#
#"<POSTURE>RadiusAttributes-<NAS IP ADDRESS>"
#
Tunnel-Medium-Type := 6,
#
Tunnel-Private-Group-ID := 15,
#
Tunnel-Type := VLAN,
Enabling NAC 800 for 802.1X
To enable NAC 800 for use in an 802.1X network, you need to select it in the
console, and make a few changes to the properties using JMS and an XML file.
NAC 800 Console Configuration
To enable 802.1X in the NAC 800 console:
1.
Figure 11-31. Enabling 802.1X in the Console
2.
NAC 800 Home window>>System configuration>>Quarantining
In the Select a quarantine method area, select the 802.1X quarantine method
radio button.
In 802.1X enforcement mode, the Enforcement servers must be able
watch DHCP conversations and detect endpoints by sniffing network
traffic as it flows between the DHCP server and the endpoints. Select one
of the following radio buttons:
remote – Disables the local RADIUS server so that an IAS server
•
configured with the NAC IAS plug-in to point to an enforcement
server can be used instead. When possible, a local RADIUS server
that proxies to the IAS server should be the preferred configuration.
802.1X Quarantine Method
Setting Up the 802.1X Components
11-43