Cisco Cisco NAC Appliance 4.1.0
![Cisco](https://files.manualsbrain.com/attachments/7380d0050044647c30f5c24bbbf5d0c0b6d9bb84/common/fit/150/50/faa183d287233c52228cfea3dbc2a127fe780f60564fcb0955d9c3d1cd23/brand_logo.png)
10-27
Cisco NAC Appliance - Clean Access Manager Installation and Administration Guide
OL-12214-01
Chapter 10 Clean Access Implementation Overview
Manage Certified Devices
For further details on terminating active user sessions, see
and
If a certified device is moved from one CAS to another, it must go through Clean Access certification
again for the new CAS unless it has been manually added as an exempt device at the global level for all
Clean Access Servers. This allows for the case where one Clean Access Server has more restrictive Clean
Access requirements than another.
again for the new CAS unless it has been manually added as an exempt device at the global level for all
Clean Access Servers. This allows for the case where one Clean Access Server has more restrictive Clean
Access requirements than another.
Though devices can only be certified and added to the list per Clean Access Server, you can remove
certified devices globally from all Clean Access Servers or locally from a particular CAS only (see the
Cisco NAC Appliance - Clean Access Server Installation and Administration Guide for additional
details.)
certified devices globally from all Clean Access Servers or locally from a particular CAS only (see the
Cisco NAC Appliance - Clean Access Server Installation and Administration Guide for additional
details.)
See also
for additional information.
Add Exempt Device
Designating a device as exempt is the way a device can be manually added to the
automatically-generated Certified List. The Clean Access Server only adds a device to the Certified List
if the device has met the Clean Access criteria you configured. A device designated as Exempt is
considered clean and therefore exempt from having to go through certification while its MAC address
remains on the Certified List. Adding an exempt device in effect bypasses the Clean Access Server’s
automated process of Clean Access certification.
automatically-generated Certified List. The Clean Access Server only adds a device to the Certified List
if the device has met the Clean Access criteria you configured. A device designated as Exempt is
considered clean and therefore exempt from having to go through certification while its MAC address
remains on the Certified List. Adding an exempt device in effect bypasses the Clean Access Server’s
automated process of Clean Access certification.
Note
For details on how to allow users/devices to bypass both authentication and certification, see
.
To add an exempt device:
1.
Go to Device Management > Clean Access > Certified Devices > Add Exempt Device
Figure 10-9
Add Exempt Device
.
2.
Type the MAC address in the Exempt Device MAC Address field. To add several addresses at once,
use line breaks to separate the addresses.
use line breaks to separate the addresses.
3.
Click Add Exempt.
4.
The Certified List page appears, highlighting the exempt devices (