IBM Tivoli and Cisco User Manual

44

Building a Network Access Control Solution with IBM Tivoli and Cisco Systems

Figure 3-3 shows the Cisco Trust Agent architecture, followed by a brief
explanation of the components that make up the Cisco Trust Agent.

Figure 3-3 Cisco Trust Agent architecture

Cisco Trust Agent service Responds to network requests for client system

posture information.

Logging service

Logs event information received from Cisco Trust
Agent components and from NAC-compliant
applications into log files.

Posture plug-in

Provides the capability to collect information such as
operating system type and version.

EXT-Posture plug-in

Represents an external or third-party posture
plug-in. This is a communication path provided by
Cisco Trust Agent software to enable system
integrators to pass posture information to the Cisco
Trust Agent. For IBM Integrated Security Solution for
Cisco Networks, an IBM-developed posture plug-in
communicates with Cisco Trust Agent and provides
posture credentials.

Client Application

(EXT-Service)

EXT-Service

Posture-Plug-in

EAP

Methods

Posture

Plug-in

Logging

Service

Cisco Trust Agent

Service

NAD

Device

Application supplied

Posture Credential

Providers