physical components

121

pop-up notification

277

posture plug-in

44, 51

posture status reply

59

SCM client communication 48

secure communication

63

Service

44

 

 

 

 

 

troubleshooting

453

 

violation count

 

58

 

 

Clean Access Agent

45, 82, 456, 478

configuration

303, 334

Clean Access Manager

45, 82, 303, 455, 478

policy

99

 

 

 

 

 

Clean Access Server

18, 45, 82, 303, 455, 478

compliance check

 

99

 

client network access

 

59

 

clientless hosts

 

 

 

 

 

configuration

300

 

 

clientless user 283

 

 

 

 

collector 18, 49, 442

 

 

 

antivirus configuration

163

hotfixes 169

 

 

 

 

 

password settings

 

165

personal firewall

 

171

 

posture collector

153

 

service pack level

 

167

service running

177

 

com.ibm.scm.nac.posture.PolicyCollector 357 com.ibm.scm.nac.tcmremed.client.TCMRemed 357

communication flow 55 security 62

comparison

between NAC Framework and NAC Appliance 17

compliance 85 check 99

component implementation 125 concept 4

criteria 103

criteria for workstations 100 data 18

decisions 103 exception 29 management

business process 28 policy 57, 395

assigning to clients 186

configuration 152 customization 161 versioning 103

posture collector 153 query 19

report 46 requirements 96 server 34

status for workstations 97 status reports 29–30 user interface 20 violation 50

confidentiality 30 configuration

Access Control Server authentication and authorization 241 authorization rule 280

certificate setup 219 downloadable ACL 284 for NAC L2 802.1x 214 for NAC L2/L3 IP 283 groups 237

logging 226

posture validation 244 ACLs 293

administrative interface to Access Control Serv- er 216

antivirus collector 163

Clean Access Agent 303, 334 clientless hosts 300 compliance policy 152 hotfix collector 169

HTTP administrator access for ACS 218 NAC Appliance components 303

NAC Framework 214

network access profile 271, 289 network interface 301 out-of-band virtual gateway 306 password settings collector 165 personal firewall collector 171 policy collector 358

posture validation process 299

RADIUS Authorization Components 264, 287 RADIUS for NAC 236

remediation client 357 packages 417 server 385 workflows 417

488Building a Network Access Control Solution with IBM Tivoli and Cisco Systems

Page 506
Image 506
IBM Tivoli and Cisco manual SCM client communication