30-13
Cisco Router and Security Device Manager 2.5 User’s Guide
OL-4015-12
Chapter30 Network Admission Control
Edit NAC Tab
Here is an example of a NAC configuration summary:
NAC Interface: FastEthernet0/1.42
Admission Name:: SDM_EOU_3
AAA Client Source Interface: FastEthernet0/1.40
NAC Policy Server 1: 10.77.158.54
Exception List
----------------------------------------------------------------------
Address/Device IP Address (22.22.22.2) newly added
Policy Details:
Policy Name: P55
Redirect URL: http://www.fix.com
Access Rule: test11
----------------------------------------------------------------------
Enabled agentless host policy
Username: bill
Password: ******
In this example, RADIUS packets will have the IP address of FastEthernet 0/1.40.
NAC is enabled on FastEthernet 0/1.42, and the NAC policy that the wizard
applied is SDM_EOU_3. One host has been named in the exception list, and its
access to the network is controlled by the exception policy P55.
Edit NAC Tab
The Edit NAC tab lists the NAC policies configured on the router and enables you
to configure other NAC settings. A NAC policy must be configured for each
interface on which posture validation is to be performed.

NAC Timeouts Button

The router and the client use Extensible Authentication Protocol over
Unformatted Data Protocol (EAPoUDP) to exchange posture information.
Default values for EAPoUDP timeout settings are preconfigured, but you c an
change the settings. This button is disabled if there is no NAC policy configured
on the router.