Cisco NAC Appliance Hardware Installation Guide, Release 4.9
Cisco NAC Appliance Hardware Platforms
Downloads: This chapterpdf (PDF - 1.21MB) The complete bookPDF (PDF - 7.25MB) | Feedback

Cisco NAC Appliance Hardware Platforms

Table Of Contents

Cisco NAC Appliance Hardware Platforms

About Cisco NAC Appliance

FIPS 140-2 Compliant and Non-FIPS Hardware Platforms

NAC-3315, NAC-3355, and NAC-3395

NAC-3315 Serial Number Location

Cisco NAC-3315 Front and Rear Panels

Front Panel Features

Rear Panel Features

NAC-3355 Serial Number Location

Cisco NAC-3355 Front and Rear Panels

Front Panel Features

Rear Panel Features

NAC-3395 Serial Number Location

Cisco NAC-3395 Front and Rear Panels

Front Panel Features

Rear Panel Features

NAC-3310, NAC-3350, and NAC-3390

Cisco NAC-3310 Front and Rear Panels

Front Panel Features

Rear Panel Features

Cisco NAC-3350 Front and Rear Panels

Front Panel Features

Rear Panel Features

Cisco NAC-3390 Front and Rear Panels

Front Panel Features

Rear Panel Features

Cisco Product Identification Tool


Cisco NAC Appliance Hardware Platforms


This chapter provides general information on the Cisco NAC Appliance network access control system, as well as hardware specifications for all Clean Access Manager (CAM) and Clean Access Server (CAS) platforms available from Cisco Systems, Inc.

This chapter covers the following topics:

About Cisco NAC Appliance

NAC-3315, NAC-3355, and NAC-3395

NAC-3310, NAC-3350, and NAC-3390

Cisco Product Identification Tool

About Cisco NAC Appliance

Cisco® NAC Appliance is a Network Admission Control (NAC) product that allows network administrators to authenticate, authorize, evaluate, and remediate wired, wireless, and remote users and their machines prior to allowing users onto the network. It identifies whether networked devices such as laptops, desktops, and corporate assets are compliant with a network's security policies, and it repairs any vulnerabilities before permitting access to the network.

Cisco NAC Appliance is a network-centric integrated solution administered from the web console of the Clean Access Manager (CAM), enforced through the Clean Access Server (CAS), and applied on clients through the Cisco NAC Agent and Cisco NAC Web Agent client software. You can deploy the Cisco NAC Appliance solution in the configuration that best meets the needs of your network.

FIPS 140-2 Compliant and Non-FIPS Hardware Platforms

FIPS 140-2 compliant and non-FIPS Cisco NAC Appliance hardware platforms are Linux-based network hardware appliances which are pre-installed with either the CAM or CAS application, the operating system, and all relevant components on a dedicated server machine. In Release 4.7(0) and later, the operating system comprises a hardened Linux kernel based on CentOS 5.3. Cisco NAC Appliance does not support the installation of any other packages or applications onto a CAM or CAS dedicated machine.

Cisco NAC Appliance Release 4.9 only support and can only be installed on the following Cisco NAC Appliance platforms:

Platform
FIPS Option
Non-FIPS Option

NAC-3315 CAM/CAS 1

Yes

Yes

NAC-3355 CAM/CAS 1

Yes

Yes

NAC-3395 CAM 1

Yes

Yes

NAC-3310 CAM/CAS

Yes (with FIPS card field-replaceable unit only)

Yes

NAC-3350 CAM/CAS

Yes (with FIPS card field-replaceable unit only)

Yes

NAC-3390 CAM

Yes (with FIPS card field-replaceable unit only)

Yes

1 If the FIPS card in a Cisco NAC-3315/3355/3395 CAM/CAS ceases to work correctly, make sure the FIPS card operation switch is set to "O" (for operational mode), as described in the "FIPS 140-2 Compliance" section of the corresponding Release Notes for Cisco NAC Appliance. If the FIPS card is still not operational, you will need to RMA the appliance with Cisco Systems and replace it with a new Cisco NAC-3315/3355/3395. Refer to the "Cisco NAC Appliance RMA and Licensing" section of the Cisco NAC Appliance Service Contract/Licensing Support document for details.


Refer to the corresponding Release Notes for Cisco NAC Appliance for additional hardware compatibility information, including issues regarding FIPS 140-2 compliance.

Table 1-1 and Table 1-2 summarize the hardware specifications for each Cisco NAC Appliance. See the "Diagrams" column for links to detailed diagrams showing NIC ports, power supply sockets, LEDs and buttons.

NAC-3315, NAC-3355, and NAC-3395

Table 1-1 Cisco NAC Appliance Hardware Summary 

Cisco NAC Appliance
Product
Hardware Specifications
Diagrams

NAC-3315

MANAGER

Lite Manager supporting up to 3 standalone or HA-pair CASs

Single processor: Quad-core Intel Xeon (Core 2 quad)

4GB RAM

2 x 250 GB SATA HDD

4 10/100/1000 LAN ports [2 integrated NICs; 2 Gigabit NICs (PCI-E)]

CD/DVD-ROM Drive

4 USB Ports (2 front, 2 rear)

Power supply: 350W

Note The NAC-3315 is based on the IBM System x3250 M2 server platform.

Figure 1-2 "Cisco NAC-3315 Front Panel"

Figure 1-3 "Cisco NAC-3315 Front Panel LEDs/Buttons"

Figure 1-4 "Cisco NAC-3315 (With Installed FIPS Card) Rear Panel"

Figure 1-5 "Cisco NAC-3315 (With Installed FIPS Card) Rear Panel LEDs"

SERVER

CAS supporting 100, 250, or 500 users

NAC-3355

MANAGER

Standard Manager supporting up to 20 standalone or HA-pair CASs

Single processor: Quad-core Intel Xeon (Nehalem)

4 GB RAM

2 x 300 GB SAS RAID HDD

4 10/100/1000 LAN ports [2 integrated NICs; 2 Gigabit NICs (PCI-E)]

CD/DVD-ROM Drive

4 USB Ports (1 front, 1 internal, 2 rear)

Cavium CN1120-NHB-E SSL Accelerator Card or nCipher Card (FIPS 140-2 Level 2 Common Criteria EAL2)

Power supply: Dual 675W (redundant)

Note The NAC-3355 is based on the IBM System x3550 M2 server platform.

Figure 1-7 "Cisco NAC-3355 Front Panel"

Figure 1-8 "Cisco NAC-3355 Front Panel LEDs/Buttons"

Figure 1-9 "Cisco NAC-3355 (With Installed FIPS Card) Rear Panel"

Figure 1-10 "Cisco NAC-3355 (With Installed FIPS Card) Rear Panel LEDs"

SERVER

CAS supporting 1500, 2500, or 3500 and 5000 users

NAC-3395

MANAGER

Super Manager supporting up to 40 standalone or HA-pair CASs

Dual processor: 2 x Quad-core Intel Xeon (Nehalem)

8GB RAM

4 x 300 GB SAS RAID HDD

4 10/100/1000 LAN ports [2 integrated NICs; 2 Gigabit NICs (PCI-E)]

CD/DVD-ROM Drive

4 USB Ports (1 front, 1 internal, 2 rear)

Cavium CN1120-NHB-E SSL Accelerator Card or nCipher Card (FIPS 140-2 Level 2 Common Criteria EAL2)

Power supply: Dual 675W (redundant)

Note The NAC-3395 is based on the IBM System x3550 M2 server platform.

Figure 1-12 "Cisco NAC-3395 Front Panel"

Figure 1-13 "Cisco NAC-3395 Front Panel LEDs/Buttons"

Figure 1-14 "Cisco NAC-3395 (With Installed FIPS Card) Rear Panel"

Figure 1-15 "Cisco NAC-3395 (With Installed FIPS Card) Rear Panel LEDs"


NAC-3315 Serial Number Location

The serial number label is located at the lower left of the front-panel of the NAC-3315. (See Figure 1-1.)

Figure 1-1 NAC-3315 Appliance Serial Number Location


Note The serial number for the NAC-3315 is 7 characters long. You can also view the NAC-3315 serial number location on the Cisco Support website using the Cisco Product Identification Tool. For details, see Cisco Product Identification Tool.


Cisco NAC-3315 Front and Rear Panels

The Cisco NAC-3315 platform is recommended for Clean Access Lite Manager and Clean Access Server (100/250/500 user count) deployments. A NAC-3315 CAM Lite can manage up to 3 Clean Access Servers or 3 HA-CAS pairs. A NAC-3315 CAS can support 100, 250, or 500 users.


Note FIPS 140-2 compliant NAC-3315 CAS can support only 250 or 500 users.


The Cisco NAC-3315 comes equipped with 4 network interfaces to provide flexibility in NIC interface selection and to facilitate CAS high availability configuration.

For additional details, see FIPS 140-2 Compliant and Non-FIPS Hardware Platforms.

Front Panel Features

Figure 1-2 Cisco NAC-3315 Front Panel

1

Front USB port 1

4

Hard disk drive (HDD) bay 2

2

Front USB port 2

5

CD-ROM/DVD drive

3

Hard disk drive (HDD) bay 0

   

Figure 1-3 Cisco NAC-3315 Front Panel LEDs/Buttons

1

Power status LED

Green = The appliance has AC power and is powered up
Off = The appliance is powered off (AC power disconnected)

2

Power button (recessed)

 

3

Reset button (recessed)

 

4

HDD activity LED

Flashing green = Ongoing drive activity
Off = No drive activity

5

Locator button/LED

Flashing blue = The Locator button has been pressed

6

System health LED

Off = System health is normal
Amber = A pre-failure system threshold has been breached. This can be any of the following:

At least one fan failure (system or processor fan)

At least one of the temperature sensors reached critical level (system or processor thermal sensors)

At least one memory module failure

A power supply unit error has occurred


Rear Panel Features

Figure 1-4 Cisco NAC-3315 (With Installed FIPS Card) Rear Panel

1

Power supply cable socket

7

Video port

2

NIC 3 (eth2) add-on card

8

NIC 2 (eth1) GbE interface

3

NIC 4 (eth3) add-on card

9

NIC 1 (eth0) GbE interface

4

FIPS card mini-DIN Smart card reader port

10

Rear USB port 4

5

FIPS card mode switch

11

Rear USB port 3

6

Serial port

12

Console port


Figure 1-5 Cisco NAC-3315 (With Installed FIPS Card) Rear Panel LEDs

1

FIPS card status LED

Solid blue occasionally blinking off = FIPS card is enabled and accepting commands
Two short blue flashes followed by a pause = FIPS card is in initialization mode
Two longer blue flashes followed by a pause = FIPS card is in maintenance mode
Repeatedly flashing morse code distress call (. . . - - - . . .)—three short blue flashes followed by three longer blue flashes followed again by three more short blue flashes = FIPS card is in error mode
Off = There is no power source connected to the FIPS card

2

NIC 1 (eth0) activity LED

Green = Activity exists
Flashing green = Activity exists
Off = No activity exists

3

NIC 1 (eth0) link LED

Green = Link exists
Off = No link exists

4

NIC 2 (eth1) activity LED

Green = Activity exists
Flashing green = Activity exists
Off = No activity exists

5

NIC 2 (eth1) link LED

Green = Link exists
Off = No link exists


NAC-3355 Serial Number Location

The serial number label is located at the lower left of the front-panel of the NAC-3355. (See Figure 1-6.)

Figure 1-6 NAC-3355 Appliance Serial Number Location


Note The serial number for the NAC-3355 is 7 characters long. You can also view the NAC-3315 serial number location on the Cisco Support website using the Cisco Product Identification Tool. For details, see Cisco Product Identification Tool.


Cisco NAC-3355 Front and Rear Panels

The Cisco NAC-3355 FIPS 140-2 compliant platform provides enhanced capability for enterprise wide Clean Access Standard Manager and Clean Access Server (1500/2500/3500 user count) deployments. A NAC-3355 Standard CAM can manage up to 20 Clean Access Servers or 20 HA-CAS pairs. A NAC-3355 CAS can support up to 1500, 2500, or 3500 users.

Similar to the Cisco NAC-3315, the Cisco NAC-3355 comes equipped with 4 network interfaces to provide flexibility in NIC interface selection and facilitate CAS high availability configuration. The Cisco NAC-3355 additionally provides 2 GB of RAM, two SAS drives configured in RAID 0 and 1, dual power supplies, and an SSL accelerator card to support large network deployments and provide added reliability for a centralized CAM/CAS deployment in the network core.

For additional details, see FIPS 140-2 Compliant and Non-FIPS Hardware Platforms.

Front Panel Features

Figure 1-7 Cisco NAC-3355 Front Panel

1

Hard disk drive (HDD) bay 0

8

Front USB port 1

2

Empty (unused) hard disk drive (HDD) bay 1

9

Front USB port 2

3

Empty (unused) hard disk drive (HDD) bay 1

10

CD-ROM/DVD drive

4

Power button with LED indicator (bicolor: green/amber)

11

Empty (unused) hard disk drive (HDD) bay 1

5

Operator information panel

12

Empty (unused) hard disk drive (HDD) bay 1

6

Operator information panel release switch

13

Hard disk drive (HDD) bay 1

7

Video port

   

1 Cisco does not support installing additional hard drives in the NAC-3355 appliance.


Figure 1-8 Cisco NAC-3355 Front Panel LEDs/Buttons

1

HDD activity LED

Green = Hard disk drive activity
Flashing Green = Hard disk drive activity
Off = Hard disk drive is idle or disabled

2

HDD status LED

Amber = Hard disk drive is in error state
Off = Hard disk drive is functioning or disconnected from power

3

Power switch button cover

Slides left and right to expose or protect power switch

4

Ethernet icon LED

Green = Ethernet interfaces are configured and up
Off = No Ethernet interfaces are currently configured or Ethernet interfaces are all down

5

Ethernet interface activity LEDs (NIC 1 and NIC 2)

Green = Activity exists
Flashing green = Activity exists
Off = No activity exists

6

Information LED

Amber = A non-critical system event has occurred
Off = System is functioning normally

7

System health LED

Off = System health is normal
Amber = A pre-failure system threshold has been breached. This can be any of the following:

At least one fan failure (system or processor fan)

At least one of the temperature sensors reached critical level (system or processor thermal sensors)

At least one memory module failure

A power supply unit error has occurred

8

Front Locator button/LED

Flashing blue = The Locator button has been pressed.

9

Ethernet interface activity LEDs (NIC 3 and NIC 4)

Green = Activity exists
Flashing green = Activity exists
Off = No activity exists

10

Power button with LED

Green = The appliance has AC power and is powered up
Rapidly flashing green = The appliance is off and is not yet ready to be turned on (the appliance typically only remains in this state for 1 to 3 minutes)
Slowly flashing green = The appliance is currently off and ready to be turned on
slowly fading on/off green = The appliance is in power-save mode and is ready to be turned on
Off = The appliance is powered off (AC power disconnected)


Rear Panel Features

Figure 1-9 Cisco NAC-3355 (With Installed FIPS Card) Rear Panel

1

FIPS card mini-DIN Smart card reader port

8

Serial port

2

FIPS card mode switch

9

NIC 2 (eth1) GbE interface

3

Video port

10

NIC 1 (eth0) GbE interface

4

Empty (unused) PCI slot

11

NIC 4 (eth3) add-on card

5

Rear USB port 4

12

NIC 3 (eth2) add-on card

6

Power supply cable sockets

13

Console port

7

Rear USB port 3

   

Figure 1-10 Cisco NAC-3355 (With Installed FIPS Card) Rear Panel LEDs

1

FIPS card status LED

Solid blue occasionally blinking off = FIPS card is enabled and accepting commands
Two short blue flashes followed by a pause = FIPS card is in initialization mode
Two longer blue flashes followed by a pause = FIPS card is in maintenance mode
Repeatedly flashing morse code distress call (. . . - - - . . .)—three short blue flashes followed by three longer blue flashes followed again by three more short blue flashes = FIPS card is in error mode
Off = There is no power source connected to the FIPS card

2

NIC 1 (eth0) activity LED

Green = Activity exists
Flashing green = Activity exists
Off = No activity exists

3

NIC 1 (eth0) link LED

Green = Link exists
Off = No link exists

4

AC power LED

Green = AC power source is connected to power supply
Off = No AC power source is connected to power supply

5

DC power LED

Green = DC power source is connected to power supply
Off = No DC power source is connected to power supply

6

Power supply error LED

Amber = Power source to power supply is present, but power supply is in error state
Off = Power supply is functioning normally (if AC and DC power indicators are green) or power supply is disconnected

7

System error LED

Amber = Indicates that a system error has occurred
Off = The system is functioning normally

8

Rear Locator LED

Flashing blue = The Front Locator button has been pressed

9

Power LED

Green = The appliance has AC power and is powered up
Rapidly flashing green = The appliance is off and is not yet ready to be turned on (the appliance typically only remains in this state for 1 to 3 minutes)
Slowly flashing green = The appliance is currently off and ready to be turned on
slowly fading on/off green = The appliance is in power-save mode and is ready to be turned on
Off = The appliance is powered off (power is disconnected)


NAC-3395 Serial Number Location

The serial number label is located at the lower left of the front-panel of the NAC-3355. (See Figure 1-11.)

Figure 1-11 NAC-3395 Appliance Serial Number Location


Note The serial number for the NAC-3395 is 7 characters long. You can also view the NAC-3315 serial number location on the Cisco Support website using the Cisco Product Identification Tool. For details, see Cisco Product Identification Tool.


Cisco NAC-3395 Front and Rear Panels

The Cisco NAC-3395 FIPS 140-2 compliant platform provides the enhanced processing, memory, and power necessary for enterprise wide deployment of the Clean Access Super Manager (Super CAM) which can support up to 40 Clean Access Servers or 40 HA-CAS pairs. The Cisco NAC-3390 features dual processors, dual power supplies, 4 GB of RAM, 4 hard disk drives, 4 network interfaces, and an SSL accelerator card. For additional details, see FIPS 140-2 Compliant and Non-FIPS Hardware Platforms.


Note The Super CAM software is supported only on the Cisco NAC-3395 and Cisco NAC-3390 platforms.


Front Panel Features

Figure 1-12 Cisco NAC-3395 Front Panel

1

Hard disk drive (HDD) bay 0

8

Front USB port 1

2

Hard disk drive (HDD) bay 2

9

Front USB port 2

3

Empty (unused) hard disk drive (HDD) bay 1

10

CD-ROM/DVD drive

4

Power button with LED indicator (bicolor: green/amber)

11

Empty (unused) hard disk drive (HDD) bay 1

5

Operator information panel

12

Hard disk drive (HDD) bay 3

6

Operator information panel release switch

13

Hard disk drive (HDD) bay 1

7

Video port

   

1 Cisco does not support installing additional hard drives in the NAC-3395 appliance.


Figure 1-13 Cisco NAC-3395 Front Panel LEDs/Buttons

1

HDD activity LED

Green = Hard disk drive activity
Flashing Green = Hard disk drive activity
Off = Hard disk drive is idle or disabled

2

HDD status LED

Amber = Hard disk drive is in error state
Off = Hard disk drive is functioning or disconnected from power

3

Power switch button cover

Slides left and right to expose or protect power switch

4

Ethernet icon LED

Green = Ethernet interfaces are configured and up
Off = No Ethernet interfaces are currently configured or Ethernet interfaces are all down

5

Ethernet interface activity LEDs (NIC 1 and NIC 2)

Green = Activity exists
Flashing green = Activity exists
Off = No activity exists

6

Information LED

Amber = A non-critical system event has occurred
Off = System is functioning normally

7

System health LED

Off = System health is normal
Amber = A pre-failure system threshold has been breached. This can be any of the following:

At least one fan failure (system or processor fan)

At least one of the temperature sensors reached critical level (system or processor thermal sensors)

At least one memory module failure

A power supply unit error has occurred

8

Locator button/LED

Flashing blue = The Locator button has been pressed.

9

Ethernet interface activity LEDs (NIC 3 and NIC 4)

Green = Activity exists
Flashing green = Activity exists
Off = No activity exists

10

Power button/LED

Green = The appliance has AC power and is powered up
Rapidly flashing green = The appliance is off and is not yet ready to be turned on (the appliance typically only remains in this state for 1 to 3 minutes)
Slowly flashing green = The appliance is currently off and ready to be turned on
slowly fading on/off green = The appliance is in power-save mode and is ready to be turned on
Off = The appliance is powered off (AC power disconnected)


Rear Panel Features

Figure 1-14 Cisco NAC-3395 (With Installed FIPS Card) Rear Panel

1

FIPS card mini-DIN Smart card reader port

8

Serial port

2

FIPS card mode switch

9

NIC 2 (eth1) GbE interface

3

Video port

10

NIC 1 (eth0) GbE interface

4

Empty (unused) PCI slot

11

NIC 4 (eth3) add-on card

5

Rear USB port 4

12

NIC 3 (eth2) add-on card

6

Power supply cable sockets

13

Console port

7

Rear USB port 3

   

Figure 1-15 Cisco NAC-3395 (With Installed FIPS Card) Rear Panel LEDs

1

FIPS card status LED

Solid blue occasionally blinking off = FIPS card is enabled and accepting commands
Two short blue flashes followed by a pause = FIPS card is in initialization mode
Two longer blue flashes followed by a pause = FIPS card is in maintenance mode
Repeatedly flashing morse code distress call (. . . - - - . . .)—three short blue flashes followed by three longer blue flashes followed again by three more short blue flashes = FIPS card is in error mode
Off = There is no power source connected to the FIPS card

2

NIC 1 (eth0) activity LED

Green = Activity exists
Flashing green = Activity exists
Off = No activity exists

3

NIC 1 (eth0) link LED

Green = Link exists
Off = No link exists

4

AC power LED

Green = AC power source is connected to power supply
Off = No AC power source is connected to power supply

5

DC power LED

Green = DC power source is connected to power supply
Off = No DC power source is connected to power supply

6

Power supply error LED

Amber = Power source to power supply is present, but power supply is in error state
Off = Power supply is functioning normally (if AC and DC power indicators are green) or power supply is disconnected

7

System error LED

Amber = Indicates that a system error has occurred
Off = The system is functioning normally

8

Rear Locator LED

Flashing blue = The Front Locator button has been pressed

9

Power LED

Green = The appliance has AC power and is powered up
Rapidly flashing green = The appliance is off and is not yet ready to be turned on (the appliance typically only remains in this state for 1 to 3 minutes)
Slowly flashing green = The appliance is currently off and ready to be turned on
slowly fading on/off green = The appliance is in power-save mode and is ready to be turned on
Off = The appliance is powered off (power is disconnected)


NAC-3310, NAC-3350, and NAC-3390

Table 1-2 Cisco NAC Appliance Hardware Summary 

Cisco NAC Appliance
Product
Hardware Specifications
Diagrams

NAC-3310 1 ,2

MANAGER

Lite Manager supporting up to 3 standalone or HA-pair CASs

Single processor: Xeon 2.33 GHz dual core

1 GB RAM

160 GB NHP SATA HDD

Note Newer Cisco NAC-3310 CAMs/CASs feature a 160GB hard drive, while older NAC-3310s originally shipped with 80GB hard drives. Both of these hard drive sizes support High Availability (HA) deployments, and you can safely deploy a 160GB model in an HA pair with an 80GB model.

4 10/100/1000 LAN ports [2 Broadcom 5721 integrated NICs; 2 Intel e1000 PCI-X NICs (HP #NC360T)]

CD/DVD-ROM Drive

4 USB Ports (2 front, 2 rear)

Note The NAC-3310 is based on the HP ProLiant DL140 G3 server platform.

Figure 1-16 "Cisco NAC-3310 Front Panel"

Figure 1-17 "Cisco NAC-3310 Front Panel LEDs/Buttons"

Figure 1-18 "Cisco NAC-3310 Rear Panel"

Figure 1-19 "Cisco NAC-3310 Rear Panel LEDs"

SERVER

CAS supporting 100, 250, or 500 users

NAC-3350 3

MANAGER

Standard Manager supporting up to 20 standalone or HA-pair CASs

Single processor: Xeon 3.0 GHz dual core

Dual power supply

2 GB RAM

2 x 72 GB SFF SAS RAID HDD

Smart Array E200i Controller

4 10/100/1000 LAN ports [2 Broadcom 5708 integrated NICs; 2 Intel e1000 PCI-X NICs (HP #NC360T)]

CD/DVD-ROM Drive

4 USB Ports (1 front, 1 internal, 2 rear)

Cavium CN1120-NHB-E SSL Accelerator Card

Note The NAC-3350 is based on the HP ProLiant DL360 G5 server platform.

Figure 1-20 "Cisco NAC-3350 Front Panel"

Figure 1-21 "Cisco NAC-3350 Front Panel LEDs/Buttons"

Figure 1-22 "Cisco NAC-3350 Rear Panel"

Figure 1-23 "Cisco NAC-3350 Rear Panel LEDs"

SERVER

CAS supporting 1500, 2500, or 3500 users

NAC-3390 3

MANAGER

Super Manager supporting up to 40 standalone or HA-pair CASs

Dual processor: Xeon 3.0 GHz dual core

Dual power supply

4 GB RAM

4 x 72 GB SFF SAS RAID HDD 4

Smart Array E200i Controller

4 10/100/1000 LAN ports [2 Broadcom 5708 integrated NICs; 2 Intel e1000 PCI-X NICs (HP #NC360T)]

CD/DVD-ROM Drive

4 USB Ports (1 front, 1 internal, 2 rear)

Cavium CN1120-NHB-E SSL Accelerator Card

Note The NAC-3390 is based on the HP ProLiant DL360 G5 server platform.

Figure 1-24 "Cisco NAC-3390 Front Panel"

Figure 1-25 "Cisco NAC-3390 Front Panel LEDs /Buttons"

Figure 1-26 "Cisco NAC-3390 Rear Panel"

Figure 1-27 "Cisco NAC-3390 Rear Panel LEDs/Buttons"

1 NAC-3310 may require a firmware/BIOS upgrade for HP ProLiant DL140 G3. See Upgrading Firmware.

2 NAC-3310 supports iLO (Lights Out 100i Remote Management). The default iLO "Administrator" account has default username/password: admin/admin. Defaults can be changed through the BIOS setup.

3 NAC-3350 and NAC-3390 support iLO2 (Integrated Lights Out, version 2). See panel tags for admin account details.

4 Cisco might ship the NAC-33xx models with 146GB or higher hard disk drives instead of the original 72GB hard disk drives.


Cisco NAC-3310 Front and Rear Panels


Note The Cisco NAC-3310 is only FIPS-compliant after you have purchased and installed a field-replaceable FIPS card as described in the Cisco NAC Appliance FIPS Card Field-Replaceable Unit Installation Guide.


The Cisco NAC-3310 Appliance is the recommended platform for Clean Access Lite Manager and Clean Access Server (100/250/500 user count) deployments. A NAC-3310 CAM Lite can manage up to 3 Clean Access Servers or 3 HA-CAS pairs. A NAC-3310 CAS can support 100, 250, or 500 users.


Note If Cisco NAC-3310 has been made FIPS-compliant, then NAC-3310 CAS can support only 250 or 500 users.


The Cisco NAC-3310 comes equipped with 4 network interfaces to provide flexibility in NIC interface selection and to facilitate CAS high availability configuration.


Note Newer Cisco NAC-3310 CAMs/CASs feature a 160GB hard drive, while older NAC-3310s originally shipped with 80GB hard drives. Both of these hard drive sizes support High Availability (HA) deployments, and you can safely deploy a 160GB model in an HA pair with an 80GB model.


For additional details, see FIPS 140-2 Compliant and Non-FIPS Hardware Platforms.

Front Panel Features

Figure 1-16 Cisco NAC-3310 Front Panel

1

Hard disk drive (HDD) bay

6

HDD activity LED indicator (green)

2

CD-ROM/DVD drive

7

Power button with LED indicator (bicolor: green/amber)

3

UID (Unit identification) button with recessed LED indicator (blue)

8

Thumbscrews for the front bezel

4

System health LED indicator (amber)

9

Front USB ports

5

Activity/link status LED indicators for NIC 1 (eth0) and NIC2 (eth1) (green)

   

Figure 1-17 Cisco NAC-3310 Front Panel LEDs/Buttons

1

UID LED (recessed)

Blue = A UID button has been pressed.

2

System health LED

Off = System health is normal
Amber = A pre-failure system threshold has been breached. This can be any of the following:

At least one fan failure (system or processor fan)

At least one of the temperature sensors reached critical level (system or processor thermal sensors)

At least one memory module failure

A power supply unit error has occurred

3

Activity/link status LED for NIC 1 (eth0) and NIC 2 (eth1)

Solid green = An active network link exists
Flashing green = An ongoing network data activity exists
Off = The server is off-line

4

HDD activity LEDs

Flashing green = Ongoing drive activity
Off = No drive activity

5

Power status LED (recessed)

Green = The server has AC power and is powered up
Amber = The server has AC power and is in standby mode
Off = The server is powered off (AC power disconnected)


Rear Panel Features

Figure 1-18 Cisco NAC-3310 Rear Panel

1

Ventilation holes

9

UID button with recessed LED indicator (blue)

2

Thumbscrew for the top cover

10

Rear USB ports (black)

3

Thumbscrews for the PCI riser board assembly

11

Video port (blue)

4

NIC 3 (eth2) and NIC 4 (eth3) PCI Express GbE LAN (RJ-45) ports (Intel)

12

Serial port

5

13

PS/2 keyboard port (purple)

6

Standard height/full-length PCI Express x16/PCI-X riser board slot cover

14

PS/2 mouse port (green)

7

Power supply cable socket

15

10/100 Mbps iLO LAN port for IPMI management (RJ-45)

8

NIC 1 (eth0) and NIC 2 (eth1) integrated GbE LAN (RJ-45) ports (Broadcom)

   

Figure 1-19 Cisco NAC-3310 Rear Panel LEDs

1

NIC activity/link status LEDs for NIC 1 (eth0) and NIC 2 (eth1)

Solid green = An active network link exists
Flashing green = An ongoing network data activity exists
Off = The server is off-line

2

NIC network speed LEDs

Steady amber = The LAN connection is using a GbE link
Steady green = The LAN connection is using a 100 Mbps link
Off = The LAN connection is using a 10 Mbps link

3

UID LED (recessed)

Blue = A UID button has been pressed

4

Link status LED for the 10/100 Mbps LAN port

Green = A network link exists
Off = No network link exists

5

Activity status LED for the 10/100 Mbps LAN port

Flashing green = Network activity exists
Off = No network activity exists


Cisco NAC-3350 Front and Rear Panels


Note The Cisco NAC-3350 is only FIPS-compliant after you have purchased and installed a field-replaceable FIPS card as described in the Cisco NAC Appliance FIPS Card Field-Replaceable Unit Installation Guide.


The Cisco NAC-3350 Appliance provides enhanced capability for enterprise wide Clean Access Standard Manager and Clean Access Server (1500/2500/3500 user count) deployments. A NAC-3350 Standard CAM can manage up to 20 Clean Access Servers or 20 HA-CAS pairs. A NAC-3350 CAS can support up to 1500, 2500, or 3500 users.

Similar to the Cisco NAC-3310, the Cisco NAC-3350 comes equipped with 4 network interfaces to provide flexibility in NIC interface selection and facilitate CAS high availability configuration. The Cisco NAC-3350 additionally provides 2 GB of RAM, two SAS drives configured in RAID 0 and 1, dual power supplies, and an SSL accelerator card to support large network deployments and provide added reliability for a centralized CAM/CAS deployment in the network core.

For additional details, see FIPS 140-2 Compliant and Non-FIPS Hardware Platforms.

Front Panel Features

Figure 1-20 Cisco NAC-3350 Front Panel

1

Hard drive bay 1

4

Video connector

2

Hard drive bay 2

5

HP Systems Insight Display

3

CD-ROM/DVD drive

6

USB connector


Figure 1-21 Cisco NAC-3350 Front Panel LEDs/Buttons

1

Power On/Standby button and system power LED

Green = System is on
Amber = System is shut down, but power is still applied
Off = Power cord is not attached, power supply failure has occurred, no power supplies are installed; facility power is not available, or disconnected power button cable

2

UID button/LED

Blue = Identification is activated
Flashing blue = System is being managed remotely
Off = Identification is deactivated

3

Internal health LED

Green = System health is normal
Amber = System health is degraded. (To identify the component in a degraded state, refer to "HP Systems Insight Display and LEDs.")
Red = System health is critical. (To identify the component in a critical state, refer to "HP Systems Insight Display and LEDs.")
Off = System health is normal when in standby mode

4

External health LED (power supply)

Green = Power supply health is normal
Amber = Power redundancy failure occurred
Off = Power supply health is normal when in standby mode

5

NIC 1 (eth0) link/activity LED

Green = Network link exists
Flashing green = Network link and activity exist
Off = No link to network exists
If power is off, the front panel LED is not active. For status, view the rear panel LED for the RJ-45 connector (Figure 1-23).

6

NIC 2 (eth1) link/activity LED

Green = Network link exists
Flashing green = Network link and activity exist
Off = No link to network exists
If power is off, the front panel LED is not active. For status, view the rear panel LED for the RJ-45 connector (Figure 1-23).


Rear Panel Features

Figure 1-22 Cisco NAC-3350 Rear Panel

1

NIC 3 (eth2) PCI-X port (Intel)

8

Keyboard connector (purple)

2

NIC 4 (eth3) PCI-X port (Intel)

9

Mouse connector (green)

3

PCI Express expansion slot 2

10

Video connector (blue)

4

Power supply bay 1

11

Serial connector

5

Power supply bay 2

12

USB connector

6

Integrated NIC 2 (eth1) port (Broadcom)

13

USB connector

7

Integrated NIC 1 (eth0) port (Broadcom)

14

iLO 2 NIC connector (RJ-45)


Figure 1-23 Cisco NAC-3350 Rear Panel LEDs

1

iLO 2 NIC activity LED

Green = Activity exists
Flashing green = Activity exists
Off = No activity exists

2

iLO 2 NIC link LED

Green = Link exists
Off = No link exists

3

10/100/1000 NIC 3 (Intel) Activity LED

Steady green = High activity
Flashing green = Activity exists
Off = No activity (if link LED is off, link is dead)

4

10/100/1000 NIC 3 (Intel) Link LED

Orange = 1000 Mbps
Green = 100 Mbps
Off = 10 Mbps (if activity LED is off, link is dead)

5

10/100/1000 NIC 4 (Intel) Activity LED

Steady green = High activity
Flashing green = Activity exists
Off = No activity (if link LED is off, link is dead)

6

10/100/1000 NIC 4 (Intel) Link LED

Orange = 1000 Mbps
Green = 100 Mbps
Off = 10 Mbps (if activity LED is off, link is dead)

7

10/100/1000 NIC 1 (Broadcom) Activity LED

Green = Activity exists
Flashing green = Activity exists
Off = No activity exists

8

10/100/1000 NIC 1 (Broadcom) Link LED

Green = Link exists
Off = No link exists

9

10/100/1000 NIC 2 (Broadcom) Activity LED

Green = Activity exists
Flashing green = Activity exists
Off = No activity exists

10

10/100/1000 NIC 2 (Broadcom) Link LED

Green = Link exists
Off = No link exists

11

UID button/LED

Blue = Identification is activated
Flashing blue = System is being managed remotely
Off = Identification is deactivated

12

Power supply 1 LED

Green = Normal
Off = System is off or power supply has failed

13

Power supply 2 LED

Green = Normal
Off = System is off or power supply has failed


Cisco NAC-3390 Front and Rear Panels


Note The Cisco NAC-3390 is only FIPS-compliant after you have purchased and installed a field-replaceable FIPS card as described in the Cisco NAC Appliance FIPS Card Field-Replaceable Unit Installation Guide.


The Cisco NAC-3390 Appliance platform provides the enhanced processing, memory, and power necessary for enterprise wide deployment of the Clean Access Super Manager (Super CAM) which can support up to 40 Clean Access Servers or 40 HA-CAS pairs. The Cisco NAC-3390 features dual processors, dual power supplies, 4 GB of RAM, 4 hard disk drives, two integrated NICs, and an SSL accelerator. For additional details, see FIPS 140-2 Compliant and Non-FIPS Hardware Platforms.


Note The Super CAM software is supported only on the Cisco NAC-3395 and Cisco NAC-3390 platforms.


Front Panel Features

Figure 1-24 Cisco NAC-3390 Front Panel

1

Hard drive bay 1

5

CD-ROM/DVD drive

2

Hard drive bay 2

6

Video connector

3

Hard drive bay 3

7

HP Systems Insight Display

4

Hard drive bay 4

8

USB connector


Figure 1-25 Cisco NAC-3390 Front Panel LEDs /Buttons

1

Power On/Standby button and system power LED

Green = System is on
Amber = System is shut down, but power is still applied
Off = Power cord is not attached, power supply failure has occurred, no power supplies are installed; facility power is not available, or disconnected power button cable

2

UID button/LED

Blue = Identification is activated
Flashing blue = System is being managed remotely
Off = Identification is deactivated

3

Internal health LED

Green = System health is normal
Amber = System health is degraded. (To identify the component in a degraded state, refer to "HP Systems Insight Display and LEDs.")
Red = System health is critical. (To identify the component in a critical state, refer to "HP Systems Insight Display and LEDs.")
Off = System health is normal when in standby mode

4

External health LED (power supply)

Green = Power supply health is normal
Amber = Power redundancy failure occurred
Off = Power supply health is normal when in standby mode

5

NIC 1 link/activity LED

Green = Network link exists
Flashing green = Network link and activity exist
Off = No link to network exists
If power is off, the front panel LED is not active. For status, view the rear panel LED for the RJ-45 connector (Figure 1-27)

6

NIC 2 link/activity LED

Green = Network link exists
Flashing green = Network link and activity exist
Off = No link to network exists
If power is off, the front panel LED is not active. For status, view the rear panel LED for the RJ-45 connector (Figure 1-27)


Rear Panel Features

Figure 1-26 Cisco NAC-3390 Rear Panel

1

PCI Express expansion slot 1, low-profile, half-length

8

Mouse connector (green)

2

Cavium SSL Accelerator Card (PCI Express expansion slot 2)

9

Video connector (blue)

3

Power supply bay 1

10

Serial connector

4

Power supply bay 2

11

USB connector

5

Integrated NIC 2 (eth1) port (Broadcom)

12

USB connector

6

Integrated NIC 1 (eth0) port (Broadcom)

13

iLO 2 NIC connector (RJ-45)

7

Keyboard connector (purple)

   

Figure 1-27 Cisco NAC-3390 Rear Panel LEDs/Buttons

1

iLO 2 NIC activity LED

Green = Activity exists
Flashing green = Activity exists
Off = No activity exists

2

iLO 2 NIC link LED

Green = Link exists
Off = No link exists

3

10/100/1000 NIC 1 Activity LED

Green = Activity exists
Flashing green = Activity exists
Off = No activity exists

4

10/100/1000 NIC 1 Link LED

Green = Link exists
Off = No link exists

5

10/100/1000 NIC 2 Activity LED

Green = Activity exists
Flashing green = Activity exists
Off = No activity exists

6

10/100/1000 NIC 2 Link LED

Green = Link exists
Off = No link exists

7

UID button/LED

Blue = Identification is activated
Flashing blue = System is being managed remotely
Off = Identification is deactivated

8

Power supply 1 LED

Green = Normal
Off = System is off or power supply has failed

9

Power supply 2 LED

Green = Normal
Off = System is off or power supply has failed


Cisco Product Identification Tool

The Cisco Product Identification (CPI) tool helps you retrieve the serial number of your Cisco products.

Before you submit a request for service online or by phone, use the CPI tool to locate your product serial number. You can access this tool from the Cisco Support website.

To access the Cisco Product Identification Tool:


Step 1 Click the Get Tools & Resources link.

Step 2 Click the All Tools (A-Z) tab.

Step 3 Select Cisco Product Identification Tool from the alphabetical drop-down list.

This tool offers three search options:

Search by product ID or model name.

Browse for Cisco model.

Copy and paste the output of the show command to identify the product.

Search results show an illustration of your product with the serial number label location highlighted. Locate the serial number label on your product and record the information before you place a service call.

You can access the CPI tool at:

http://tools.cisco.com/Support/CPI/index.do

To access the CPI tool, you require a Cisco.com user ID and password. If you have a valid service contract but do not have a user ID or password, you can register at:

http://tools.cisco.com/RPF/register/register.do