NAC - Clean Access Agents keeps poping up even when it's authenticated

Unanswered Question
Nov 20th, 2009

Hi All,

I've setup OOB/IB/L3 NAC. after login to CAA, authentication happens and VLAN is changed on switch. But CAA pops up again and asks for usrename and password, even it's been already authenticated.

any suggestion would be appreciated.


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Faisal Sehbai Fri, 11/20/2009 - 19:00


How are you forcing the traffic to the NAC? Using ACLs or PBRs?

What you're describing indicates that you're more than likely using ACL method. If so, ensure that in your access subnet, you are disallowing traffic being sent to the CAS. After your client authenticates and is in the access VLAN, the agent would still continue to send out the discovery packets every 5 seconds, and if that traffic is allowed in the access VLAN, it will pop the agent up again.




This Discussion

Related Content