Chapter 8 Managing Users and Identity Stores

Managing External Identity Stores

Step 2 Choose Configuration > Endpoint Profiles > View/Edit Profiles List.

A list of profiles in a table appears.

Step 3 Click on the name of a profile to edit it.

Step 4 In the Save Profile page, ensure that the LDAP option is enabled by clicking the Yes radio button next to it, if it is not already done as shown in Figure 8-2.

Figure 8-2 Configuring Endpoint Profiles in NAC Profiler

Step 5 Click Save Profile.

Configuring NAC Profile LDAP Definition in ACS for Use in Identity Policy

After you install ACS, there is a predefined LDAP database definition for NAC Profiler. This predefined database definition for NAC Profiler contains all the required data for establishing an initial connection. The only exception is the host information, which depends on your specific deployment configuration.

The steps below describe how to configure the host information, verify the connection, and use the profile database in policies.

Note Make sure that ACS NAC Profiler is chosen under Access Policies > Access Services > Default Network Access > Identity.

Note The NAC Profiler template in ACS, available under the LDAP external identity store, works with Cisco NAC Profiler version 2.1.8 and later.

 

 

User Guide for Cisco Secure Access Control System 5.3

 

 

 

 

 

 

OL-24201-01

 

 

8-37

 

 

 

 

 

Page 189
Image 189
Cisco Systems OL-24201-01 manual Click Save Profile, Configuring Endpoint Profiles in NAC Profiler