I have recently setup set up NAC framework to support dot1x for wireless and wired clients. My ACS appliance is successfully authentication users via eap-fast using personal and machine certs and it successfully posture checks that the users are using the correct CTA client, windows OS with correct patches.
But for the life of me I cannot work out how to set up my ACS NAP posture validation rules to check Symantec's Anti-virus version 10 and check the current dat file.
I have researched to the point where I think I have to upload NAC attributes to ACS appliance but not sure how. Setting up NAP posture rules to check against Cisco or Windows software is not that difficult and was well documented, but how to posture check a 3rd party software application is not well documented.
The url I have been looking at is
I'm just not 100% sure I'm on the right track here??
If anyone knows or has info how to setup NAP to posture check against 3rd party vendor software (like Symantec?s anti-virus) , I'd love to read up more about it.
One last question, if I am on the right track here, would I setup a posture validation rule for Symantec by just duplicating the rule I have for checking my CTA client ?
Cisco:PA:PA-NAME = Symantec Anti-Virus
Cisco:PA:PA-Version >= X.X.X
Cisco:PA:Machine-Posture-State >= 1
"-->Dump Attributes" hasn't worked for me for a while when using IE6\7. However firefox works great..! You might have to use firefox for that.
The ACS definitions that you need to import into ACS should also be on the symantec CD. However use the attached Text file, these are the Symantec definitions exported from my ACS Server. This should help you.