Filter
Top Products
9-44
Configuration Guide for Cisco Secure ACS 4.2
OL-14390-02
Chapter 9 NAC Configuration Scenario
Step 8: Set Up Templates to Create NAPs
Step 8: Set Up Templates to Create NAPs
ACS 4.1 provides several profile templates that you can use to configure common usable profiles. In
NAC-enabled networks, you can use these predefined profile templates to configure commonly used
profiles. This section describes the templates provided in ACS 4.1.
Sample NAC Profile Templates
ACS 4.1 provides the following sample profile templates for NAC. A:
• NAC Layer 3 profile template (NAC L3 IP)
• NAC Layer 2 profile template (NAC L2 IP)
• NAC Layer 2 802.1x template (NAC L2 802.1x)
• Wireless (NAC L2 802.1x) template
In addition to these templates, ACS 4.1 provides two templates for agentless host processing that you
can use in NAC installations:
• Agentless Host for Layer 3 profile template
• Agentless Host for Layer 2 (802.1x) profile template
Sample NAC Layer 3 Profile Template
This template creates a profile for Layer 3 NAC requests. Before you use this template, you should
choose System Configuration > Global Authentication Setup and check the Enable Posture
Validation check box.
To create a Layer 3 NAC profile template:
Step 1 Check the check boxes for the following options in the Global Authentication Setup page:
• Allow Posture Validation
• EAP-FAST
• EAP-FAST MS-CHAPv2
• EAP-FAST GTC
Step 2 In the navigation bar, click Network Access Profiles.
The Network Access Profiles page opens.
Step 3 Click Add Template Profile.
The Create Profile from Template page opens, as shown in Figure 9-31.