Cisco 3.3 User Manual
Page 607
14-35
User Guide for Cisco Secure ACS for Windows Server
78-16592-01
Chapter 14 Network Admission Control
NAC Policies
Tip
If the policy you want to edit does not appear in the Credential Validation
Policies table, click Local Policies or External Policies, as applicable,
move the policy you want to edit to the Selected Policies list, and click
Submit. You can remove the policy from the Credential Validation
Policies table when you are done editing it.
The applicable policy configuration page appears.
Step 5
Edit the policy as needed. Be aware of the following:
•
If you change the name of the policy, clicking Submit creates a new policy.
Cisco Secure ACS stores the new policy and does not change the
configuration of the old policy. The old policy remains on the Credential
Validation Policies table of each database that it was on before creating the
new policy.
When you click Submit after changing the policy name, the applicable policy
selection page for the NAC database you selected in
. You can modify
the policy selection, if desired, and then click Submit.
•
To edit a local policy rule, in the Configurable Rules table, click the rule
name. The Edit Rule page displays the Rule Elements table. Add, modify, or
remove rule elements from the rule as needed, and then click Submit to return
to the Policy Configuration page.
Step 6
Click Submit.
Cisco Secure ACS saves the changes you made to the policy. The Expected Host
Configuration page reappears, or if you changed the policy name, a policy
selection page appears, enabling you to select the new policy for the NAC
database you selected in
.
Tip
If you added the policy to the NAC database only so that you could edit
it, be sure to remove it from the applicable Selected Policies list. To do
so, click Local Policies or External Policies, as applicable, move the
policy to the Available Policies list, and click Submit.