Creating a local policy – Cisco 3.3 User Manual
Page 597
14-25
User Guide for Cisco Secure ACS for Windows Server
78-16592-01
Chapter 14 Network Admission Control
NAC Policies
appear in the Attribute list. Each attribute is uniquely identified by the vendor
name, application name, and attribute name, displayed alphabetically in the
following format:
vendor-name
:
application-name
:
attribute-name
•
Operator—Defines the comparison method by which Cisco Secure ACS
evaluates whether the rule element is true. The operators available in the
Operator list vary depending upon the type of attribute selected from the
Attribute list. In addition to common operators, such as >, <, and =, the
Operator list supports a few special operators. For more information about
special operators, see
About Rules, Rule Elements, and Attributes,
.
•
Value—Specifies the value to which Cisco Secure ACS compares the
contents of the attribute.
•
Enter button—Adds the rule element defined in the Attribute, Operator, and
Value options to the Rule Elements Table.
Creating a Local Policy
This procedure describes how you can create a local policy.
Before You Begin
Although local policies can be selected for more than one NAC database, the page
for creating a local policy must be accessed through the configuration pages of a
specific NAC database. The NAC database you use to access the Local Policy
Configuration page does not limit which NAC databases can select the new local
policy.
For descriptions of the options available on the Local Policy Configuration page,
see
Local Policy Configuration Options, page 14-22
.
For descriptions of the options available on the Rule Configuration page, see
Configuration Options, page 14-24
.
To create a local policy, follow these steps:
Step 1
If you have not already done so, access the Local Policy Configuration page. To
do so, follow these steps:
a.
In the navigation bar, click External User Databases.