cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
656
Views
0
Helpful
1
Replies

NAC - Clean Access Agents keeps poping up even when it's authenticated

alex goshtaei
Level 1
Level 1

Hi All,

I've setup OOB/IB/L3 NAC. after login to CAA, authentication happens and VLAN is changed on switch. But CAA pops up again and asks for usrename and password, even it's been already authenticated.

any suggestion would be appreciated.

Alex

1 Reply 1

Faisal Sehbai
Level 7
Level 7

Alex,

How are you forcing the traffic to the NAC? Using ACLs or PBRs?

What you're describing indicates that you're more than likely using ACL method. If so, ensure that in your access subnet, you are disallowing traffic being sent to the CAS. After your client authenticates and is in the access VLAN, the agent would still continue to send out the discovery packets every 5 seconds, and if that traffic is allowed in the access VLAN, it will pop the agent up again.

HTH,

Faisal

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: