AppendixK Router Platform User Interface Reference
Network Admission Control Policy Page
K-188
User Guide for Cisco Security Manager 3.2
OL-16066-01
Field Reference
TableK-82 NAC Interface Configuration Dialog Box
Element Description
Interface The interface that will perform NAC on connecting devices. Enter the name
of an interface or interface role, or click Select to display an Object
Selectors, page F-593.
If the interface role you want is not listed, click the Create button in the
selector to display the Interface Role Dialog Box, page F-464. From here
you can create an interface role object.
Intercept ACL The ACL that defines the traffic requiring posture validation. Enter the name
of an ACL object, or click Add to display an Object Selectors, page F-593.
If the ACL you want is not listed, click the Create button in the selector to
display the dialog box for defining an ACL object (see Access Control Lists
Page, page F-31).
Note If an authentication proxy is configured on the same interface as
NAC, the same Intercept ACL must be used in both policies.
Otherwise, deployment may fail. For more information about
authentication proxies, see Configuring Settings for AAA (IOS),
page 13-151.
EAP over UDP Max
Retries
The maximum number of times that the router should try to initiate an EoU
session with a connecting device. Valid values range from 1 to 3. The default
is 3.
Note Subinterfaces support the default value only.
Enable EoU Session
Revalidation
When selected, the router revalidates its EoU sessions as required. This is the
default.
When deselected, EoU session revalidation is not performed.
Note Subinterfaces support the default value only.
OK button Saves your changes locally on the client and closes the dialog box.
Note To save your changes to the Security Manager server so that they are
not lost when you log out or close your client, click Save on the
source page.