Manualshelf

Specifications

ManualsBrandsHP ManualsComputer equipment3350 - Cisco NAC Appliance
411412413414415416417418419420
10-3
Cisco NAC Appliance - Clean Access Manager Configuration Guide
OL-28003-01
Chapter 10 Cisco NAC Appliance Agents
Cisco NAC Agent
You can distribute Agent Upgrades to clients by configuring auto-upgrade options in the web console.
Agent Upgrades are retrieved on the CAM via Retrieving Cisco NAC Appliance Updates, page 9-12.
Configuration Steps for the Windows Cisco NAC Agent
The basic steps needed to configure the Windows Cisco NAC Agent are as follows:
1. Make sure to follow the steps in Agent Configuration Steps, page 9-3 to enable distribution and
download of the Cisco NAC Agent.
2. Configure Agent requirements using the instructions in Configuring Agent-Based Posture
Assessment, page 9-39:
a. Configuring AV/AS Definition Update Requirements, page 9-41
b. Configuring a Windows Server Update Services Requirement, page 9-57
c. Configuring a Windows Update Requirement, page 9-64
d. Configuring Custom Checks, Rules, and Requirements, page 9-70
e. Configuring a Launch Programs Requirement, page 9-85
f. Map Requirements to Rules, page 9-90
g. Apply Requirements to User Roles, page 9-92
h. Validate Requirements, page 9-93
i. Configuring an Optional/Audit Requirement, page 9-94
Windows Cisco NAC Agent User Dialogs
Note Client machine browsers accessing a FIPS-compliant Cisco NAC Appliance network require TLSv1 in
order to “talk” to the network, which is disabled by default in Microsoft Internet Explorer Version 6.
Users can enable this option in Internet Explorer version 6 by following the same instructions for
administrators accessing the CAM/CAS web console via IE version 6. See the “Enabling TLSv1 on
Internet Explorer Version 6” installation troubleshooting section of the Cisco NAC Appliance Hardware
Installation Guide, Release 4.9(x).
This section illustrates the user experience when Cisco NAC Appliance is installed on your network and
the Cisco NAC Agent is required and configured for the user role.
Note For details on the Cisco NAC Agent when configured for Single Sign-On (SSO) behind a VPN
concentrator, see the Cisco NAC Appliance - Clean Access Server Configuration Guide, Release 4.9(x).
1. When the user first opens a web browser, the user is redirected to the web login page (Figure 10-36).