Specifications

11-21

Cisco NAC Appliance - Clean Access Manager Configuration Guide

OL-28003-01

Chapter 11 Monitoring and Troubleshooting Agent Sessions

Report Settings

Note Managed ports column for wireless LAN controllers will be empty as managed ports are applicable to

switches only and not to WLAN controllers.

Figure 11-17 Dashboard > Managed Switches

Authentication Servers

The status and other details of the authentication servers used by NAC are under the Auth Servers view.

NAC does not actively check the authentication servers for their reachability to display the status here.

As and when a user request comes for authentication and NAC is able to communicate to the

authentication server, status is marked as reachable and the time is set as the last access time.

Two types of authentication providers are supported - First, where CAM does the active authentication

with the authentication server on behalf of the end users like Radius or LDAP servers. Second, the single

sign-on (SSO) type like ADSSO or VPNSSO, where the user gets authenticated elsewhere first and and

an already authenticated user enters into the NAC system. In the case where the CAM does the active

authentication for the end users, both the status (green if online) and the last access time is shown. In the

SSO type auth providers case, CAM or NAC does not do any active authentication and hence it never

tries to reach them. Accordingly, here the last access time shown is the time any user last entered into

NAC using that provider. Additionally, it displays the status CAS wise that is more granular as SSO

happens through CASs.

Figure 11-18 Dashboard > Auth Servers