Fisher College of Business logo

Network Admission Control

Fisher College of Business has implemented a network admission control (NAC) system using the Cisco Clean Access (CCA). The NAC is aimed to ensure that devices that are connected to the FCOB network meet the Minimum Computer Security Standard (MCSS).

Malicious software such as viruses and worms can cause data loss, data theft, and render a computer unusable. Cisco Clean Access ensures that computers connected to the network are protected, providing all users with a safer, more secure, and reliable network. Currently, devices connected to the Fisher wireless network are not behind the NAC.

Clean Access Agent (CAA)

Clean Access Agent is the client application that can check certain security settings on any Microsoft Windows PC to make sure that the system is up-to-date with required security patches and report this status to the Clean Access Server. No information about the user or the content of user files is sent to the server. Each user must use Clean Access Agent for his/her Microsoft Windows PC in order to authenticate and use the university network.

To use CAA, Windows and MAC users must install the Clean Access Agent software on their computers. The Clean Access Agent ensures that each computer has all necessary security updates, automatic updates enabled, sufficient anti-virus and anti-malware software, and current anti-virus and anti-malware definitions. If the computer fails to meet one or more of these requirements, the Clean Access Agent helps the user acquire and install all necessary components. Computers are granted full access to the network after they have been fully updated.

Clean Access Agent is the client application that can check certain security settings on any Microsoft Windows PC to make sure that the system is up-to-date with required security patches and report this status to the Clean Access Server. No information about the user or the content of user files is sent to the server. Each user must use Clean Access Agent for his/her Microsoft Windows PC in order to authenticate and use the university network.

 

Clean Access Agent Installation

Resources with detailed instructions for download and install of the CCA is given below:

Currently there are only agents for Windows and Mac computers. Other operating systems will not have a client and will need to authenticate to the network via a web browser prior to full internet access.Users will require administrative rights to install the Cisco Clean Access Agent, but administrative rights are not required once the CCA Agent is installed.

Logging on Network using Clean Access Agent

When the CCA Agent is installed the client will detect when you are connected behind the FCOB NAC. When you first connect to the network the CCA Agent will detect the connection. On a domain computer the agent will use the Microsoft Active Directory credentials and log in automatically to the FCOB NAC.

On personal computers and computers that are members of the domain, the CCA Agent will prompt for a username and password. Once you have authenticated to the network, the FCOB NAC will check the computer for compliance with minimum computer security rules. If your computer is compliant it will be granted full internet access. A non-compliant computer is moved to temporary internet access to remedy any security checks that failed.

 

FAQ - Frequently Asked Questions

  • Will the Clean Access Agent monitor anything that I do online?
  • How often will the Clean Access Agent Revalidate my computer?
  • Will Cisco Clean Access Agent change settings on my computer?
  • Will my computer still work when I connect to my home network?
  • Will the agent work with Microsoft Windows?
  • What do I do if I have a MAC?
  • What if I have Linux?
  • What about PDA, etc.?
  • Why doesn't the Clean Access Agent remember my username and password when I check the "Remember Me" box?
  • Where do I get Windows updates?
  • In Windows XP there are no outstanding critical updates but my computer still fails the hotfix requirement?
  • How do I fix the Flash Version 6 Problem?
  • What Anti-Virus software is required?
  • What Anti-Malware software is required?
  • I'm leaving campus; How do I uninstall the Cisco Clean Access Agent?
  • What does it mean to have temporary access to the network?
  • How can I get out of temporary access?