Figure 3-3shows the Cisco Trust Agent architecture, followed by a brief explanation of the components that make up the Cisco Trust Agent.

 

Client Application

 

 

(EXT-Service)

Application supplied

 

 

 

 

Posture Credential

 

 

Providers

 

EXT-Service

 

 

Posture-Plug-in

 

Logging

EAP

Posture

Service

Methods

Plug-in

 

Cisco Trust Agent

 

 

Service

 

 

NAD

 

 

Device

 

Figure 3-3 Cisco Trust Agent architecture

Cisco Trust Agent service Responds to network requests for client system

posture information.

Logging service

Logs event information received from Cisco Trust

 

Agent components and from NAC-compliant

 

applications into log files.

Posture plug-in

Provides the capability to collect information such as

 

operating system type and version.

EXT-Postureplug-inRepresents an external or third-party posture plug-in. This is a communication path provided by Cisco Trust Agent software to enable system integrators to pass posture information to the Cisco Trust Agent. For IBM Integrated Security Solution for Cisco Networks, an IBM-developed posture plug-in communicates with Cisco Trust Agent and provides posture credentials.

44Building a Network Access Control Solution with IBM Tivoli and Cisco Systems

Page 62
Image 62
IBM Tivoli and Cisco manual Logging service, Posture plug-in