Filter
Top Products
9-26
Configuration Guide for Cisco Secure ACS 4.2
OL-14390-02
Chapter 9 NAC Configuration Scenario
Step 5: Set Up Shared Profile Components
The sample RACs are:
• Cisco_FullAccess—Provides full access to the Cisco network. You use this RAC to grant access to
clients that qualify as healthy.
• Cisco_Restricted—Provides restricted access to the Cisco network. You uses this RAC to grant
partial (quarantined) access to clients that do not qualify as healthy.
To define RACs:
Step 1 In the navigation bar, click Shared Profile Components.
The Shared Profile Components page opens.
Step 2 Click RADIUS Authorization Components.
The RADIUS Authorization Components table appears. Initially, this table does not contain any RACs.
Step 3 Click Add.
The RADIUS Authorization Components Page opens, as shown in Figure 9-16.
Figure 9-16 RADIUS Authorization Components Page
Step 4 Enter a Name and Description in the RADIUS Authorization Components page.
Step 5 In the Add New Attribute section, add the RADIUS attributes for the RAC.
a. To add an attribute, from the drop-down lists for Cisco IOS/PIX 6.0, IETF, and Ascend, choose the
attribute that you want to add and then click Add.
For example, from the IETF drop-down list, choose Session-Timeout (27) and click Add.
The RAC Attribute Add/Edit page opens. Figure 9-17 shows the RAC Attribute Add/Edit page
for Session-Timeout (27).