https://community.cisco.com/t5/network-security/nac-deployment/m-p/834132#M765420 <HTML><HEAD></HEAD><BODY><P>Hi Stanslaus,</P><P></P><P>You need one Clean Access Manager (CAM) and one Clean Access Server (CAS) at a minimum to make any In-band or Out-of-band solution work. What's more, the CAM and the CAS cannot be installed on the same server.</P><P></P><P>Here are some excellent references to consult:</P><P></P><P><A class="jive-link-custom" href="http://cisconac.blogspot.com/" target="_blank">http://cisconac.blogspot.com/</A></P><P><A class="jive-link-custom" href="http://www.networkworld.com/community/heary" target="_blank">http://www.networkworld.com/community/heary</A></P><P><A class="jive-link-custom" href="http://blog.tenablesecurity.com/" target="_blank">http://blog.tenablesecurity.com/</A></P><P><A class="jive-link-custom" href="http://blogs.cisco.com/security" target="_blank">http://blogs.cisco.com/security</A></P><P><A class="jive-link-custom" href="http://6200networks.com/" target="_blank">http://6200networks.com/</A></P><P><A class="jive-link-custom" href="http://www.demolabs.co.uk/cisconac_demo.html" target="_blank">http://www.demolabs.co.uk/cisconac_demo.html</A></P><P></P><P>Cisco Security Center <A class="jive-link-custom" href="http://tools.cisco.com/security/center/home.x" target="_blank">http://tools.cisco.com/security/center/home.x</A></P><P></P><P></P><P></P><P>Books: </P><P></P><P>Cisco NAC Appliance: Enforcing Host Security with Clean Access by Jamey Heary, Jerry Lin, Chad Sullivan, Alok Agrawal. (2007)</P><P></P><P></P><P>Hope this helps. </P><P></P><P>Best,</P><P>Paul</P></BODY></HTML> Tue, 29 Jan 2008 21:47:59 GMT pmccubbin 2008-01-29T21:47:59Z https://community.cisco.com/t5/network-security/nac-deployment/m-p/834131#M765419 <P>Hello there!</P><P>I have 2 NAC Appliance 3310. I want to configure them both as Clean Access Servers(CAS). One will be fail over for the other. In this deployment i will have no Clean Access Manager. Is this possible? If possible how will i configure the CAS without CAM? Is it possible also to install the CAM software in a different hardware other than NAC Appliances(Like normal PCs or Server machines)</P><P></P><P>Best regards,</P><P>Stanslaus. </P> Fri, 21 Feb 2020 09:52:48 GMT https://community.cisco.com/t5/network-security/nac-deployment/m-p/834131#M765419 IT_Data_CorporateNet 2020-02-21T09:52:48Z https://community.cisco.com/t5/network-security/nac-deployment/m-p/834132#M765420 <HTML><HEAD></HEAD><BODY><P>Hi Stanslaus,</P><P></P><P>You need one Clean Access Manager (CAM) and one Clean Access Server (CAS) at a minimum to make any In-band or Out-of-band solution work. What's more, the CAM and the CAS cannot be installed on the same server.</P><P></P><P>Here are some excellent references to consult:</P><P></P><P><A class="jive-link-custom" href="http://cisconac.blogspot.com/" target="_blank">http://cisconac.blogspot.com/</A></P><P><A class="jive-link-custom" href="http://www.networkworld.com/community/heary" target="_blank">http://www.networkworld.com/community/heary</A></P><P><A class="jive-link-custom" href="http://blog.tenablesecurity.com/" target="_blank">http://blog.tenablesecurity.com/</A></P><P><A class="jive-link-custom" href="http://blogs.cisco.com/security" target="_blank">http://blogs.cisco.com/security</A></P><P><A class="jive-link-custom" href="http://6200networks.com/" target="_blank">http://6200networks.com/</A></P><P><A class="jive-link-custom" href="http://www.demolabs.co.uk/cisconac_demo.html" target="_blank">http://www.demolabs.co.uk/cisconac_demo.html</A></P><P></P><P>Cisco Security Center <A class="jive-link-custom" href="http://tools.cisco.com/security/center/home.x" target="_blank">http://tools.cisco.com/security/center/home.x</A></P><P></P><P></P><P></P><P>Books: </P><P></P><P>Cisco NAC Appliance: Enforcing Host Security with Clean Access by Jamey Heary, Jerry Lin, Chad Sullivan, Alok Agrawal. (2007)</P><P></P><P></P><P>Hope this helps. </P><P></P><P>Best,</P><P>Paul</P></BODY></HTML> Tue, 29 Jan 2008 21:47:59 GMT https://community.cisco.com/t5/network-security/nac-deployment/m-p/834132#M765420 pmccubbin 2008-01-29T21:47:59Z https://community.cisco.com/t5/network-security/nac-deployment/m-p/834133#M765421 <HTML><HEAD></HEAD><BODY><P>Hi!!!</P><P></P><P>As fas as my understanding goes, in NAC we must have to have at least one CAM. </P><P></P><P>In CAM all configuration is done &amp; the CAS will deliver the same to NAC compliant end devices.</P><P></P><P>Without CAm how will this be done???</P><P></P><P>CAM s/ u can't install on different servers!!!</P></BODY></HTML> Wed, 30 Jan 2008 09:02:35 GMT https://community.cisco.com/t5/network-security/nac-deployment/m-p/834133#M765421 acharyr123 2008-01-30T09:02:35Z https://community.cisco.com/t5/network-security/nac-deployment/m-p/834134#M765422 <HTML><HEAD></HEAD><BODY><P>Hi Paul,</P><P>Thank you very much.</P><P></P><P>Regards,</P><P>Stanslaus.</P></BODY></HTML> Wed, 30 Jan 2008 09:35:21 GMT https://community.cisco.com/t5/network-security/nac-deployment/m-p/834134#M765422 IT_Data_CorporateNet 2008-01-30T09:35:21Z