Cisco Cisco Clean Access 3.5

The following are the general steps to add an authentication server to the Clean Access Manager.

Go to User Management > Auth Servers > New Server.

From the Authentication Type list, choose the authentication provider type. 

For Provider Name, type a name that is unique for authentication providers. If you intend to offer your 
users the ability to select providers from the login page, be sure to use a name that is meaningful or 
recognizable for your users, since this name will be used. 

Choose the Default Role (user role) to be assigned to users authenticated by this provider. This default 
role is used if not overridden by a role assignment based on MAC address or IP address. The default role 
is also assigned in the case that LDAP/RADIUS mapping rules do not result in a successful match. 

Enter an optional Description for the authentication server. 

Complete the fields specific to the authentication type you chose, as described in the following sections. 

When finished, click Add Server. 

The new authentication source appears under User Management > Auth Servers > List of Servers. 

Click the Edit button (

) next to the auth server to modify settings. 

Click the Mapping button (

) next to the auth server to configure VLAN-based mapping rules for 

any server type, or attribute-based mapping rules for LDAP, RADIUS, and Cisco VPN Servers. 

Specific parameters to add each auth server type are described in the following sections:

To set a default auth provider for users configure the Default Provider option under Administration > 
User Pages > Login Page > Edit > Content. See