Configuring NAC 6.0 Gateway Options
Note
This section assumes you have already installed a NAC 6.0 Gateway. For NAC 6.0 Gateway installation instructions refer to the link below.
Enable NAC 6.0 Client Option
See Enable NAC 6.0 Client in Cloud Site
NAC 6.0 Client Split Tunneling Option
The network address entered into the Access Network text box (ex 192.168.100.0/24) will be routed through the NAC 6.0 Gateway while all other traffic will be routed out the local default gateway.
Default setting: If nothing is entered, then all traffic (0.0.0.0/0) will be routed through the NAC 6.0 Gateway.
NAC 6.0 Client Isolation Option
When enabled, connected NAC 6.0 clients with different IP addresses or different usernames will not be able to communicate. NAC 6.0 clients with different IP addresses but the same username will be able to communicate.
Default setting: Off. All NAC 6.0 connected clients can communicate with each other.
Enable NAC 6.0 Netflow Agent Option
See Network Traffic
Enable Cloud Collector Option
Ensure steps 10 and 11 in the link below have been completed for the appropriate Hub site.
See create-cloud-site
Enable Multi-Factor (MFA, 2FA, 2-step) Authentication for NAC 6.0 Connection Manager
To enable MFA for clients connecting through the NAC 6.0 Gateway, refer to the link below.
See Enabling Multi-Factor Authentication for NAC 6.0 Connection Manager (MFA, 2FA, 2-Step)