Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1957
Views
0
Helpful
4
Replies

Problems with the Cisco NAC agent, does not perform remediation??

yeseniamm
Level 1
Level 1

‎04-09-2010 07:50 AM - edited ‎02-21-2020 03:55 AM

Good Morning

I'm doing an implementation of NAC, but when the user is authenticated, the agent informs you that does not comply with defined security policies, to start the repair and re-scan the machine error appears "NAC Server is not available on the net" . The policy I am doing is to check a file on local disk C

Deputy error screen

I appreciate your responses as soon as possible

Preview file
31 KB
0 Helpful
4 Replies 4

yeseniamm
Level 1
Level 1

‎04-09-2010 08:01 AM

The policy I am doing is to check a file on local disk C

regards

0 Helpful

mecampr
Level 1
Level 1
In response to yeseniamm

‎07-21-2010 03:16 PM

did you ever get that fixed, as it seems that is the same problem im having. The error only appears when i ask for remediation, if I allow it through without any rules, nac works fine.

0 Helpful

JUAN HUICAB
Level 1
Level 1

‎07-21-2010 05:20 PM

I think that the problem it could be in the way you assigned the new vlan to that user or the vlan itself, so I recommend you that double check the trafficc control at the remediation zone and verify that zone could reach CAM/CAS.

Juan Huicab Internetworking juan.huicab@nextiraone.com.mx T 52 (81) 1001 8000 E 8015 C 52 (81) 1077 2435 San Pedro Garza García, N. L. México www.nextiraone.com.mx
0 Helpful

mecampr
Level 1
Level 1
In response to JUAN HUICAB

‎07-22-2010 05:22 AM

the problem i have is when it moves into remediation....phase 2. If no remediation is being done (ie no checks, rules scans etc) then it moves directly from phase 1 (authentication) to phase 3 (authenticated user and assign role) and all works fine.

I've looked under all the traffic rules and can see nothing that would mean it could not contact the CAS. There are some differences in 4.7, like the ethernet traffic filter. It seems to me when put in the temp role, the vlan should still be the auth vlan. There is a role based vlan option under edit roles, but it states that is only for normal login, not tem agent, so it should not apply.

Im starting to think something has gone wrong with the upgrade code somewhere....TAC looked at my config  and could see nothing on a quick check, im working with them to resolve the issue

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card