EasyManuals Logo

Cisco 5510 - ASA SSL / IPsec VPN Edition Configuration Guide

Cisco 5510 - ASA SSL / IPsec VPN Edition
1822 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #1309 background imageLoading...
Page #1309 background image
63-29
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 63 Configuring IKE, Load Balancing, and NAC
Configuring Network Admission Control Policies
• Posture Validation Exception List—Displays one or more attributes that exempt remote computers
from posture validation. At minimum, each entry lists the operating system and an Enabled setting
of Yes or No. An optional filter identifies an ACL used to match additional attributes of the remote
computer. An entry that consists of an operating system and a filter requires the remote computer to
match both to be exempt from posture validation. The adaptive security appliance ignores the entry
if the Enabled setting is set to No.
• Add—Adds an entry to the Posture Validation Exception list.
• Edit—Modifies an entry in the Posture Validation Exception list.
• Delete—Removes an entry from the Posture Validation Exception list.
What to Do Next
Following the configuration of the NAC policy, you must assign it to a group policy for it to become
active. To do so, choose Configuration > Remote Access VPN> Network (Client) Access > Group
Policies > Add or Edit > General > More Options and the NAC policy name from the drop-down list
next to the NAC Policy attribute.
Modes
The following table shows the modes in which this feature is available:
Modes
The following table shows the modes in which this feature is available:
Add/Edit Posture Validation Exception
The Add/Edit Posture Validation Exception dialog pane lets you exempt remote computers from posture
validation, based on their operating system and other optional attributes that match a filter.
• Operating System—Choose the operating system of the remote computer. If the computer is running
this operating system, it is exempt from posture validation. The default setting is blank.
• Enable—The adaptive security appliance checks the remote computer for the attribute settings
displayed in this pane only if you check Enabled. Otherwise, it ignores the attribute settings. The
default setting is unchecked.
• Filter— (Optional) Use to apply an ACL to filter the traffic if the operating system of the computer
matches the value of the Operating System attribute.
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
• — • ——
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
• — • ——

Table of Contents

Other manuals for Cisco 5510 - ASA SSL / IPsec VPN Edition

Preview: Cli Configuration Guide
Cli Configuration Guide2164 pages
Preview: Hardware Installation Guide
Hardware Installation Guide82 pages
Preview: Getting Started Guide
Getting Started Guide208 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco 5510 - ASA SSL / IPsec VPN Edition and is the answer not in the manual?

Cisco 5510 - ASA SSL / IPsec VPN Edition Specifications

General IconGeneral
BrandCisco
Model5510 - ASA SSL / IPsec VPN Edition
CategoryFirewall
LanguageEnglish

Related product manuals