Adding, Accessing, Or Removing A Nac Policy - Cisco PIX 500 Series Configuration Manual
Security appliance command line
Hide thumbs
Also See for PIX 500 Series:
- Administration manual (653 pages) ,
- Quick start manual (72 pages) ,
- User manual (60 pages)
Table of Contents
Advertisement
Adding, Accessing, or Removing a NAC Policy
Table 2
Field
applied session count
applied group-policy count
group-policy list
Refer to the following sections to create a NAC policy or modify one that is already present.
Adding, Accessing, or Removing a NAC Policy
Enter the following command in global configuration mode to add or modify a NAC policy:
Use the no version of the command to remove a NAC policy from the configuration. Alternatively, you
can enter the clear configure nac-policy command to remove all NAC policies from the configuration
except for those that are assigned to group policies. When entering the command to remove or prepare
to modify a NAC policy, you must specify both the name and type of the policy.
nac-policy-name is the name of a new NAC policy or one that is already present. The name is a string of
up to 64 characters. The show running-config nac-policy command displays the name and
configuration of each NAC policy already present on the security appliance.
nac-framework
remote hosts. A Cisco Access Control Server must be present on the network to provide NAC Framework
services for the security appliance. When you specify this type, the prompt indicates you are in
nac-policy-nac-framework
policy.
You can create more than one NAC Framework policy, but you can assign no more than one to a group
policy.
For example, the following command creates and accesses a NAC Framework policy named
nac-framework1:
hostname(config)# nac-policy nac-framework1 nac-framework
hostname(config-nac-policy-nac-framework)
Cisco Security Appliance Command Line Configuration Guide
33-4
show nac-policy Command Fields
[
]
nac-policy-name
no
nac-policy
specifies that a NAC Framework configuration will provide a network access policy for
configuration mode. This mode lets you configure the NAC Framework
Chapter 33
Description
Cumulative number of VPN sessions to which this security appliance
applied the NAC policy.
Cumulative number of group polices to which this security appliance
applied the NAC policy.
List of group policies to which this NAC policy is assigned. In this
case, the usage of a group policy does not determine whether it
appears in this list; if the NAC policy is assigned to a group policy in
the running configuration, then the group policy appears in this list.
nac-framework
Configuring Network Admission Control
OL-12172-03
Advertisement
Table of Contents
Troubleshooting
