Cisco Systems CSACS3415K9 Configuring NAC Profile LDAP Definition in ACS for Use in Identity Policy

8-37

User Guide for Cisco Secure Access Control System 5.4

OL-26225-01

Chapter8 Managing Users and I dentity Stores

Managing External Identity Stores

Step2 Choose Configuration > Endpoint Profiles > View/Edit Profiles List.

A list of profiles in a table appears.

Step3 Click on the name of a profile to edit it.

Step4 In the Save Profile page, ensure that the LDAP option is enabled by clicking the Yes radio button next

to it, if it is not already done as shown in Figure8-2.

Figure8-2 Configuring Endpoint Profiles in NAC Profiler

Step5 Click Save Profile.

Configuring NAC Profile LDAP Definition in ACS for Use in Identity Policy

After you install ACS, there is a predefined LDAP database definition for NAC Profiler. This predefined

database definition for NAC Profiler contains all the required data for establishing an initial connection.

The only exception is the host information, which depends on y our specific deployment configuration.

The steps below describe how to configure the host information, verify the connection, and use the

profile database in policies.

Note Make sure that ACS NAC Profiler is chosen under Access Policies > Access Services > Default

Network Access > Identity.

Note The NAC Profiler template in ACS, available under the LDAP external identity store, works with Cisco

NAC Profiler version 2.1.8 and later.