Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
476
Views
0
Helpful
1
Replies

NAC - URL Redirect issues

t3watts33
Level 1
Level 1

‎08-21-2006 07:08 AM - edited ‎02-21-2020 01:07 AM

I'm testing NAC on a 3000 series concentrator using ACS 4.x. I'm now to the point where I need to test the user experience when someone connects without the CTA agent. We can quarantine them with the downloadable ACL but I need to redirect them to a remediation site. I configured the unknown RAC to use cisco-av-pair | url-redirect=<URL>. When the client lauches a browser they are not redirected (doesnt matter if the home page is set to internal or external). If I type in an internal URL i finally get redirected. Some internal URL's dont redirect and external URL's dont redirect at all. Is anyone else having issues with this? We can see that the RAC attributes for URL redirect are being passed by looking at the logs.

I need the browser to automatically be redirected when launched no matter if the home page is set to internal or external. Of course this wouldnt apply to systems with CTA already installed.

Thanks in advance.

0 Helpful
1 Reply 1

b.hsu
Level 5
Level 5

‎08-25-2006 09:42 AM

NAC URL redirect does not occur for hosts that use SOCKS proxy. URL redirect monitors ports 80 and 443 for HTTP connections. SOCKS proxy HTTP connections occur on a different port. As a result, the host is either not redirected or it displays a "Page not found" error.

URL redirect is configured on an ACS server and passed to the VPN 3000 Concentrator during posture validation. You cannot change its settings from the VPN 3000 Concentrator.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card