Specifications
Policy Server for Cisco NAC
10-35
ACS Server Configuration
To allow Cisco Secure ACS to pass authentication requests to the Policy Server for Cisco
NAC, add the Policy Server for Cisco NAC in External Policies for the external user
database to use for authentication. See the ACS server documentation for instructions
on how to add the policy server in a new external policy.
Note: Configure the ACS server to perform tasks such as blocking client access to the
network. These ACS functions are beyond the scope of the Trend Micro Policy Server
for Cisco NAC implementation and are not in this document. See the ACS
documentation for details on configuring other ACS functions.
Policy Server for Cisco NAC Configuration
After installing OfficeScan and the Policy Server, and deploying both the OfficeScan
client and the Cisco Trust Agent, configure the Policy Server for Cisco NAC. To
configure a Policy Server, access the Policy Server Web console from the OfficeScan
Web console by going to Cisco NAC > Policy Servers and clicking the Policy Server
link.
This section describes the following aspects of Policy Server configuration:
• Policy Server Configuration from OfficeScan on page 10-36 describes how to manage
Policy Servers on the OfficeScan Web console.
• Summary Information for a Policy Server on page 10-36 shows you how to get an
overview of Policy Servers on the network.
• Policy Server Registration on page 10-38 is the first step in configuring Policy Servers.
• Rules on page 10-38 shows you how to create and edit rules that comprise policies.
• Policies on page 10-38 shows you how to create and edit policies that ultimately
determine how Policy Server measures client security posture.
• Client Validation Logs on page 10-39 gives an overview of how to use logs to
understand the security posture status of clients on the network.
• Administrative Tasks on page 10-39 describes how to change the Policy Server
password and set a schedule for synchronization.