Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

NAC appliance(security policy/update-files)

Does anyone know something concerning to the following issues?

Please teach me what I can refer to on the WEB,if possible.

1. Is there any way to apply the policy(checking OS/AV) to the kind of client devices which CAA hadn't been installed such like guest user?

2. Is it possible that NAC appliance does clients only "port-scanning" (not checking OS/AV)?

3. If user-company already has their own "Anti-Virus Server" or "Windows-update Server", can CAM refer to their servers(not Cisco's policy-update-server) to get current update files?

4. How long does it take the update-files become available via Cisco's policy-update-server after each OS/AV-vender had released them?



Re: NAC appliance(security policy/update-files)

No, we should install Cisco Trust agent S/W in order to collect the information about the OS versions, AV versions etc to the Policy server. And based on the security policy of the organisation, we can communicate with the AV vendors like symmntac, Mcafee servers directly for the latest patches and updates.

New Member

Re: NAC appliance(security policy/update-files)

Thank you for reply. but I guess what you mean is about "NAC framework".

I would like to ask about "NAC appliance" which was formarly called "CCA(Cisco CLean Access)".

CreatePlease login to create content