https://community.cisco.com/t5/network-security/nac-not-able-to-https-into-nac-servers-cas/m-p/1467952#M751569 <P>I was wondering if anyone has seen this issue.&nbsp; I am not able to HTTPS into my NAC Servers but I am still able to manage them via my NAC Managers.&nbsp; What would cause this?</P> Fri, 21 Feb 2020 11:56:55 GMT yuchenglai 2020-02-21T11:56:55Z https://community.cisco.com/t5/network-security/nac-not-able-to-https-into-nac-servers-cas/m-p/1467952#M751569 <P>I was wondering if anyone has seen this issue.&nbsp; I am not able to HTTPS into my NAC Servers but I am still able to manage them via my NAC Managers.&nbsp; What would cause this?</P> Fri, 21 Feb 2020 11:56:55 GMT https://community.cisco.com/t5/network-security/nac-not-able-to-https-into-nac-servers-cas/m-p/1467952#M751569 yuchenglai 2020-02-21T11:56:55Z https://community.cisco.com/t5/network-security/nac-not-able-to-https-into-nac-servers-cas/m-p/1467953#M751574 <HTML><HEAD></HEAD><BODY><P>David,</P><P></P><P>What URL are you trying to access to manage your CAS's? If just the IP or Hostname, add /admin at the end, so the URL should look like this:</P><P></P><P><A class="jive-link-external-small" href="https://IP_ADDRESS_OF_CAS/admin">https://IP_ADDRESS_OF_CAS/admin</A></P><P></P><P>HTH,</P><P>Faisal</P></BODY></HTML> Sat, 01 May 2010 03:45:12 GMT https://community.cisco.com/t5/network-security/nac-not-able-to-https-into-nac-servers-cas/m-p/1467953#M751574 Faisal Sehbai 2010-05-01T03:45:12Z https://community.cisco.com/t5/network-security/nac-not-able-to-https-into-nac-servers-cas/m-p/1467954#M751577 <HTML><HEAD></HEAD><BODY><P>Classification: UNCLASSIFIED </P><P>Caveats: NONE</P><P></P><P>Faisal,</P><P></P><P>I used to be able to HTTPS into the VIP of my CAS pairs as well as their physical IP addresses. It is strange that the NAC Manager is able to "manage" these CAS pairs even though I am no longer able to HTTPS into them nor ping them via their HA VIP nor via their individual physical IP addresses. Yes, I do know how to web console into my CAS pairs using their VIP and physical IP addresses.</P><P></P><P>David Lai</P><P>Network Engineer</P><P>Brooke Army Medical Center</P><P>Office: 210.916.3644</P><P>Desk: 210.916.7488</P><P>David.Lai@amedd.army.mil</P></BODY></HTML> Sat, 01 May 2010 21:07:52 GMT https://community.cisco.com/t5/network-security/nac-not-able-to-https-into-nac-servers-cas/m-p/1467954#M751577 yuchenglai 2010-05-01T21:07:52Z https://community.cisco.com/t5/network-security/nac-not-able-to-https-into-nac-servers-cas/m-p/1467955#M751582 <HTML><HEAD></HEAD><BODY><P>David,</P><P></P><P>The network you're trying to access your CASs from, is that network part of the CASs Managed Subnets?</P><P></P><P>Faisal</P></BODY></HTML> Sun, 02 May 2010 23:06:00 GMT https://community.cisco.com/t5/network-security/nac-not-able-to-https-into-nac-servers-cas/m-p/1467955#M751582 Faisal Sehbai 2010-05-02T23:06:00Z https://community.cisco.com/t5/network-security/nac-not-able-to-https-into-nac-servers-cas/m-p/1467956#M751588 <HTML><HEAD></HEAD><BODY><P>Classification: UNCLASSIFIED </P><P>Caveats: NONE</P><P></P><P>Faisal,</P><P></P><P>That is affirmative. I was trying to access my CASs from a "managed subnet." Thank you pointing that out. I think that was why I was not able to access my CASs. I will try to access them again from an "unmanaged subnet."</P><P></P><P>Thanks your time and expertise Faisal!</P><P></P><P>David Lai</P><P>Network Engineer</P><P>Brooke Army Medical Center</P><P>Office: 210.916.3644</P><P>Desk: 210.916.7488</P><P>David.Lai@amedd.army.mil</P></BODY></HTML> Mon, 03 May 2010 13:52:52 GMT https://community.cisco.com/t5/network-security/nac-not-able-to-https-into-nac-servers-cas/m-p/1467956#M751588 yuchenglai 2010-05-03T13:52:52Z https://community.cisco.com/t5/network-security/nac-not-able-to-https-into-nac-servers-cas/m-p/1467957#M751591 <HTML><HEAD></HEAD><BODY><P>David,</P><P></P><P>Yeah, that won't work. All traffic for the Managed subnets is sent out the untrusted interface by default and since your client is on the trusted side, it would never reach it.</P><P></P><P>HTH,</P><P>Faisal</P></BODY></HTML> Mon, 03 May 2010 20:20:01 GMT https://community.cisco.com/t5/network-security/nac-not-able-to-https-into-nac-servers-cas/m-p/1467957#M751591 Faisal Sehbai 2010-05-03T20:20:01Z