Cisco Cisco NAC Appliance 4.1.0
10-4
Cisco NAC Appliance - Clean Access Manager Installation and Administration Guide
OL-12214-01
Chapter 10 Clean Access Implementation Overview
Clean Access Overview
Clean Access Agent Client Assessment Process
a user authenticates via Clean Access Agent.
Figure 10-3
Clean Access Agent Client Assessment
The following user roles are used for Clean Access and must be configured with traffic policies and
session timeout:
session timeout:
•
The Unauthenticated role applies to unauthenticated users behind a Clean Access Server and is
assigned to users performing web login/network scanning.
assigned to users performing web login/network scanning.
•
The Clean Access Agent Temporary Role is assigned to users performing Clean Access Agent login.
•
The Quarantine role is assigned to a user when network scanning determines that the client machine
has vulnerabilities.
has vulnerabilities.
If a user meets Clean Access Agent requirement and/or has no network scanning vulnerabilities, the user
is allowed access to the network in the normal login user role. See
is allowed access to the network in the normal login user role. See
for
additional details.