Chapter 22
Network Admission Control
Edit NAC Tab
EAPoUDP Timeouts Button
Agentless Host Policy Button
Add, Edit, and Delete Buttons
NAC Policies List
EAPoUDP Components
OL-4015-08
The Edit NAC tab lists the NAC policies configured on the router and enables you
to configure other NAC settings. A NAC policy must be configured for each
interface on which posture validation is to be performed.
The router and the client use Extensible Authentication Protocol over
Unformatted Data Protocol (EAPoUDP) to exchange
Default values for EAPoUDP timeout settings are preconfigured, but you can
change the settings if you want to do so.
If a policy for agentless hosts exists on the ACS server, the router can use that
policy to handle hosts without installed posture agents. This method of handling
agentless hosts can be used when such hosts do not have static IP addresses.
These buttons allow you to manage the NAC policy list. Click Add to create a new
NAC policy. Use the Edit and Delete buttons to modify and remove NAC policies.
The Edit and Delete buttons are disabled when no NAC policies have been
configured on the router.
The name, the interface that the NAC policy is applied to, and the access rule that
defines the policy is included in the list. If you enabled NAC on an interface using
the Create NAC wizard, the default NAC policy SDM_ADM_POLICY appears in
this list.
This window provides a brief description of the EAPoUDP components that SDM
allows you to configure.
Cisco Router and Security Device Manager Version 2.2 User's Guide
Edit NAC Tab
posture
information.
22-31