Table of Contents
Advertisement
Create NAC Tab
Enable AAA Button
Launch NAC Wizard Button
How Do I List
Other Tasks in a NAC Implementation
Step 1
Step 2
Step 3
Cisco Router and Security Device Manager Version 2.2 User's Guide
22-22
The NAC configuration on the router is only one part of a complete NAC
implementation. Click
that must be performed on other devices in order to implement NAC.
Authentication, Authorization, and Accounting (AAA) must be enabled on the
router before you can configure NAC. If AAA is not enabled, click the Enable
AAA button. If AAA has already been configured on the router, this button is
disabled.
Click this button to launch the NAC wizard. The wizard breaks down NAC
configuration into a series of screens in which you complete a single
configuration task
If you want to create a configuration that this wizard does not guide you through,
click the button next to this list. It lists other types of configurations that you
might want to perform. If you want to learn how to create one of the
configurations listed, choose the configuration and click Go.
A full NAC implementation includes the following configuration steps:
Install and configure the Cisco Trust Agent (CTA) software on network hosts.
This provides hosts with a posture agent capable of responding to
queries by the router.
Install and configure an AAA authentication EAPoUDP server. This server must
be a Cisco Secure Access Control Server (ACS) using the Remote Authentication
Dial-In User Service (RADIUS) protocol. Cisco Secure Access Control Server
software version 3.3 is required.
Install and configure the posture validation and remediation server.
Other Tasks in a NAC Implementation
Chapter 22
Network Admission Control
to learn the tasks
EAPoUDP
OL-4015-08
Advertisement
Table of Contents
Troubleshooting
