NAC for SSL VPN Users

Unanswered Question
Apr 6th, 2010
User Badges:

i have a setup of NAC L2 Out of band Virtual gateway. The inside users are already working on NAC. There is a new requirement for posture assesment of

SSL VPN users. I think that the users are multiple hops away so is that possible to configure the NAC as L2 and L3 at the same time.

Moreover i have oob setup. How the VPN user will be taken by OOB setup.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Nevin Absher Thu, 04/08/2010 - 06:23
User Badges:
  • Cisco Employee,


A CAS can be configured to support L2 and L3 users at the same time, but it can only be either In-Band or Out of Band.  VPN users are only supported with an In-Band CAS.

So unfortunately for your situation you would either need to add a second CAS, or convert the one you have to In-Band.




This Discussion