NAC Installation

Unanswered Question
Apr 18th, 2009
User Badges:

Hi, I have come to know that NAC and Wireless Controller need to be integreted in the same segment/LAN to work with wireless user as well as wired user. Can anyone tell me how does NAC works with wireless controller?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
Anonymous (not verified) Fri, 04/24/2009 - 04:43
User Badges:

NAC works with WLC in two modes 1)In-Band 2)Out of band. In a traditional in-band Cisco NAC Appliance wireless deployment, all network traffic to or from wireless client machines passes through the Clean Access Server (CAS). For high throughput or highly routed environments, a Cisco NAC Appliance Wireless Out-of-Band (Wireless OOB) deployment allows client traffic to pass through the network only in order to be authenticated and certified before being connected directly to the access network

markturner Tue, 05/19/2009 - 05:38
User Badges:


If you deploy wireless oob which I understand needs to be adjacent to the WLC. Is it also possible to use the same NAC server appliance to do oob for branch office switches over a routed network ?



nagel Fri, 04/24/2009 - 12:22
User Badges:

I have tried both models. In Band is definitely the better way to go. Simply include your Wireless Subnet as part of your NAC Configuration. (Just like your other wired subnets). OOB (IMHO) is still very clunky and utilizes 2 networks (Unauthenticated & Authenticated). Traffic commes in on Unauthenticated, Posture Assessment and/or remediation is done, and then there is an IPCONFIG RELEASE and then IPCONFIG RENEW to move the host over to authenticated subnet. Very Clunky and annoying to users. (Yea I know - here come the OOB guys). Anyway, we are satisfied with IB operation.


This Discussion