Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
899
Views
0
Helpful
7
Replies

NAC support?

mdrake
Level 1
Level 1

‎05-02-2005 06:40 AM - edited ‎02-21-2020 12:07 AM

Hi,

Is NAC supported on the Catalyst 6500s with Sup2/MSFC2?

Thanks,

MRD

0 Helpful
7 Replies 7

pcomeaux
Cisco Employee
Cisco Employee

‎05-03-2005 05:49 AM

Hey there -

NAC as a feature of the CAT OS or IOS is not available today. This feature will hopefully be available in the next few months.

NAC Out of Band is available today as a dedicated appliance. You can find more information here at: http://www.cisco.com/go/cca

I recommend to most customers to start with NAC on router at a Layer 3 hop in their network. I strongly recommend starting a NAC implementation at a L3 hop before the Internet Firewall.

This permits you to prepare for when NAC is released for the switches and lets your users become accustomed to being checked for compliance and trust as they use your network.

Let us know if you have any follow up questions.

thanks

peter

0 Helpful

steking
Level 1
Level 1
In response to pcomeaux

‎06-07-2005 01:20 PM

Hey Peter,

Thanks again for helping me understand NAC better. It was a pleasure meeting you.

Is there a policy server or an update to ACS 3.3 that will enable us to scan for what version of Internet Explorer a user has and place that user in an appropriate Group?

I'm also trying to find a way to automatically open an IE browser window on an unknown client's system.

Thanks,

Stephen

0 Helpful

pcomeaux
Cisco Employee
Cisco Employee
In response to steking

‎06-08-2005 12:42 PM

Hi Stephen -

I am glad I could be of help!

Checking for custom apps like IE is not a check CTA can currently do. This may become a feature in a version of CTA late this year.

For users who fall into the group of Unknown, the user's can experience a web page redirect when they attempt to connect to a website (which they are denied to) on the other side of a NAC enabled router.

There's no mechanism to automatically open a browser, though, for any Group within NAC today.

thanks

peter

0 Helpful

shahmanishv
Level 1
Level 1
In response to pcomeaux

‎04-25-2007 01:16 AM

Dear Peter,

I am using Cisco NAC 4.1.0.2.

Even though I upload Nessus plugin and I get message that plugin was successfully updated. I can not see any plugins.

Is there any bug ?

0 Helpful

nchong
Level 1
Level 1

‎05-17-2005 09:28 PM

Hello,

NAC appliance (CCA) supports the following platform:

Cat 2950, 3550, 3560, 3750, 4500, 6500.

Nick

0 Helpful

greg_walton
Level 1
Level 1
In response to nchong

‎03-05-2007 01:18 PM

Is HSRP on two 6500's with NAC supported? What about WSLM?

0 Helpful

pcomeaux
Cisco Employee
Cisco Employee
In response to greg_walton

‎03-05-2007 01:21 PM

Yes, NAC Appliance can be implemented with 6500s using HSRP on vlans. NAC Appliance can also be deployed in Wireless deployments, both LWAPP and Autonomous wireless environments.

peter

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card