Cisco Cisco Clean Access 3.5
8-9
Cisco Clean Access Manager Installation and Administration Guide
OL-7044-01
Chapter 8 User Management: Traffic Control, Bandwidth, Schedule
Add Global Host-Based Traffic Policies
Enable Default Allowed Hosts
Cisco Clean Access provides default host policies for the Unauthenticated, Temporary, and Quarantine
roles. With release 3.5(5) and above, Default Host Policies are initially pulled down to your system, then
dynamically updated, through performing a Clean Access Update or Clean Update. Newly added
Default Host Policies are disabled by default, and must be enabled for each role under User
Management > User Roles > Traffic Control > Hosts.
roles. With release 3.5(5) and above, Default Host Policies are initially pulled down to your system, then
dynamically updated, through performing a Clean Access Update or Clean Update. Newly added
Default Host Policies are disabled by default, and must be enabled for each role under User
Management > User Roles > Traffic Control > Hosts.
To Enable (Automatic-Update) Default Host Policies
1.
Upgrade your Cisco Clean Access system to release 3.5(5) or above.
2.
Go to Device Management > Clean Access > Clean Access Agent > Updates. (see
3.
Click Update or Clean Update to get the latest Default Host Policies (along with Clean Access
updates).
updates).
4.
Go to User Management > User Roles > Traffic Control > Host.
5.
Choose the role (Unauthenticated, Temporary, or Quarantine) for which to enable a Default Host
Policy from the dropdown menu and click Select.
Policy from the dropdown menu and click Select.
6.
Click the Enable checkbox for each default host policy you want to permit for the role (see
for an example).
7.
Make sure a Trusted DNS server is added (see
8.
To add additional custom hosts for the roles, follow the instructions for
Note
See
, for complete details on configuring Updates,.