Appendix a. hints and tips – IBM Tivoli and Cisco User Manual

Appendix A. Hints and tips

469

Since scenarios 5 and 6 are the most complex, the sequence of events for these
scenarios is depicted in Figure 8-43.

Figure 8-43 Sequence of Events for Scenarios #5 and #6

Scenario 7 - pre-admission, Security Compliance Manager running,
compliant client

– NAC Appliance restarts admission process.

– Security Compliance Manager Client is running and semaphore = 1

– Admit client

Scenario 8 - post-admission, Security Compliance Manager running,
compliant client

– In this case, the semaphore should start as 1 since we have been

admitted.

– Windows Scheduler or cron job runs statuscheck.exe.

N AC A ppliance Agent

Sem aphore

T SC M Agent.exe

s tatusc hec k .exe

T SC M C lient

R em ediation U I

pquery

Violations >0

N AC Applianc e M anager

pnotify

Sem aphore?

Sem aphore=0

Sem aphore=0

Kick U ser

Authenticate

Sem aphore?

Sem aphore<1

Quarantine

Exec ute

Sem aphore=0

S em aphore=-1

Exec ute

pquery

Violations >0

pnotify

Sem aphore?

Sem aphore=-1

Ex ecute

R em ediate

R esc an

Sem aphore=1

Sem aphore?

Sem aphore=1

Adm it

#5

Starts

here