08-18-2004 04:06 AM - edited 02-21-2020 10:11 AM
We have VMS 2.2 with CSA 4.0 agents. We also have an ACS3.1 on the network. We want to implement the following functionality: If lets say a certain user does not have all antivirus or OS updates installed, then ACS and CSA should not allow the user to access the network. This functionality can be achieved by using the Cisco Trust Agent (CTA), but I was wondering if we can do the same with CSA. Does anyone know about it?
Thank you
08-19-2004 07:48 PM
in the current version of vms, you can't do acs authorization or authentication using an acs server. what you are wanting to do, is currently not possible.
chris
08-19-2004 07:49 PM
i should clarify my previous post. you can't do authorization or authentication with CSA. it can be done with ids mc and fw mc.
sorry.
chris
08-19-2004 09:47 PM
thanks a lot chris for the answer.
09-09-2004 05:12 AM
First you must upgrade to ACS 3.3 to add the CTA functionality. Secondly, you must run CTA and CSA to get the abilities that you want. At this point CTA is NOT embedded in CSA. Essentially, CTA is the transport to ACS. CTA gathers the required information from CSA and Antivirus APIs and forwards it to ACS. We're currently testing NAC at the moment. So far I'm reasonably impressed.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide