Filter
Top Products
4-18
User Guide for Cisco Secure Access Control System 5.3
OL-24201-01
Chapter 4 Common Scenarios Using ACS
Agentless Network Access
Previous Step:
Network Devices and AAA Clients, page 7-5
Next Step:
Configuring an Identity Group for Host Lookup Network Access Requests, page 4-18
Related Topics
• Creating External LDAP Identity Stores, page 8-26
• Deleting External LDAP Identity Stores, page 8-33
Configuring an Identity Group for Host Lookup Network Access Requests
To configure an identity group for Host Lookup network access requests:
Step 1 Choose Users and Identity Store > Identity Groups> and click Create.
See Managing Identity Attributes, page 8-7, for more information.
Step 2 Fill in the fields as required.
The identity group may be any agentless device, such as a printer or phone.
Step 3 Click Submit.
Previous Steps:
• Adding a Host to an Internal Identity Store, page 4-17
• Configuring an LDAP External Identity Store for Host Lookup, page 4-17
Next Step:
• Creating an Access Service for Host Lookup, page 4-18
Related Topic
• Managing Identity Attributes, page 8-7
Creating an Access Service for Host Lookup
You create an access service and then enable agentless host processing.
To create an access service for Host Lookup:
Step 1 Choose Access Policies > Access Service, and click Create. See Configuring Access Services,
page 10-11, for more information.
Step 2 Fill in the fields as described in the Access Service Properties—General page:
a. In the Service Structure section, choose User Selected Policy Structure.
b. Set the Access Service Type to Network Access and define the policy structure.