Cisco 3.3 User Manual
Page 605
14-33
User Guide for Cisco Secure ACS for Windows Server
78-16592-01
Chapter 14 Network Admission Control
NAC Policies
d.
Under Credential Validation Policies, click External Policies.
The Select External Policies page appears.
e.
Click New External Policy.
The External Policy Configuration page appears.
Step 2
In the Name box, type a descriptive name for the policy.
Step 3
In the Description box, type a useful description of the policy.
Step 4
In the Primary Server configuration area, do the following:
a.
Select the Primary Server configuration check box.
Note
If you do not select the Primary Server configuration check box,
Cisco Secure ACS uses the secondary server configuration. If no
secondary server configuration exists or if the secondary server is
unreachable, the posture validation request is rejected.
b.
Provide configuration details about the primary NAC server. For more
information about the boxes and list in this area, see
Configuration Options, page 14-29
.
Step 5
(Optional) In the Secondary Server configuration area, do the following:
a.
Select the Secondary Server configuration check box
b.
Provide configuration details about the secondary NAC server. For more
information about the boxes and list in this area, see
Configuration Options, page 14-29
.
Step 6
Select the posture validation credential types that Cisco Secure ACS should send
to the external NAC server.
For each posture validation credential type that you want Cisco Secure ACS to
send to the external NAC server, select the credential type in the Available
Credentials list and click the right arrow (-->).
The credential type appears in the Selected Credentials list.
Tip
To remove a credential type from the Selected Credentials list, select it
and click the left arrow (<--).
Step 7
Click Submit.