configuration in ACS 229 network policy enforcement 60 placement 67

polling of posture status 61 posture validation 59 PostureQuery 444 session initiation 59

network admission control 15, 78, 87 appliance 17, 45 authentication server 214 clientless user 283 deployment scenario 27 external user database 283 guest VLAN 283

identity based decision 22 implementation phase 88 overview 471 performance controls 34 physical components 118 posture based decision 21 process 20, 444 revalidation period 34 sequence of events 447 status query period 34

networking

identity based services 95 non-responsive hosts

configuration 300

O

object 25, 57 operational cost 98 out-of-band 45, 82

... vs. in-band 456

NAC Appliance deployment 303 virtual gateway configuration 306

P

password

quality standards 95

settings collector configuration 165 PEAP 59

client session 60 PEAP session 191 performance controls 34 personal firewall 53

collector configuration 171 physical components 52

pnotify 454

 

 

 

 

 

Point-to-Point Protocol

23

 

policy 8

 

 

 

 

 

 

 

collector

50, 53, 57, 61, 104, 153–154, 357, 444

configuration 358

 

compliance solution

46

creation

26, 58

 

 

... and deployment

56

deployment

57

 

 

enforcement

32

 

 

device

43

 

 

 

implementation

31

 

 

life cycle management

30

violation

 

20

 

 

 

 

PolicyVersion

442, 444

 

polling the client

43

 

 

pop-up notification

277

 

port profile

 

320

 

 

 

 

posture

 

 

 

 

 

 

 

agent

24, 34

 

 

 

cache

50, 58, 454

 

 

cache data

 

 

 

 

age

 

106

 

 

 

conceptual flow

107

check status

357

 

 

client request

99

 

 

collection process

58

 

collector

 

18, 48, 50, 53, 57–58, 103, 153, 395

workflow attributes

403

credentials

43–44, 50

 

criteria

 

58

 

 

 

 

data collection

50

 

 

element HTML

402

 

item HTML

400

 

 

plug-in

 

44, 48, 51, 199, 212

policy

89

 

 

 

 

 

HTML debugging attributes 406

version

104, 110

 

query

59

 

 

 

 

 

status

20, 154

 

 

determination 50

 

information

110

 

reply

 

59

 

 

 

token

444

 

 

 

 

validation

54, 59

 

 

configuration 244

 

policy

112

 

 

 

process enablement

299

server

32, 41, 43, 50

Index 491

Page 509
Image 509
IBM Tivoli and Cisco manual Creation Deployment