The Enable L2 strict mode for Clean Access Agent feature requires the Clean Access Agent to get the client MAC address. The ActiveX/ Java Applet MAC address fetch is currently not enabled for L2 strict mode in L3 OOB deployment.
A new checkbox and dropdown menu is added for "Use Active X or Java Applet to detect client MAC address when Clean Access Server cannot detect the MAC address" in the following user login configuration pages:
CAM web console: Administration > User Pages > Login Page > List [Edit] | General
CAS management pages: Device Management > CCA Servers > Manage [CAS_IP] > Authentication > Login Page > List [Edit] > General
?Device Management > Clean Access > Clean Access Agent > Updates (version information for updates to L3 Java Applet Web Client and L3 ActiveX Web Client)
In addition, the web login pages for L3 OOB users will reflect status information related to loading the Active X control or Java applet, and renewing the client IP address