smahbub Fri, 06/26/2009 - 08:06
User Badges:
  • Silver, 250 points or more

With Cisco NAC Appliance Out-of-Band deployment, the Clean Access Server (CAS) is inline with user traffic only during the process of authentication, assessment and remediation. Following that, user traffic does not pass through the CAS. In OOB deployment, the Clean Access Manager (CAM) uses SNMP to control switches and set VLAN assignments for ports. When the CAM/CAS are set up for OOB, the CAM can control the switch ports of supported switches/NMEs with the corresponding IOS/CatOS versions listed in the following tables:


•OOB Supported Switches


•OOB Supported (NME) EtherSwitch Service Modules


•MAC-Move Notification Support


•Wireless Out-of-Band (WOOB) Switch/Wireless LAN Controller Support


Wireless OOB only supports Layer 2 OOB Virtual Gateway deployments that require no IP change. Because the Cisco NAC Network Module does not support this topology, the NAC Network Module is not supported for Wireless OOB.


http://www.cisco.com/en/US/docs/security/nac/appliance/support_guide/switch_spt.html#wp45132


Actions

This Discussion