Configuring Unified Access Control (NSM Procedure)

Unified Access Control (UAC) includes configuring infranet controllers and traceoptions.

To configure the UAC feature:

  1. In the NSM navigation tree, select Device Manager > Devices.
  2. Click the Device Tree tab, and then double-click the device for which you want to configure the UAC feature.
  3. Click the Configuration tab. In the configuration tree, select Services > Unified Access Control.
  4. Configure the options as specified in Table 158.
  5. Click one:
    • OK—Saves the changes.
    • Cancel—Cancels the modifications.
    • Apply—Applies the UAC options.

Table 158: UAC Configuration Details

OptionFunctionYour Action

Comment

Specifies the comment for the UAC.

Enter a comment.

Timeout

Specifies (in seconds) the timeout for the idle infranet controller link.

Enter the timeout in seconds. Range: 2 through 4,294,967,295.

Interval

Specifies (in seconds) the heartbeat interval from the infranet controller.

Enter the heartbeat interval in seconds. Range: 1 through 4,294,967,295.

Timeout Action

Specifies the action to be performed when an infranet controller timeout occurs.

Select the timeout action.

Test Only Mode

Allows all traffic and log enforcement result.

Select the check box.

UAC includes configuring the following topics:

Configuring Infranet Controller (NSM Procedure)

This section describes how to configure infranet controller for UAC.

To configure infranet controller options:

  1. In the NSM navigation tree, select Device Manager > Devices.
  2. Click the Device Tree tab, and then double-click the device for which you want to configure infranet controller options.
  3. Click the Configuration tab. In the configuration tree, select Services > Unified Access Control > Infranet Controller.
  4. Add or modify the settings as specified in Table 159.
  5. Click one:
    • OK—Saves the changes.
    • Cancel—Cancels the modifications.
    • Apply—Applies the infranet controller options.

Table 159: Infranet Controller Configuration Details

OptionFunctionYour Action

Name

Specifies the name of the infranet controller.

Enter a name.

Comment

Specifies the comment for the infranet controller.

Enter a comment.

Address

Specifies the infranet controller IP address.

Enter the IP address.

Port

Specifies the infranet controller port.

Enter the port number. Range: 1 through 65535.

Interface

Specifies the outgoing interface.

Enter an interface.

Password

Specifies the infranet controller server password.

Enter the password.

Server Certificate Subject

Specifies the subject name of the infranet controller certificate to match.

Enter the server certificate subject.

infranet-controller > Ca Profile

Ca Profile

Specifies the certification authority profile.

Select the required profile from the Non-members list and click Add to move the profiles to the Members list.

Configuring Traceoptions (NSM Procedure)

This section describes how to configure traceoptions for UAC.

To configure traceoptions:

  1. In the NSM navigation tree, select Device Manager > Devices.
  2. Click the Device Tree tab, and then double-click the device for which you want to configure the traceoptions feature.
  3. Click the Configuration tab. In the configuration tree, select Services > Unified Access Control > Traceoptions.
  4. In the Traceoptions workspace, enter a comment for the traceoptions.
  5. In the configuration tree, select Services > Unified Access Control > Traceoptions > Flag.
  6. Add or modify settings as specified in Table 160.
  7. Click one:
    • OK—Saves the changes.
    • Cancel—Cancels the modifications.

Table 160: Traceoptions Configuration Details

OptionFunctionYour Action

Name

Specifies the flag name.

Select a name.

Comment

Specifies the comment for the flag.

Enter a comment.