12-05-2011 06:40 AM - edited 03-10-2019 06:36 PM
Hi,
Would like to know whether NAC server (NAC appliance 3355) is enough to provide NAC functionality without NAC manager in the network for one location say Datacenter.
Regards,
Ashok
12-07-2011 08:18 AM
Hello Ashok!
Unfortunately the Cisco NAC solution needs both Clean Access Server (CAS) and Clean Access Manager (CAM) in order to work properly. Since the CAM retains all security policies and the CAS actually implies them into the network.
So you'll need at least one appliance of each, CAS and CAM, to have Cisco NAC solution working.
Regards, Dan
01-13-2014 11:02 AM
Well, as per the solution guide and style of work of NAC systems, atleast 1 CAM is required. Although TRAFFIC is supposed traverse through CAS / NAS appliances but you can configure and work through CAM GUI only .
Hope this helps.
regards,
-K-
12-11-2011 11:16 AM
Hi Ashok,
You can use a single CAS in the network in a single location in case you have a centralized CAM for multiple locations but you would need atleast one CAM to manage all the CAS servers as all the settings and policies for CAS are stored in CAM.
Moreover, the CAS product licenses are generated based on the eth0 MAC address of the CAM, so atleast one CAS is essential.
http://www.cisco.com/en/US/docs/security/nac/appliance/release_notes/48/48rn.html#wp39625
HTH!
Regards,
Sumir
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide