Filter
Top Products
9-69
Configuration Guide for Cisco Secure ACS 4.2
OL-14390-02
Chapter 9 NAC Configuration Scenario
Step 9: Map Posture Validation Components to Profiles
Authentication Policy
To configure an authentication policy for the Agentless Host for Layer 3 template:
Step 1 Go to Network Access Profiles.
Step 2 Choose the Authentication link from the Policies column.
The Authentication page for the profile appears, as shown in Figure 9-53.
Figure 9-53 Authentication Page for Agentless Host for Layer 3 Profile Template
On this page, you can see the Agentless Host for Layer 3 template configuration for authentication:
Step 3 Specify the external database that ACS uses to perform authentication:
a. To keep the default setting (ACS uses its internal database), click the Internal ACS DB radio button.
b. To specify a LDAP server, click the LDAP Server radio button and then, from the drop-down list,
choose an LDAP server.
c. From the If Agentless request was not assigned a user-group drop-down list, choose a user group
to which ACS assigns a host that is not matched to a user group.
Step 9: Map Posture Validation Components to Profiles
To add an internal posture validation policy, external posture validation server, or both, to a profile:
Step 1 Choose Network Access Profiles.
Step 2 Choose the relevant profile Posture Validation policy.
Step 3 Click Add Rule.
Step 4 Enter a Name for the rule.