Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
264
Views
0
Helpful
1
Replies

Complete NAC failure / backout scenario ?

johartman
Level 1
Level 1

‎12-18-2007 11:58 AM - edited ‎02-21-2020 01:50 AM

Hello, we have several CAS applainces some running in-band and some are running out-of-band with 2 CAMs running in a failover pair. My question is if we were to have a failure of some sort with the entire NAC infrastructure and have to reach out to all of our distribution switches, has anyone thought of possibly a script via the SNMP write string to "normal up" all ports so that we won't lock out users in limbo in the auth VLAN? I know this is pretty far fetched, but has anybody thought about what they would do in such a scenario? Thanks in advance for any suggestions, John

0 Helpful
1 Reply 1

pplsi
Level 1
Level 1

‎12-26-2007 10:59 AM

This has been a concern of mine as well. The only thing I know of to do is put the ports in unmanged.

If you can't access the cam you will need to ssh into the switches and manually change the ports.

I hope someone has a better solution though.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card