I'm trying to deploy Cisco NAC as in-band and I've got the following issue:
- if user tries to log out (being logged in via web or using Cisco NAC agent), logs off Windows, shuts down PC, nothing happens - the user is still seen on the Online users page and has access to everything.
The only error messages I found on the CAM were in the apache log:
So I have: InBand - Virtual Ip Gateway ( L3 deployment ) 4.7.2 1 Cam installed in central site 1 Cas Installed in central site All traffic Remote sites will be pass trought the CAS Inband ( inline vlan 563 to 63 access vlan Central Site )
Some configurations about timers:
User Management / User Role / Schedule / Heartbeat Timer Enable Heartbeat Timer (Enable)
Enable - Logoff Nac Agent Users from network on their machine logoff or shutdown after "1 minute."( for windows & In-band setup )
Next we see One user that log out the network but still in the "IB - Online Users" List. If another user connect to the network and take the SAME Ip address. The user do not neet to authenticate, becouse the Ip address still int the list, so user can access normally the all network.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :