Clean Access Agent 4.0.5 certificate issue

Similar Messages

• Clean Access Agent Windows XP permission/Rights Issue

  Hi,
  I have a problem with Clean Access Agent.
  When a domain user installs the agent on the computer, only that user is able to login into the network using the CCAgent. Any other user who tries to login in on the same machine gets an error. In short, only the DOMAIN USER who installed the agent authenticates without a problem (or a user with administrative rights)
  The error that the second user gets is the same as the one here;
  http://forum.cisco.com/eforum/servlet/NetProf?page=netprof&CommCmd=MB%3Fcmd%3Dpass_through%26location%3Doutline%40%5E1%40.1ddf8b7d
  I am not sure if this problem is related to this one;
  http://forum.cisco.com/eforum/servlet/NetProf?page=netprof&CommCmd=MB%3Fcmd%3Dpass_through%26location%3Doutline%40%5E1%40.1ddfc848
  Anybody with ideas?
  Edd

  One quick fix could be to try restarting the HTTPD services. Although there should be no conflict if you install CSA and CCA, but you can uninstall CSA and check if other users are able to login on the same machine.

• NAC Clean Access Agent Issue

  Hi,
  Can anyone tell me that If I want my user to download clean access agent so how can I achieve that...I have uploaded agent to my CAM but Im confused that should my user use web agent first then download the agent over network or he can download Clean agent directly ?

  Unlike the Clean Access Agent, the Cisco NAC Web Agent is not a "persistent" entity, thus it only exists on the client machine long enough to accommodate a single user session. Instead of downloading and installing an Agent application, once the user opens a browser window, logs in to the NAC Appliance web login page, and chooses to launch the temporal Cisco NAC Web Agent, an ActiveX control or Java applet (you specify the preferred method using the Web Client (ActiveX/Applet) option in the Administration > User Pages > Login Page configuration page) initiates a self-extracting Agent Stub installer on the client machine to install Agent files in a client's temporary directory, perform posture assessment/scan the system to ensure security compliance, and report compliance status back to the NAC Appliance system. During this period, the user is granted access only to the Temporary Role and if the client machine is not compliant for one or more reasons, the user is informed of the issues preventing network access and may do one of the following as mentioned in the below URL:
  http://www.cisco.com/en/US/docs/security/nac/appliance/configuration_guide/45/cam/m_cca.html#wp1130212

• Cisco Clean Access Agent patch?

  I just upgraded to Snow Leopard today without realizing that my campus uses Cisco's Clean Access Agent to allow access to the network. Every time I try to log in log in it tells me "Agent user operator system not supported." It is version 4.6.0.3. I realize now that this is not a campus problem, but more likely a program problem. Is there any word on a way around this or a patch in the near future?
  Thanks.

  The same issue occurred on my campus. Cisco claims they will fix the problem between 3 and 90 days.

• CISCO CLEAN ACCESS AGENT ALWAYS POPS-UP EVEN ALREADY AUTHENTICATED

  Hello,
  Just wonder why clean access agent always pops-up even already authenticated. Please how can i eliminate those multiple pops-up?
  thank you and best regards,
  Edwin

  Hi:
  I have the same issue. Would you please tell me what you did exactly?
  I am using OOB VGW mode.
  NAC version is 4.7.2
  Switch configurations:
  snmp-server community RO RO
  snmp-server community RW RW
  snmp-server location LOCATION
  snmp-server contact CONTACT
  snmp-server enable traps snmp linkdown linkup
  snmp-server enable traps mac-notification change move threshold
  snmp-server host CAM_IP version 2c RW  mac-notification snmp
  mac address-table notification change interval 0
  mac address-table notification change
  mac address-table aging-time 3600

• Clean Access Agent

  Hello
  Has anybody seen this error before... it's the first time I see it.
  "The Server Response could not be Parsed [12152]"
  I get this error only in one machine in-band & out-of-band.
  Thanks For any help

  Check the following as one of them would be causing this error in clean access agent:
  1)Ensure that clock on the CAM and CAS are synchronized to be less than 5 mins apart.
  2) Check all the switch configs to make sure they are good.
  3) Check if the vlans are pruned. If they are not pruned then prune vlans as this could be overloading the mac table
  4) Check if you have configured managed subnets for all the vlans passing through CAS? If not, could configure it in [Device Management -> CCA
  Servers -> Advanced -> Managed Subnets]
  Also providing the event Log and CAS log will help us to troubleshoot the issue better.

• Clean Access Agent Slows Computer

  I have downloaded Cisco Clean Access Agent 4.1.3.0 as required by my school.
  However, I have noticed that after upgrading from 4.1.2.0, the new version takes up so much CPU (up to 99% sometimes) that iTunes and YouTube skip when they are playing audio.
  Any suggestions on a fix for this issue?
  Thanks,
  Geoff

  No ideas???

• Problem with Clean Access Agent and Windows Updater

  I have a problem with a laptop when using Cisco Clean Access Agent. The agent keeps directing the laptop to get updates from the Windows Update site, but when I have connected the laptop via cable, windows updates tells me there are no updates either essential or optional. The laptop is a Sony VIVO VGN-FJ270 running XP Home Edition SP2 and the Clean Access Agent is version 4.0.2.1
  Any help is appreciated!!

  Verify the allowed hosts in CCA agent.
  Try these link:
  http://www.cisco.com/en/US/products/ps6128/tsd_products_support_series_home.html
  http://www.cisco.com/en/US/products/ps6128/products_qanda_item09186a00803b7a81.shtml

• Clean Access Agent in Windows 8, 64 bit

  Hey guys,
  I posted this on another Cisco community site, someone there suggested I try here. He also gave me this page as a possible solution but I'm unable to download from the page as I don't have a service contract, I'm just a Dad trying to get his kid's computer online at school.
  http://www.cisco.com/cisco/software/release.html?mdfid=282855549&flowid=34712&softwareid=282573326&release=4.8.3&relind=AVAILABLE&rellifecycle=&reltype
  Kind of at our wit's end here. My daughter is at Mass Art in Boston with a nearly new computer (6 months old at most) with Windows 8 Pro and the Clean Access Agent isn't letting her connect saying she has no updated AV installed. However, we did have BitDefender installed and updated and I've seen BitDefender on a Cisco list on line somewhere, the tech department at the school also said that it should work. Thinking there might be a conflict with BitDefender and Windows Defender we uninstalled BitDefender but to no avail, the agent still won't allow access.
  Now the tech dept. at the school is telling her she has to reformat her hard drive (Ha!!) which is simply and completely unacceptable.
  Does anyone here know if the above link may solve our problem?
  Can someone send me the necessary files?
  Is there someone the school tech people can contact for this?
  Am I asking enough annoying questions?
  Many thanks for your time,
  Ken

  Hello Ajay,
  When I try to download either the "4.8.3 Patch for Windows 8 support" or the "4.8.3 Patch for Windows 8 Official support" it says I need a service contract. Which, of course, I don't have. I'm just a Dad trying to get his kids computer connected to the school's network!
  Do you know what the difference is between the "4.8.3 Patch for Windows 8 support" and the "4.8.3 Patch for Windows 8 Official support" downloads?
  Might you be able to email me what I need to [email protected]?
  I don't know how all of this works between the school and Cisco but if you can't send it to me might it be something the tech support people at the school can download? I would have to guess they do, indeed, have a service contract.
  Thanks again,
  Ken

• Nac appliance - clean access agent report

  Hi,
  I have been searching a lot, and I don't find any good explanation about how the clean access agent report works. I experienced that not all agent activity will be reported. Sometimes it showed up report about the "passed" and "failed" agent, but not at another time. Would someone give me explanation about when the agent will show up reports and it will not ? or did it show bugs ?
  Thanks in advance.

  Hi,
  does anybody experience this ? or Everything is going fine on your NAC ? I am using NAC 4.1.3.1.
  Thanks.

• Removing Cisco Clean Access Agent 4.5 (CCA)

  I'm more or less having trouble with uninstalling Cisco Clean Access Agent 4.5.0.0, so I can install CCA 4.1...
  I removed CCAAgent 4.5 + the files within "Library/ApplicationSupport/" and in "Library/Receipts"...yet when I try to install 4.1, it tells me there's a newer version of the software on this disk & won't let me install.
  I am on Snow Leopard, too - by the way.
  Any solutions to this?

  Tim:
  Seen this page yet....anything there help?
  http://www.cisco.com/en/US/docs/security/nac/appliance/configurationguide/45/cam/magntd.html#wp1276391
  Do you have a fresh backup if needed? Have you tried repairing permissions and checking for hidden files with a similar name?

• Cisco Clean Access agent for Ipad

  My university uses Cisco Clean Access agent for wifi.
  I have been able to login using the alotted password through Safari, however the next step is a prompt to download Clean Access Agent.
  When I try to download the application, Safari prompts that the file can not be downloaded.
  Any suggestions for this problem so that I can use my Ipad at campus.

  The only things you can download are on the App Store. Check there, but I'm mostly sure that there is no Cisco Clean Agent available for iphone.

• Clean Access Agent MSI

  Does anyone know the msi commands to remove the shortcut on the desktop and not display the agent on the task bar?
  Thanks

  The Clean Access Agent provides local-machine agent-based vulnerability assessment and remediation for Windows clients. Users download and install the Clean Access Agent (read-only client software), which can check the host registry, processes, applications, and services. The Clean Access Agent can be used to perform antivirus or antispyware definition updates, distribute files uploaded to the Clean Access Manager, distribute website links to websites in order for users to download files to fix their systems, or simply distribute information/instructions.
  http://www.cisco.com/en/US/docs/security/nac/appliance/configuration_guide/412/cam/m_agntd.html#wp1222379

• Clean Access Agent can't popup

  Hi, we setup a CAS and CAM in L2 OOB virtuil gateway and the switch is a 3560 using SVI and L3 for routing. We can authenticate using web agent but there is a problem when using a Clean Access agent. I have configured the discovery host using the ip address of the CAM but the login doesn't popup. I changed the discovery host of the ip of the server and tried reinstalling the access agent but login doesn't popup. Do I need to reboot the server when i changed the ip of the discovery host?What do i need to configure on the CAM or CAS?

  For L2 or L3 deployments, the Clean Access Agent will pop up on the client if "Popup Login Window" is enabled on the Agent and the Agent detects it is behind the Clean Access Server. If the Agent does not pop up, this indicates it cannot reach the CAS.
  To Troubleshoot L2 Deployments:
  1. Make sure the client machine can get a correct IP address. Open a command tool (Start > Run > cmd) and type ipfconfig or ipconfig /all to check the client IP address information.
  2. If necessary, type ipconfig /release, then ipconfig /renew to reset the DHCP lease for the client.
  To Troubleshoot L3 Deployments:
  1. Check whether the Discovery Host field is set to the IP address of the CAM itself under Device Management > Clean Access > Clean Access Agent > Installation | Discovery Host. This field must be the address of a device on the trusted side and cannot be the address of the CAS.
  2. Uninstall the Clean Access Agent on the client.
  3. Change the Discovery Host field to the IP address of the CAM and click Update.
  4. Reboot the CAS.
  5. Re-download and re-install the Clean Access Agent on the client.
  Note The Login option on the Clean Access Agent is correctly disabled (greyed out) in the following cases:
  •For OOB deployments, the Agent user is already logged in through the CAS and the client port is on the Access VLAN.
  •For multi-hop L3 deployments, Single Sign-On (SSO) has been enabled and the user has already authenticated through the VPN concentrator (therefore is already automatically logged into Cisco NAC Appliance).
  •MAC address-based authentication is configured for the machine of this user and therefore no user login is required.

• Clean Access Agent continually reauthentication

  Hi,
  I have installed CAM and CAS version 4.1.0 in OOB mode and having this problem of clean access agent repeatedly popping up even after successfuly logging on to the server.
  Also the clients are always requested to download and install the clean access agent even when it is already installed in the system.
  After the succesfull log on I can see the respective client as sucessfully logged on to the system. Also the VLANs are correctly switched from Authentication to User VLANs, but still I'm repeatedly asked to log on to the system.
  These symptoms familar to anybody and appreciate any idea to help me come out of this.
  Thanks.

  Hi,
  Have u added the managed subnet?
  (CCA Servers> Manage [CAS-IP]> Advanced > managed subnet.