Cisco NAC
Version : Cisco Network Access Control (NAC) 3300 Series and later.
The Cisco Network Access Control(NAC) Solution is a powerful, easy-to-deploy admission control and compliance enforcement component of the Cisco TrustSec solution. With comprehensive security features, in-band or out-of-band deployment options, user authentication tools, and bandwidth and traffic filtering controls, the Cisco NAC Solution is a comprehensive offering for controlling and securing networks. You can implement security, access, and compliance policies through a central management point rather than configure policies throughout the network on individual devices.
Netsurion Open XDR supports Cisco NAC, It monitors the Cisco NAC and generates alert and reports for critical events.
Once logs are received in to Netsurion Open XDR alerts and reports can be configured into Netsurion Open XDR.
The following are the key Data Source Integration available in Netsurion Open XDR.
Alerts
| Type | Name | Description |
|---|---|---|
| Security | Cisco NAC – Access-point addition failed | This alert is generated when access-point addition failed. |
| Security | Cisco NAC – Admin login failed | This alert is generated when admin login failed. |
| Security | Cisco NAC – CAS disconnected | This alert is generated when CAS disconnected. |
| Security | Cisco NAC – Guest login failed | This alert is generated when guest login failed. |
| Security | Cisco NAC – IPSec error | This alert is generated when IPSec error. |
| Security | Cisco NAC – Remote login failed | This alert is generated when remote login failed. |
| Security | Cisco NAC – Rogue AP report error | This alert is generated when rogue AP report error. |
| Security | Cisco NAC – Unknown/Blocked WLC found | This alert is generated when unknown/Blocked WLC found. |
| Security | Cisco NAC – User login failed | This alert is generated when user login failed. |
| Security | Cisco NAC – User session timeout | This alert is generated when user session timeout. |
| Security | Cisco NAC – Wireless user login failed | This alert is generated when wireless user login failed. |
Reports
| Type | Name | Description |
|---|---|---|
| Security | Cisco NAC – Access point addition failed | This category based report provides information related to access-point addition failed. |
| Security | Cisco NAC – Admin login failed | This category based report provides information related to admin login failed. |
| Security | Cisco NAC – Admin session expired | This category based report provides information related to admin session expired. |
| Security | Cisco NAC – Admin user setup failed | This category based report provides information related to admin user setup failed. |
| Security | Cisco NAC – Agent update failed | This category based report provides information related to agent update failed. |
| Security | Cisco NAC – Automatic user logoff | This category based report provides information related to automatic user logoff. |
| Security | Cisco NAC – CAS disconnected | This category based report provides information related to CAS disconnected. |
| Security | Cisco NAC – CAS-CAM sync error | This category based report provides information related to CAS-CAM sync error. |
| Security | Cisco NAC – Device added to MAC list | This category based report provides information related to device added to MAC list. |
| Security | Cisco NAC – Guest login failed | This category based report provides information related to guest login failed. |
| Security | Cisco NAC – IPSec error | This category based report provides information related to IPSec error. |
| Security | Cisco NAC – License check failed | This category based report provides information related to license check failed. |
| Security | Cisco NAC – Logout failed | This category based report provides information related to logout failed. |
| Security | Cisco NAC – NAT mapping error | This category based report provides information related to NAT mapping error. |
| Security | Cisco NAC – New admin group setup failed | This category based report provides information related to new admin group setup failed. |
| Security | Cisco NAC – Policy update failed | This category based report provides information related to policy update failed. |
| Security | Cisco NAC – RADIUS authentication failed | This category based report provides information related to RADIUS authentication failed. |
| Security | Cisco NAC – Remote login failed | This category based report provides information related to remote login failed. |
| Security | Cisco NAC – Rogue AP report error | This category based report provides information related to rogue AP report error. |
| Security | Cisco NAC – Server update failed | This category based report provides information related to server update failed. |
| Security | Cisco NAC – SNMP trap setup failed | This category based report provides information related to SNMP trap setup failed. |
| Security | Cisco NAC – Unable to add device | This category based report provides information related to unable to add device. |
| Security | Cisco NAC – Unable to add temp user | This category based report provides information related to unable to add temp user. |
| Security | Cisco NAC – Unable to set VLAN for wireless user | This category based report provides information related to unable to set VLAN for wireless user. |
| Security | Cisco NAC – Unknown/Blocked WLC found | This category based report provides information related to unknown/Blocked WLC found. |
| Security | Cisco NAC – User account deletion failed | This category based report provides information related to user account deletion failed. |
| Security | Cisco NAC – User account modification failed | This category based report provides information related to user account modification failed. |
| Security | Cisco NAC – User account setup failed | This category based report provides information related to user account setup failed. |
| Security | Cisco NAC – User login failed | This category based report provides information related to user login failed. |
| Security | Cisco NAC – User session timeout | This category based report provides information related to user session timeout. |
| Security | Cisco NAC – Wireless user deletion failed | This category based report provides information related to wireless user deletion failed. |
| Security | Cisco NAC – Wireless user login failed | This category based report provides information related to wireless user login failed. |
Documentation
The configuration details are consistent with Netsurion Open XDR 7.x and later, Cisco Network Access Control (NAC) 3300 Series and later.
Download Integration Guide for configuration instructions and more information.