Cisco ACS / Trend Micro Office / Cisco Trust Agent

Similar Messages

• Patching JDBC/OCI - Trend Micro Office scan

  Here's one information for any of you trying to patch JDBC/OCI.
  My company is using Trend Micro Office Scan. What I found out today - when downloading patch 9367425 from metalink, Trend Micro will intercept the zip file on the fly, insert it's own classes into the zip, and make oracle java classes dependent on Trend Micro.
  The result is - when this patch is applied on server, OCI is not working any more. The error message is complaining about not being able to find com.trend.iwss.jscan.appscan.runtime.session.
  The solution? Bypass the anti-virus when downloading the patch.

  Adrian,
       If you are running the 4.8.0 NAC Agent we should be releasing a new compliance module within the next week or so.  I am not sure what AV software will be added but there is a good chance this will in in that compliance module update.
  --Jesse

• NAC Support for Trend Micro Office Scan 10

  Hi Guys,
  Does any one know when will Trend Micro Office Scan 10 be supported on NAC?
  Regards,
  Adrian

  Adrian,
       If you are running the 4.8.0 NAC Agent we should be releasing a new compliance module within the next week or so.  I am not sure what AV software will be added but there is a good chance this will in in that compliance module update.
  --Jesse

• Cisco Trust Agent - Any way to force the client to always be enabled?

  We have begun to roll out dot1x configuration on our fleet of switches to support a basic authentication and posture check for our NAC Framework deployment. Previous to this, we spent a couple of months deploying the Trust Agent. In the time between deploying the client, and turning dot1x on the switch ports, some users have un-checked the "Enable Client" option available to them in the system tray icon, and the Wired Client. Obviously when dot1x is applied to the port, the supplicant forwards the authentication request to the client, and waits forever for a response, leaving users trying to login waiting for 20 - 30 mins for the login process to complete. My question is thus, is there any way (registry setting, config file setting) to force the client to always be enabled?
  Thanks,
  Michael

  Z-index Guide:
  http://www.smashingmagazine.com/2009/09/15/the-z-index-css-property-a-comprehensive-look/
  Nancy O.

• NAC Appliance & Cisco Trust Agent

  Hi,
  I have a requirement to implement NAC using the NAC Appliance (Cisco Clean Access). Does anyone know if this will work correctly with CTA in the same way that the NAC framework would do?? I am interested as I wish to use the Cisco Secure Services Client as an 802.1x supplicant and this interfaces directly with the CTA.

  Cisco is also introducing improved abilities to assess the security risk of unmanaged or agentless endpoints/devices, that do not support the CTA and are attempting to gain network access. This is accomplished through collaboration with a new auditing category of NAC partner program vendors. Vendors joining this new category include Altiris, Qualys, and Symantec (through the WholeSecurity acquisition). Collaboration with these vendor solutions helps the NAC framework dramatically improve its ability to assess the risk of agentless devices such as guest laptops, printers, PDAs, and Internet Protocol telephones. These devices can now be audited by this new category of partners. The audit results will then be communicated back to the network to enforce the proper network admission decision.
  http://newsroom.cisco.com/dlls/2005/prod_101805.html

• CSA ver6 or Trend Micro version 8 on UCCX 7x

  Does anyone know if  there are plans to support
  CSA version 6 to handle  Anti virus
  or
  a newer version of Trend  micro Office Scan
  Current supported version is 7.3 which is EOL by Trend Micro

  I doubt it. This product has transitioned to the Linux-based appliance model in 8.0. There isn't a whole lot of testing/development going on with the Windows-based OS model any more.  You would need to ask your Cisco Account Manager for an official answer though.

• Remote desktop connection blocked by cisco security agent

  Hi,
  I have a deployment of a Management Center for Cisco Security Agents 6.0.2 and i just noticed that the agent is blocking the remote desktop connection to the hosts, the agent installed on the server shows me the event but i'm not able to see it logged on the Management Center (i can see logged any other events), i'm not sure what rule should i enable in order to allow this connection.
  Do you have any ideas???
  Thanks in advance...

  Hi,
  Remote desktop connection uses the highest possible security level encryption method between the source and destination.
  In Windows Vista or later versions of Windows, the remote desktop connection uses the SSL (TLS 1.0) Protocol and the encryption is Certificate-based.
  TS Gateway can also make the connection more secure, enhance security, see detailed information in this link
  http://technet.microsoft.com/en-us/library/cc731264(WS.10).aspx
  Don't forget some known offical antii-virus software, they can also protect the connetion from network attack.
  Yolanda Zhu
  TechNet Community Support

• Cisco NAC Agent 4.9.1.682 Problems with Mac Os X 10.7.4

  Hi
  My Cisco NAC Agent  (version 4.9.1.682) doesn't work since I upgraded my Mac OS X  4 months ago, This happens every time with CISCO and MAC when there is a new update and it always seems to take forever to fix.
  The NAC agent just keeps asking for my login in details even though there are correct (I can log in with a PC no problem).
  Any update on when a new version is going to be released - Its getting really frustrating?

  I figured out a solution that works you must disable Online Certificate Status Protocol (OCSP) on the affected system. To do this :
      Open Keychain Access. Keychain Access can be found by selecting Go in the Finder and choosing the Utilities option. Keychain access should be listed in the folder that appears. Double-click the Keychain Access icon to open it.
      Select Keychain Access -> Preferences from the menu at the top of the screen
      Choose the Certificates tab
      Change the OCSP option from Best Effort to Off
      Close the Preferences dialog and quit Keychain Access
      You should be able to NAC now

• Cisco Nac agent "List of Antivirus & Anti-Spyware Products Detected by the Agent "

  Hi All,
  We have posture assessment working with cisco Nac agent. Checking only symantec Antivirus def update and installation. Since there is windows defender in all the user pcs and turned off not in use. But cisco Nac agent is showing both windows defender and symantec in List of Antivirus & Anti-Spyware Products Detected by the Agent field. We dont want windows defender to show in this list.
  Anyone encountered this list before?? Please suggest.. I want to get rid of windows defender from this list in nac agent.

  Closest enhancement I could check on this is
  CSCts34764    NAC: Request for ANY rule to pass if 1 AS/AV definition is up to date
  Currently Windows Defender AnitSpyware comes installed on all Windows 7 machines.  Many users disable this and install their own AntiSpyware product.  Currently when using the ANY AntiSpyware up to date rule, it will fail if say MSE is up to date but not Windows Defender (since it is disabled).
  This is an enhancement request to add the ability to pass the ANY check if 1 AntiSpyware or AntiVirus definition is up to date but another is installed and out of date.  Currently if a customer wants to accomplish this they need to create a rule for every AntiVirus or AntiSpyware product and use the "Any Selected Rule Succeeds" option which is very cumbersome to configure.
  ~BR
  Jatin Katyal
  **Do rate helpful posts**

• Cisco Sync Agent Missing

  Hello Experts,
  I am configuring IM&P 10.5 and I need to enable essential services in IM&P Serviceability --> Tools --> Control Center - Feature Services but Cisco Sync Agent is missing. Is there something I need to do to get this activated? I don't see it in Service Activation either. I have attached the snips of the GUI.
  What am I missing?
  Thanks,
  Randy C.

  Nevermind, I found it under Control Center - Network Services. Not sure why documentation states that it's in Feature Services.

• Mac OS X 10.8.1 and Cisco Nac Agent to 4.9.1.683

  We have this problem with on of our clients:
  "Cisco NAC Agent is having a difficulty with the server. Agent user operation system
  is not supported".
  Anyone encounter this problem ?
  thanks.

  Hi Tarik,
  We have:
  Cisco Clean Access Server   Version 4.9.0
  Cisco Clean Access Lite Manager   Version 4.9.0
  I can see Your point now,  that I should start from upgrading to 4.9.1.
  Let me do  that, and see if it helps.
  thanks  very much, I will keep You posted.

• Hide Cisco NAC agent window

  Dear all,
  We have cisco NAC version 4.9.1 and the agent version is 4.9.1.5. We want to know if there is a way to hide the cisco NAC agent window so the user do not see it, i mean run it on the background to make it a bit more transparent to the final user.
  Anyone have any ideas?
  Thanks in advance.

  Go to "Administration > User Pages" and make sure you have configured a proper login page for Windows 7.

• Question about cisco nac agent

  When I deploy Cisco NAC appliance, the main different between using cisco nac appliance with or without agent? I see Cisco NAC agent has two function: scan and remediation. If Cisco NAC appliance without agent, Cisco NAC server will scan device and remediation. That is right?
  Please answer me early. Thank you for your answer.

  Sorry, I believe daldden is correct, without the agent you can still scan using the built-in Nessus scanner.
  We don't use the Nessus scanner, but these are some things to consider if you use the scanner. These are from memory though so anyone who actively uses the scanner may be able to give more up to date or complete info:
  1) You have to decide which vulnerabilities you want to scan for.
  2) The more plug-ins you enable, the longer (obviously) the scan takes.
  3) There are configuration steps for many of the plug-ins
  4) Your users will still need to go to a login page in order to be scanned.
  5) You have to configure the remediation information (URL, steps, etc) for each plug-in you enable.
  From our view point, the only reason we would enable the scanner is if we were looking for a specific vulnerability, perhaps a new threat that didn't yet have a patch. If it had a patch, we would watch for the patch using the agent (installed or web based).
  It was much easier for us to use the agent, to scan their system and make sure that the MS critical hot fixes were installed and/or an AV system was installed and up to date. As mentioned, if there is a patch for a vulnerability, you can use the agent to make sure that specific hot fix is installed.
  Remember that there is also a web agent. The web agent is an ActiveX or Java (you pick which one you want to use) applet that is loaded onto the person's machine, the system scanned, then the applet is unloaded.
  Of course, the agent is only for MSoft (with some MAC options), so if you have Linux systems, the Nessus scanner would be your only option.

• Cisco NAC agent services not running on Windows XP

  Hi,
  I've problem with Cisco NAC agent services on Windows XP professional SP3.
  After first installation using user local administrator, the services of Cisco NAC agent on windows machine running well, but after logout, and login using another user which is registered in domain users, the services of Cisco NAC agent is going to stopped (going to Manual mode not automatic, and the status is stopped).
  This situation is not happened on all windows machines, several machines running well.
  Cisco NAC agent version 4.9.0.42
  Has anyone seen this type of problem?
  Below i attached windows machine information from ones running well and not running, Thanks
  Regards,
  Rian

  Hi thanks for your answers, dbconsole is started in services.msc and also Agent, but goes on to say that the agent is not running.
  In sysman log shows this,
  "03/20/2012 13:38:54,553 [MetricCollector: HOMETAB_THREAD600: 60] ERROR rt.DbMetricCollectorTarget _getAllData.328 - oracle.sysman.emSDK.emd.comm.CommException: Exception in sending Request :: null
  oracle.sysman.emSDK.emd.comm.CommException: Exception in sending Request :: null
  at oracle.sysman.emSDK.emd.comm.EMDClient.getResponseForRequest_ (EMDClient.java: 1330)
  at oracle.sysman.emSDK.emd.comm.EMDClient.getResponseForRequest (EMDClient.java: 1223)
  at oracle.sysman.emSDK.emd.comm.EMDClient.getMetrics (EMDClient.java: 640)
  at oracle.sysman.emo.perf.metric.rt.DbHomeTab._getAllData (DbHomeTab.java: 324)
  at oracle.sysman.emo.perf.metric.rt.DbHomeTab.getData (DbHomeTab.java: 139)
  at oracle.sysman.emo.perf.metric.eng.MetricCached.collectCachedData (MetricCached.java: 402)
  at
  at oracle.sysman.emo.perf.metric.eng.MetricCollectorThread.run (MetricCollectorThread.java: 320)
  at java.lang.Thread.run (Thread.java: 595)
  20/03/2012 22:00:03,335 [JobWorker 772: Thread-13] ERROR em.jobs executeCommand.161 - UpdateARUTables: Oracle MetaLink credentials are incorrect or missing. Click Patching Setup parameters required to September."
  In event viewer shows this,
  "Agent process exited abnormally DURING initialization." but this message appears a few hours after having started the service.
  I am using the Administrator account

• Cisco NAC Agent and Windows 8 still not working

  Hello. I recently upgraded the Cisco NAC Agent to the latest version (4.9.1.13) on a Windows 8 VM. The release notes state that Windows 8 support has been added, and that a patch must be downloaded. However, the information about the patch is vague. I'm not sure if it's a client or server-side patch, or perhaps if I already have it as a result of upgrading to the latest version.
  I ask this because I plan to upgrade some computers to Windows 8, and have noticed that Cisco NAC Agent can't handshake with the NAC server on Windows 8 (both native and VM), and despite upgrading to the latest version, the handshake is still unsuccessful.
  Thanks,
  -Collin

  Hi Collin,
  The 4.9.1 Patch for Windows 8 Support can be downloaded from the following link :
  http://www.cisco.com/cisco/software/release.html?mdfid=282910502&flowid=34713&softwareid=282573326&release=4.9.1&relind=AVAILABLE&rellifecycle=&reltype=latest
  The patch should be applied to both 4.9.1 CAM and CAS.
  Please go through the README file for patch provided in the download link provided above. It has detailed information.
  Regards,
  Karthik Chandran