Cisco Cisco NAC Appliance 4.1.0

12-9

Cisco NAC Appliance - Clean Access Manager Installation and Administration Guide

OL-12214-01

Chapter 12 Configuring Clean Access Agent Requirements

Create Clean Access Agent Requirements

Figure 12-4

Required AV Definition Update (User Dialog)

AV Rules and AS Rules

Antivirus rules (AV Rule) and anti-spyware rules (AS Rule) are preconfigured rule types that are mapped
to the matrix of vendors and products sourced in the Supported AV/AS Product List. There is no need to
configure checks with this type of rule.

There are two basic types of AV Rules:

•

Installation AV Rules check whether the selected antivirus software is installed for the client OS.

•

Virus Definition AV Rules check whether the virus definition files are up-to-date on the client.
Virus Definition AV Rules can be mapped into AV Definition Update requirements so that a user
that fails the requirement can automatically execute the update by clicking the Update button in the
Agent.

There are two basic types of AS Rules:

•

Installation AS Rules check whether the selected anti-spyware software is installed for the client
OS.

•

Spyware Definition AS Rules check whether the spyware definition files are up-to-date on the
client. Spyware Definition AS Rules can be mapped into AS Definition Update requirements so that
a user that fails the requirement can automatically execute the update by clicking the Update button
in the Agent.

AV Rules are typically associated with AV Definition Update requirements, and AS Rules are typically
associated with AS Definition Update requirements.

The steps to create AV Definition Update Requirements are as follows:

Step 1

Verify AV/AS Support Info, page 12-10

Step 2

Create AV Rule, page 12-12

Step 3

Create AV Definition Update Requirement, page 12-14

Step 4

Map Requirement to Rules, page 12-34

Step 5

Apply Requirements to Role, page 12-36

Step 6