https://community.cisco.com/t5/network-security/nac-support/m-p/403266#M818571 <HTML><HEAD></HEAD><BODY><P>Hey there -</P><P></P><P>NAC as a feature of the CAT OS or IOS is not available today. This feature will hopefully be available in the next few months.</P><P></P><P>NAC Out of Band is available today as a dedicated appliance. You can find more information here at: <A class="jive-link-custom" href="http://www.cisco.com/go/cca" target="_blank">http://www.cisco.com/go/cca</A></P><P></P><P>I recommend to most customers to start with NAC on router at a Layer 3 hop in their network. I strongly recommend starting a NAC implementation at a L3 hop before the Internet Firewall.</P><P></P><P>This permits you to prepare for when NAC is released for the switches and lets your users become accustomed to being checked for compliance and trust as they use your network.</P><P></P><P>Let us know if you have any follow up questions.</P><P></P><P>thanks</P><P>peter</P></BODY></HTML> Tue, 03 May 2005 12:49:29 GMT pcomeaux 2005-05-03T12:49:29Z https://community.cisco.com/t5/network-security/nac-support/m-p/403265#M818558 <P>Hi,</P><P></P><P>Is NAC supported on the Catalyst 6500s with Sup2/MSFC2?</P><P></P><P>Thanks,</P><P></P><P>MRD</P> Fri, 21 Feb 2020 08:07:15 GMT https://community.cisco.com/t5/network-security/nac-support/m-p/403265#M818558 mdrake 2020-02-21T08:07:15Z https://community.cisco.com/t5/network-security/nac-support/m-p/403266#M818571 <HTML><HEAD></HEAD><BODY><P>Hey there -</P><P></P><P>NAC as a feature of the CAT OS or IOS is not available today. This feature will hopefully be available in the next few months.</P><P></P><P>NAC Out of Band is available today as a dedicated appliance. You can find more information here at: <A class="jive-link-custom" href="http://www.cisco.com/go/cca" target="_blank">http://www.cisco.com/go/cca</A></P><P></P><P>I recommend to most customers to start with NAC on router at a Layer 3 hop in their network. I strongly recommend starting a NAC implementation at a L3 hop before the Internet Firewall.</P><P></P><P>This permits you to prepare for when NAC is released for the switches and lets your users become accustomed to being checked for compliance and trust as they use your network.</P><P></P><P>Let us know if you have any follow up questions.</P><P></P><P>thanks</P><P>peter</P></BODY></HTML> Tue, 03 May 2005 12:49:29 GMT https://community.cisco.com/t5/network-security/nac-support/m-p/403266#M818571 pcomeaux 2005-05-03T12:49:29Z https://community.cisco.com/t5/network-security/nac-support/m-p/403267#M818575 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P>NAC appliance (CCA) supports the following platform:</P><P></P><P>Cat 2950, 3550, 3560, 3750, 4500, 6500. </P><P></P><P>Nick </P></BODY></HTML> Wed, 18 May 2005 04:28:36 GMT https://community.cisco.com/t5/network-security/nac-support/m-p/403267#M818575 nchong 2005-05-18T04:28:36Z https://community.cisco.com/t5/network-security/nac-support/m-p/403268#M818581 <HTML><HEAD></HEAD><BODY><P>Hey Peter,</P><P></P><P>Thanks again for helping me understand NAC better. It was a pleasure meeting you.</P><P></P><P>Is there a policy server or an update to ACS 3.3 that will enable us to scan for what version of Internet Explorer a user has and place that user in an appropriate Group?</P><P></P><P>I'm also trying to find a way to automatically open an IE browser window on an unknown client's system.</P><P></P><P>Thanks,</P><P>Stephen</P></BODY></HTML> Tue, 07 Jun 2005 20:20:11 GMT https://community.cisco.com/t5/network-security/nac-support/m-p/403268#M818581 steking 2005-06-07T20:20:11Z https://community.cisco.com/t5/network-security/nac-support/m-p/403269#M818586 <HTML><HEAD></HEAD><BODY><P>Hi Stephen -</P><P></P><P>I am glad I could be of help!</P><P></P><P>Checking for custom apps like IE is not a check CTA can currently do. This may become a feature in a version of CTA late this year.</P><P></P><P>For users who fall into the group of Unknown, the user's can experience a web page redirect when they attempt to connect to a website (which they are denied to) on the other side of a NAC enabled router.</P><P></P><P>There's no mechanism to automatically open a browser, though, for any Group within NAC today.</P><P></P><P>thanks</P><P>peter</P></BODY></HTML> Wed, 08 Jun 2005 19:42:21 GMT https://community.cisco.com/t5/network-security/nac-support/m-p/403269#M818586 pcomeaux 2005-06-08T19:42:21Z https://community.cisco.com/t5/network-security/nac-support/m-p/403270#M818595 <HTML><HEAD></HEAD><BODY><P>Is HSRP on two 6500's with NAC supported? What about WSLM?</P></BODY></HTML> Mon, 05 Mar 2007 21:18:46 GMT https://community.cisco.com/t5/network-security/nac-support/m-p/403270#M818595 greg_walton 2007-03-05T21:18:46Z https://community.cisco.com/t5/network-security/nac-support/m-p/403271#M818599 <HTML><HEAD></HEAD><BODY><P>Yes, NAC Appliance can be implemented with 6500s using HSRP on vlans. NAC Appliance can also be deployed in Wireless deployments, both LWAPP and Autonomous wireless environments.</P><P></P><P>peter</P></BODY></HTML> Mon, 05 Mar 2007 21:21:58 GMT https://community.cisco.com/t5/network-security/nac-support/m-p/403271#M818599 pcomeaux 2007-03-05T21:21:58Z https://community.cisco.com/t5/network-security/nac-support/m-p/403272#M818604 <HTML><HEAD></HEAD><BODY><P>Dear Peter,</P><P></P><P>I am using Cisco NAC 4.1.0.2.</P><P></P><P>Even though I upload Nessus plugin and I get message that plugin was successfully updated. I can not see any plugins.</P><P></P><P>Is there any bug ?</P><P></P><P></P></BODY></HTML> Wed, 25 Apr 2007 08:16:17 GMT https://community.cisco.com/t5/network-security/nac-support/m-p/403272#M818604 shahmanishv 2007-04-25T08:16:17Z