded to the CAM via Device
Management > Clean Access > Updates > Update, or users will not be prompted to upgrade to the
newer Agent. (See Require Agent Login for Client Machines, page 9-3.)
Note If you have upgraded the Cisco NAC Web Agent installer, users logging in using the Web Agent always
log in using that Agent version.
Disable Agent Upgrades to Users
You can disable notification and distribution of the Agent installation file upgrade to users as follows:
Step 1 Go to Device Management > Clean Access > Clean Access Agent > Distribution (see Figure 9-6 on
page 9-18).
Step 2 Enable (check) the Do not offer current NAC Agent to users for upgrade option.