Filter
Top Products
9-43
Configuration Guide for Cisco Secure ACS 4.2
OL-14390-02
Chapter 9 NAC Configuration Scenario
Step 7: Configure Posture Validation for NAC
Figure 9-30 Audit Flow Settings and GAME Group Feedback Sections
f. If required, in the Audit Flow Setting section, set the audit-flow parameters.
g. If you are configuring GAME group feedback to support agentless host configuration in the NAC
environment, configure the settings in the GAME Group Feedback section.
For information on configuring GAME Group Feedback settings, see Enable GAME Group
Feedback, page 9-79.
h. Click Submit.
Authorization Policy and NAC Audit
Audit servers define two types of posture assessments (tokens). A:
• Temporary posture assessment is used as the in progress assessment. ACS grants the in progress
posture assessment to the agentless host while the audit server is processing the auditing on the host
and does not have a final result.
• Final posture assessment is the posture assessment that the audit server returns after it completes the
auditing process.
To configure the authorization policy to work with the audit server, at least two RACs or downloadable
ACLs are required: one for the in progress posture assessment and one for the final posture assessment.
You should use a separate RAC or downloadable ACL for each token.