Cisco Cisco NAC Appliance 4.8 Troubleshooting Guide

Set the 'Vulnerable If&' setting to HOLE, WARN, INFO in the Vulnerabilities section.

4. 

Disable the scan for Windows operating systems:

Select WIN_ALL from the operating system drop−down list.

a. 

Disable the scan for this selection.

b. 

5. 

This document provides a mechanism to use the Cisco Clean Access Network Scanning feature to detect users
who pretend to use a non−Windows system. Note that there might be several other plug−ins available that can
do a better job at detecting operating systems. As an example, using the nmap network scanning tool, xprobe2
from Sys−security, and so forth might fit your needs better. Also note that network scanning might not be able
to provide reliable results if the client machine runs a personal firewall.

Nessus is a registered trademark of Tenable Network Security.

• 

You need to register with Tenable Security in order to obtain Nessus plug−ins.

• 

When you modify/author plug−ins, ensure that you are compliant with the licensing and trademark
requirements for Nessus and Tenable Network Security.

• 

• 

• 

Contacts & Feedback | Help | Site Map
© 2013 − 2014 Cisco Systems, Inc. All rights reserved. Terms & Conditions | Privacy Statement | Cookie Policy | Trademarks of
Cisco Systems, Inc.

Updated: Nov 13, 2006

Document ID: 67052