John,
1) The WSUS requirement does not work reliably in 4.1.2.1 and earlier. I am not sure about 4.1.3.1, but I think 4.1.2.1 is the most stable release, currently. We use the preconfigured rules and direct the users to Microsoft Update. Our users tend to be local administrators. 2) I believe that Clean Access uses definition version whenever possible, even if it can detect the date. Beyond that, I do not know sine we use Microsoft Forefront here. 3) I have not seen this, but we do not make extensive use of mapped drives. 4) no idea. 5) no idea. 6) We currently have these filtered "Allow". I am trying to get them to be filtered "Check role". Our help desk can remote desktop into the machines to update them, if necessary. 7) CCA Agent for Mac is authentication-only. No checks are yet possible. (The same is true of 64-bit Vista.) Bruce Osborne Liberty University From: Cisco Clean Access Users and Administrators [mailto:[EMAIL PROTECTED] On Behalf Of Williams, John Sent: Wednesday, June 11, 2008 11:26 AM To: [email protected] Subject: [CLEANACCESS] General CCA Questions We are attempting to roll out CCA Agent to all of our faculty and staff this summer and have encountered some issues. Curious if anyone has seen and has resolutions to the following: 1) Using a WSUS Windows critical Requirement, Non-Local Admins are prompted that Windows requires updates. When logged on as a local admin, it states there are no updates required. 1a) Is there a way to allow non local admins to install Windows Updates? 1b) Is there a way to allow non local admins to install Anti-Virus software (specifically Symantec) and keep the virus definitions up to date? 2) Cisco Clean Access Agent will occasionally not be able to tell the virus definition date of our Symantec software. When you click on Properties of Clean Access in the taskbar it is blank. However, the application states virus definitions are up to date. Only fix we have been able to identify is to uninstall and re-install Symantec AV. 3) Users who are on the domain get mapped drives pushed to them. On occasion the mapped drive works correctly and at times it does not (assuming a disconnect with being quarantined or posture assessed while the mapped drive is occurring). Best practice here? 4) Overall duration of CCA Agent posture assessment. It seems to take awhile on select computers and not so long on others. Theoretically the same assessments are being made. 5) 'Unexpected Error' when logging on as a non local admin and CCA Agent attempts to start. 6) Is there a best practice for 'public computers' like in the library? I hate to have computers have filters or ignore certain VLANs because this weakens the overall security of the network as these locations can easily introduce virii or other issues to the net. 7) CCA agent for Mac has not been deployed at all in our environment. What would be appropriate checks for a University environment? Currently on Windows boxes we are checking for Windows Updates (critical), Virus Software, Virus definition date, Auto Update enabled.
