Cisco Cisco Clean Access 3.5
5-11
Cisco Clean Access Manager Installation and Administration Guide
OL-7044-01
Chapter 5 User Management: User Roles
Create User Roles
Modify Role
From the List of Roles tab (
), you can configure traffic and bandwidth policies
for any user role. You can also edit the Clean Access Agent Temporary role, Quarantine role, and any
normal login role you have created.
normal login role you have created.
Figure 5-3
List of Roles
Operations you can perform from the List of Roles tab are as follows:
•
The Policies button (
) links to the Traffic Control tab and lets you set traffic filter policies for
the role. For details, see
Roam Policy
With roaming support enabled, determines whether users in this role are allowed
to roam. See
to roam. See
for details.
Show Logged-on
Users
Users
The information that should be displayed to web users in the Logout page. After
the web user successfully logs in, the Logout page pops up in its own browser and
displays user status based on the combination of options you select:
the web user successfully logs in, the Logout page pops up in its own browser and
displays user status based on the combination of options you select:
•
IPSec info – The IPSec key assigned to the user. If the dynamic IPSec key
option is enabled, this is the one-time, 128-bit key. If disabled, this is the
default preshared key.
option is enabled, this is the one-time, 128-bit key. If disabled, this is the
default preshared key.
•
PPP info – The password for PPP access on the network.
•
User info – Information about the user, such as the user name.
•
Logout button – A button for logging the user off the network (web Logout
page only).
page only).
for an example of a Logout
page.
Note
For users on Clean Access Agent 3.5.1 and above, a link to a VPN Info
dialog is provided in the success login and taskbar menu if an Optional or
Enforce VPN Policy is enabled for both the CAS and user role. See
dialog is provided in the success login and taskbar menu if an Optional or
Enforce VPN Policy is enabled for both the CAS and user role. See
.
Table 5-1
Role Properties (continued)
Control
Description