Hi Ramraj,

It sounds like the user page is configured incorrectly - under the general tab for the MAC_ALL page, please make sure the "use web client" options are not checked.  After that, the client should not be required to use Java to login.

Thanks,

Lauren

Hi Lauren Sullivan

I don't have that option checked, as shown below

Hi Ramraj,

That's the settings for the web agent, not the web client - annoyingly similar names, but totally different things

For the web client, it's under Adminstration > User Pages > edit the page for MAC_ALL, and it's under the General tab.

Thanks,

Lauren

Hi Lauren Sullivan

Thank you for your prompt and kind assistance. Shown below are my present settings under Administration > User Pages > EDIT > General

Hence, do I uncheck the first item only?

Hi Lauren Sullivan

I have disable all the 3 options listed below and it's slightly better now, but when it prompts me to download the Cisco NAC agent, I get an error, "Safari cannot download the file". I believe this could be because my iPhone has not been jailbreak yet, hence I can't download? Conclusion, can I say, if you don't jailbreak your iPhone, this means iPhone cannot be used with Cisco NAC?

Hi Ramraj,

Ah - let me clarify a bit more.  You can do web authentication (no posture assessment) with iPhones (or most other mobile devices), but can't install the NAC agent or NAC web agent.

Are you able to see the user page on the iPhone now and authenticate, and then getting that agent prompt?  If so, it sounds like you have the agent required for all OSs for that user role.  So, under Clean Access > General Setup > Agent login, choose the user role, and then choose MAC_ALL as the OS.  You'll want to uncheck "use ALL settings for the Mac OS X family" and then make sure "require use of agent" and "require use of Cisco NAC web agent" are both unchecked.  If you are using the Mac agent for your OS X users, please make sure to then set the OS to MAC_OSX and check "require use of agent" there.

Thanks,

Lauren

Hi Lauren Sullivan

Yes, I have uncheck "use ALL settings for the Mac OS X family" and then make sure "require use of agent" and "require use of Cisco NAC web agent" are both unchecked.

Currently, when I use my iPhone to login into the NAC, i still see the page asking me to download the agent. WHen I click on the continue button, it hangs there. This behaviour is similar to Windows based Mobile Phones as well. What should I do? Please kindly advice.

Yes, I do have MAC OS workstations in my network. I do have the Use 'MAC_ALL' settings for this OS version set for this, as shown below? Perhaps, I should change set the OS to MAC_OSX and check "require use of agent" ONLY.