Cisco NAC Appliance (Clean Access)

Table Of Contents

Support Information for Cisco NAC Appliance Agents, Release 4.5 and Later

Cisco NAC Appliance Agent System Requirements

Cisco NAC Appliance Agent/Server Version Compatibility

Cisco NAC Appliance Agent/OS/Browser Support Matrix

Cisco NAC Windows Agent/Browser/Java Support

Mac OS X Agent/Browser/Java Support

Linux Browser/Java Support

Windows Clean Access Agent/Browser/Java Support

Cisco NAC Appliance Agent/AD Server Compatibility for AD SSO

Cisco NAC Agent Localized Language Support

Clean Access Agent Localized Language Template Support

Supported OS Locales

Support Information for Cisco NAC Appliance Agents, Release 4.5 and Later

---

Revised: January 17, 2012, OL-18184-01

This document provides the following information for Cisco NAC Appliance Release 4.5 and later:

•Cisco NAC Appliance Agent System Requirements

•Cisco NAC Appliance Agent/Server Version Compatibility

•Cisco NAC Appliance Agent/OS/Browser Support Matrix

•Cisco NAC Appliance Agent/AD Server Compatibility for AD SSO

•Cisco NAC Agent Localized Language Support

•Clean Access Agent Localized Language Template Support

Cisco NAC Appliance Agent System Requirements

Table 1 Minimum Requirements for Cisco NAC Appliance Agents

Cisco NAC Appliance Agent	Required Hard Drive Space
Cisco NAC Agent (Windows)	15 MB
Clean Access Agent (Windows)	10 MB
Mac OS X Clean Access Agent
Cisco NAC Web Agent (temporal)

Cisco NAC Appliance Agent/Server Version Compatibility

Table 2 shows Clean Access Server and Agent compatibility between CAM/CAS releases and Agent versions for Windows and Mac OS X client operating systems. Agent client versions listed as compatible can perform basic login/logout for the CAM/CAS version listed and provide the minimum features available for that Agent version or CAM/CAS version (whichever is lower).

The AV/AS support available is determined by the version of the Agent on the client as well as the version of the Cisco NAC Agent Setup or Clean Access Agent Setup/Patch (upgrade) file uploaded to the CAM. For example:

•4.5(x) CAM/CAS with 4.5.0.0 Agent Setup file and 4.5.0.0 Agent Patch file provides 4.1.2.2 Agent AV/AS support for 4.1.2.2 clients.

•4.6(1) CAM/CAS with 4.5.1.0 Agent Installation file provides 4.5.1.0 Agent AV/AS support for 4.5.1.0 clients.

•4.5(1) CAM/CAS with 4.6.2.113 Agent Installation file provides 4.6.2.113 Agent AV/AS support for 4.6.2.113 clients, but the Agent must operate as an English-only entity—you cannot take advantage of the native operating system localization support available to Cisco NAC Agent users who are logging in to a 4.6(1) CAM/CAS network.

•4.7(0) FIPS 140-2 compliant CAM/CAS with the 4.7.1.15 Agent Installation file provides 4.7.1.15 Agent AV/AS support for Windows XP/Vista client machines.

•4.7(1) (non-FIPS) CAM/CAS with the 4.7.1.511 Agent Installation file provides 4.7.1.511 Agent AV/AS support for Windows 2000/XP/Vista/7 client machines.

---

Note The 4.7.1.511 Agent does not provide support for client machines with Windows 7 Starter Edition.

---

•4.7(2) (non-FIPS) CAM/CAS with the 4.7.2.10 Agent Installation file provides 4.7.2.10 Agent AV/AS support for Windows 2000/XP/Vista/7 client machines.

•4.7(3) CAM/CAS with 4.7.3.2 Agent Installation file provides 4.7.3.2 Agent AV/AS support for Windows 2000/XP/Vista/7 client machines.

•4.7(3) CAM/CAS with 4.7.4.2 Agent Installation file provides 4.7.4.2 Agent AV/AS support for Windows 2000/XP/Vista/7 client machines.

•4.7(5) CAM/CAS with 4.7.5.5 Agent Installation file provides AV/AS support for Windows 2000/XP/Vista/7 client machines.

•4.7(5) CAM/CAS with 4.7.5.531 Agent Installation file provides AV/AS support for Mac OS X 10.7 "Lion" client machines.

•4.8 FIPS 140-2 compliant CAM/CAS with 4.8.0.35 Agent Installation file provides 4.8.0.35 Agent AV/AS support for Windows XP/Vista/7 client machines.

---

Note For NAC Appliance Release 4.8, the File Distribution requirement type works only when the Agent version is the latest (4.8.0.35). If you are using CAM/CAS version 4.8 with an Agent version earlier than 4.8.0.35, then either use the Link Distribution requirement or upgrade the Agent to the latest version to use the File Distribution. To know more about File Distribution, see the "Configuring Agent-Based Posture Assessment" section in Cisco NAC Appliance - Clean Access Manager Configuration Guide, Release 4.8(3).

---

•4.8(1) CAM/CAS with 4.8.1.5 Agent Installation file provides 4.8.1.5 Agent AV/AS support for Windows XP/Vista/7 client machines.

•4.8(2) CAM/CAS with 4.8.2.1 Agent Installation file provides 4.8.2.1 Agent AV/AS support for Windows XP/Vista/7 client machines.

•4.8(2) CAM/CAS with 4.8.2.591 Agent Installation file provides AV/AS support for Mac OS X 10.7 "Lion" client machines.

•4.8(3) CAM/CAS with 4.8.3.1 Agent Installation file provides 4.8.3.1 Agent AV/AS support for Windows XP/Vista/7 client machines.

•4.9 FIPS 140-2 compliant CAM/CAS with 4.9.0.33 Agent Installation file provides AV/AS support for Windows XP/Vista/7 client machines.

•4.9 CAM/CAS with 4.9.0.649 Agent Installation file provides AV/AS support for Mac OS X 10.7 "Lion" client machines.

Table 2 Cisco NAC Appliance Server/Agent Compatibility

CAM/CAS Version	Cisco NAC Agent Version	Clean Access Agent Version (Windows XP/Vista/2000)	Clean Access Agent Version (Mac OS X 10.4, 10.5, 10.6) 1
FIPS 140-2 Compliant2
4.9 4.8 4.7(0)	4.9.0.33 4.8.0.35 4.7.1.15	N/A	N/A
Non-FIPS
4.9 4.8(3) 4.8(2) 4.8(1) 4.8 4.7(5) 4.7(3) 4.7(2) 4.7(1) 4.7(0) 4.6(1)	4.9.0.33 4.8.3.1 4.8.2.1 4.8.1.5 4.8.0.35 4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 3 4.7.1.511 4 4.7.1.15 4.6.2.113	4.5.2.05 4.5.1.0 4.5.0.0	4.9.0.649 4.8.3.594 4.8.2.591 4.8.2.590 4.8.1.584 4.8.0.569 4.7.5.531 4.7.3.522 4.7.2.507 6 4.7.1.506 6 4.7.0.2 4.6.0.3 4.5.0.0
		4.1.10.0 4.1.8.0 4.1.7.0 4.1.6.0 4.1.3.2	4.1.3.1
4.5(1) 4.5(0)	4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113 7 ,8	4.5.2.0 4.5.1.0 4.5.0.0	4.5.0.0
		4.1.10.0 4.1.8.0 4.1.7.0 4.1.6.0 4.1.3.2 4.1.2.2	4.1.3.1 4.1.2.0
4.1(8) 9 4.1(6) 4.1.3.1 9	4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113 7	4.5.2.0 4.5.1.0 9 4.5.0.0 9	4.5.0.0 9
		4.1.10.0 4.1.8.0 4.1.7.0 4.1.6.0 4.1.3.2 4.1.2.2	4.1.3.1 4.1.2.0

1 Only Mac OS X Agent 4.5.0.0 and later provides posture assessment, remediation, and AV/AS support. Mac OS X Agent 4.1.2.0 provides authentication only. MAC OS X Agent 4.1.3.1 provides authentication and auto-upgrade support, and does not provide posture assessment. Mac OS X Agent version 4.1.3.1 will not be authorized to login to the network if the associated login role has any posture requirements matched with the client OS. For full 4.5 feature support (e.g. Mac OS posture), the 4.5.x.x or later Agent must be run with a release 4.5 or later CAM/CAS. 2 Release 4.8 and 4.7(0) are the only certified FIPS-compliant Cisco NAC Appliance releases. 3 Cisco NAC Agent version 4.7.2.10 along with CAM/CAS version 4.7(2) supports Windows 7 Starter Edition. 4 Cisco NAC Agent version 4.7.1.511 along with CAM/CAS version 4.7(1) supports Windows 7 except the Windows 7 Starter Edition. 5 Cisco NAC Agent version 4.5.x is not supported for download from a Release 4.6(1) CAM because the Agent installation file structure is different in Release 4.5(x) as compared to the Agents supported in Release 4.6(1). Ensure that you are using Agent version 4.5.x along with CAM/CAS version 4.5(x). 6 Mac Agent versions 4.7.2.507 and 4.7.1.506 along with CAM/CAS version 4.7(1) and later support the Mac OS X 10.6 (Snow Leopard) operating system. 7 When you install the Cisco NAC Agent, the Agent installer automatically detects the client operating system locale and installs to match. This can break Agent-CAM/CAS communication if the CAM/CAS are not also running release 4.6(1) or later, because the Agent does not automatically default to English-only operation on the client machine, as would be required to restore successful Agent-to-CAM/CAS communication. To work around this potential issue, the user must force the English locale on the client machine after upgrading to/installing Agent version 4.6.2.113 or later on the client machine. 8 Cisco NAC Agent version 4.6.2.113 is not supported for download from a Release 4.5(x) CAM because the Agent installation file structure is different in Release 4.6(1) as compared to the Agents supported in Release 4.5(x). Ensure that you are using Agent version 4.6.2.113 along with CAM/CAS version 4.6(1). 9 4.1(x) CAM/CAS cannot download 4.5.x.x and later Agents from Cisco Updates.

,

Cisco NAC Appliance Agent/OS/Browser Support Matrix

This section lists the operating systems, web browsers, and Java versions known to work with the Cisco NAC Appliance Agents, version 4.5.0.0 and later.

•Cisco NAC Windows Agent/Browser/Java Support

•Mac OS X Agent/Browser/Java Support

•Linux Browser/Java Support

•Windows Clean Access Agent/Browser/Java Support

For Web Login on all operating systems, the ActiveX/Java Applet web client used for L3 MAC address/OS detection and for OOB IP refresh/renew after posture assessment is supported for the web browsers and Java versions listed in each operating system support table.

Cisco NAC Windows Agent/Browser/Java Support

This section provides CAM/CAS version, browser, and Java JRE compatibility information for web login methods as well as the Cisco NAC Agent (version 4.6.2.113 and later) and Cisco NAC Web Agent that you can install and run on Windows operating systems.

The tables in this section list the Cisco NAC Windows Agent/Browser/Java Support for the following Operating Systems:

•Windows 2000, SP4

•Windows XP Media Center Edition, SP2, SP3

•Windows XP Tablet PC, SP2, SP3

•Windows XP Home, SP2

•Windows XP Professional SP2, SP3

•Windows XP Professional x64, SP2

•Windows Vista SP1, SP2

•Windows Vista x64 SP1, SP2

•Windows 7 Professional

•Windows 7 Professional x64

•Windows 7 Ultimate

•Windows 7 Ultimate x64

•Windows 7 Enterprise

•Windows 7 Enterprise x64

•Windows 7 Home Premium

•Windows 7 Home Premium x64

•Windows 7 Home Basic

•Windows 7 Starter Edition

Table 3 Windows 2000, SP4  

Supported Cisco NAC Appliance Versions					Supported Browsers1	Java Version 2
Cisco NAC Agent 3	Web Login 4		Web Agent 5
	CAM/ CAS	L3 MAC (ActiveX/ Applet)	Version	Web Agent (ActiveX/Applet) 6 ,7
4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.0.17 Firefox 3.5.7	1.6.0_17
					Internet Explorer 6.0.2, 7.0, 8.0, and 9.0
4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(3)	2.7.0.0 / 2.7.0.0	4.7.4.1 4.7.3.1	2.7.0.0 / 2.7.0.0	Firefox 3.0.17 Firefox 3.5.7	1.6.0_17
					Internet Explorer 6.0.2 Internet Explorer 7
4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(2)	2.7.0.0 / 2.6.0.0	4.7.2.5	2.7.0.0 / 2.6.0.0	Firefox 3.0.17 Firefox 3.5.7	1.6.0_17
					Internet Explorer 6.0.2 Internet Explorer 7
4.7.1.511 4.7.1.15 4.6.2.113	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Firefox 1.5.0.12 Firefox 3.0.3	1.5.0_01 8
					Internet Explorer 6.0.2 Internet Explorer 7
4.7.1.511 4.7.1.15 4.6.2.113	4.7(0)	2.3.0.0/ 2.2.2.0	4.7.0	2.3.0.0/ 2.2.2.0	Firefox 1.5.0.12	1.5.0_01
					Internet Explorer 6.0
4.7.1.511 4.7.1.15 4.6.2.113	4.6(1)	2.3.0.0/ 2.2.2.0	4.6.0	2.3.0.0/ 2.2.2.0	Firefox 1.5.0.12	1.5.0_01
					Internet Explorer 6.0

1 ActiveX is only supported on the Internet Explorer browser. 2 Java version 1.5 is the minimum version required for Java Applet support. 3 Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English. 4 Web login is not supported on 64-bit versions of Internet Explorer. 5 If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine. 6 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 7 To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level. 8 Java version 1.4.2_15 does not work for Firefox on Windows 2000, SP4 client machines.

Table 4 Windows XP Media Center Edition, SP2, SP3

Supported Cisco NAC Appliance Versions					Supported Browsers1	Java Version 2
Cisco NAC Agent 3	Web Login 4		Web Agent 5
	CAM/ CAS	L3 MAC (ActiveX/ Applet)	Version	Web Agent (ActiveX/Applet) 6 ,7
4.9.0.33 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Internet Explorer 7.0, 8.0, and 9.0	1.6.0_17
4.8.3.1 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Internet Explorer 7.0, 8.0, and 9.0	1.6.0_17
4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Internet Explorer 7.0, 8.0, and 9.0	1.6.0_17
4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(1)	2.8.0.0 / 2.8.0.0	4.8.1.4	2.8.0.0 / 2.8.0.0	Internet Explorer 7.0 and 8.0	1.6.0_17
4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8	2.7.0.0 / 2.7.0.0	4.8.0.4	2.7.0.0 / 2.7.0.0	Internet Explorer 7.0 and 8.0	1.6.0_17
4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Internet Explorer 7.0, 8.0, and 9.0	1.6.0_17
4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(3)	2.7.0.0 / 2.7.0.0	4.7.4.1 4.7.3.1	2.7.0.0 / 2.7.0.0	Internet Explorer 7.0 and 8.0	1.6.0_17
4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(2)	2.7.0.0 / 2.6.0.0	4.7.2.5	2.7.0.0 / 2.6.0.0	Internet Explorer 7.0 and 8.0	1.6.0_17
4.7.1.511 4.7.1.15 4.6.2.113	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Internet Explorer 8.0	1.6.0_17
4.7.1.511 4.7.1.15 4.6.2.113	4.7(0)	2.3.0.0/ 2.2.2.0	4.7.0	2.3.0.0/ 2.2.2.0	Internet Explorer 6.0, 7.0	1.6.0_14
4.7.1.511 4.7.1.15 4.6.2.113	4.6(1)	2.3.0.0/ 2.2.2.0	4.6.0	2.3.0.0/ 2.2.2.0	Internet Explorer 6.0, 7.0, and 8.0	1.6.0_14

1 ActiveX is only supported on the Internet Explorer browser. 2 Java version 1.5 is the minimum version required for Java Applet support. 3 Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English. 4 Web login is not supported on 64-bit versions of Internet Explorer. 5 If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine. 6 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 7 To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

Table 5 Windows XP Tablet PC, SP2, SP3 

Supported Cisco NAC Appliance Versions					Supported Browsers1	Java Version 2
Cisco NAC Agent 3	Web Login 4		Web Agent 5
	CAM/ CAS	L3 MAC (ActiveX/ Applet)	Version	Web Agent (ActiveX/Applet) 6 ,7
4.9.0.33 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Firefox 3.6	1.6.0_17
					Internet Explorer 8.0 and 9.0
4.8.3.1 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Firefox 3.6	1.6.0_17
					Internet Explorer 8.0 and 9.0
4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.6	1.6.0_17
					Internet Explorer 8.0 and 9.0
4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(1)	2.8.0.0 / 2.8.0.0	4.8.1.4	2.8.0.0 / 2.8.0.0	Firefox 3.6	1.6.0_17
					Internet Explorer 8.0
4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8	2.7.0.0 / 2.7.0.0	4.8.0.4	2.7.0.0 / 2.7.0.0	Firefox 3.6	1.6.0_17
					Internet Explorer 8.0
4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.6	1.6.0_17
					Internet Explorer 8.0 and 9.0
4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(3)	2.7.0.0 / 2.7.0.0	4.7.4.1 4.7.3.1	2.7.0.0 / 2.7.0.0	Firefox 3.6	1.6.0_17
					Internet Explorer 8.0
4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(2)	2.7.0.0 / 2.6.0.0	4.7.2.5	2.7.0.0 / 2.6.0.0	Firefox 3.6	1.6.0_17
					Internet Explorer 8.0
4.7.1.511 4.7.1.15 4.6.2.113	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Firefox 3.0.3 Firefox 3.5.1	1.6.0_17
					Internet Explorer 8
4.7.1.511 4.7.1.15 4.6.2.113	4.7(0)	2.3.0.0/ 2.2.2.0	4.7.0	2.3.0.0/ 2.2.2.0	Internet Explorer 6.0, 7.0	1.6.0_14
4.7.1.511 4.7.1.15 4.6.2.113	4.6(1)	2.3.0.0/ 2.2.2.0	4.6.0	2.3.0.0/ 2.2.2.0	Internet Explorer 6.0, 7.0, and 8.0	1.6.0_14

1 ActiveX is only supported on the Internet Explorer browser. 2 Java version 1.5 is the minimum version required for Java Applet support. 3 Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English. 4 Web login is not supported on 64-bit versions of Internet Explorer. 5 If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine. 6 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 7 To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

Table 6 Windows XP Home, SP2 

Supported Cisco NAC Appliance Versions					Supported Browsers1	Java Version 2
Cisco NAC Agent 3	Web Login 4		Web Agent 5
	CAM/ CAS	L3 MAC (ActiveX/ Applet)	Version	Web Agent (ActiveX/Applet) 6 ,7
4.9.0.33 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.9	2.9.0.0 / 3.4.0.0	4.8.2.1	2.9.0.0 / 3.4.0.0	Firefox 3.0.17 Firefox 3.5.7	1.6.0_17
					Internet Explorer 6.0, 7.0, 8.0, and 9.0
4.8.3.1 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Firefox 3.0.17 Firefox 3.5.7	1.6.0_17
					Internet Explorer 6.0, 7.0, 8.0, and 9.0
4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.0.17 Firefox 3.5.7	1.6.0_17
					Internet Explorer 6.0, 7.0, 8.0, and 9.0
4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(1)	2.8.0.0 / 2.8.0.0	4.8.1.4	2.8.0.0 / 2.8.0.0	Firefox 3.0.17 Firefox 3.5.7	1.6.0_17
					Internet Explorer 6.0, 7.0, and 8.0
4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8	2.7.0.0 / 2.7.0.0	4.8.0.4	2.7.0.0 / 2.7.0.0	Firefox 3.0.17 Firefox 3.5.7	1.6.0_17
					Internet Explorer 6.0, 7.0, and 8.0
4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.5.7	1.6.0_17
					Internet Explorer 6.0, 7.0, 8.0, and 9.0
4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(3)	2.7.0.0 / 2.7.0.0	4.7.4.1 4.7.3.1	2.7.0.0 / 2.7.0.0	Firefox 3.5.7	1.6.0_17
					Internet Explorer 6.0, 7.0, and 8.0
4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(2)	2.7.0.0 / 2.6.0.0	4.7.2.5	2.7.0.0 / 2.6.0.0	Firefox 3.0.17 Firefox 3.5.7	1.6.0_17
					Internet Explorer 6.0, 7.0, and 8.0
4.7.1.511 4.7.1.15 4.6.2.113	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Firefox 2.0.0.27 Firefox 3.5.5	1.5.0_13 1.6.0_17
					Internet Explorer 6.0, 7.0, and 8.0
4.7.1.511 4.7.1.15 4.6.2.113	4.7(0)	2.3.0.0/ 2.2.2.0	—	—	Internet Explorer 6.0, 7.0	1.5.0_13
					Firefox 2.0.0.27
4.7.1.511 4.7.1.15 4.6.2.113	4.6(1)	2.3.0.0/ 2.2.2.0	—	—	Firefox 2.0.0.27	1.5.0_13

1 ActiveX is only supported on the Internet Explorer browser. 2 Java version 1.5 is the minimum version required for Java Applet support. 3 Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English. 4 Web login is not supported on 64-bit versions of Internet Explorer. 5 If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine. 6 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 7 To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

Table 7 Windows XP Professional SP2, SP3 

Supported Cisco NAC Appliance Versions					Supported Browsers1	Java Version 2
Cisco NAC Agent 3	Web Login 4		Web Agent 5
	CAM/ CAS	L3 MAC (ActiveX/ Applet)	Version	Web Agent (ActiveX/Applet) 6 ,7
4.9.0.33 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Firefox 3.0.17 Firefox 3.5.7 Firefox 3.6	1.6.0_17 1.6_0_18 8
					Internet Explorer 6.0, 7.0, 8.0, and 9.0
4.8.3.1 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Firefox 3.0.17 Firefox 3.5.7 Firefox 3.6	1.6.0_17 1.6_0_18 8
					Internet Explorer 6.0, 7.0, 8.0, and 9.0
4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.0.17 Firefox 3.5.7 Firefox 3.6	1.6.0_17 1.6_0_18 8
					Internet Explorer 6.0, 7.0, 8.0, and 9.0
4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(1)	2.8.0.0 / 2.8.0.0	4.8.1.4	2.8.0.0 / 2.8.0.0	Firefox 3.0.17 Firefox 3.5.7 Firefox 3.6	1.6.0_17 1.6_0_18 8
					Internet Explorer 6.0, 7.0, and 8.0
4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8	2.7.0.0 / 2.7.0.0	4.8.0.4	2.7.0.0 / 2.7.0.0	Firefox 3.0.17 Firefox 3.5.7 Firefox 3.6	1.6.0_17 1.6_0_18 8
					Internet Explorer 6.0, 7.0, and 8.0
4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.5.7 Firefox 3.6	1.6.0_17 1.6_0_18 8
					Internet Explorer 6.0, 7.0, 8.0, and 9.0
4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(3)	2.7.0.0 / 2.7.0.0	4.7.4.1 4.7.3.1	2.7.0.0 / 2.7.0.0	Firefox 3.5.7 Firefox 3.6	1.6.0_17 1.6_0_18 8
					Internet Explorer 6.0, 7.0, and 8.0
4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(2)	2.7.0.0 / 2.6.0.0	4.7.2.5	2.7.0.0 / 2.6.0.0	Firefox 3.0.17 Firefox 3.5.7 Firefox 3.6	1.6.0_17 1.6_0_18 8
					Internet Explorer 6.0, 7.0, and 8.0
4.7.1.511 4.7.1.15 4.6.2.113	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Firefox 3.0.3 Firefox 3.5.1 Firefox 3.5.5	1.6.0_17
					Internet Explorer 6.0, 7.0, and 8.0
4.7.1.511 4.7.1.15 4.6.2.113	4.7(0)	2.3.0.0/ 2.2.2.0	4.7.0	2.3.0.0/ 2.2.2.0	Firefox 3.0.3	1.6.0_11
					Internet Explorer 6.0, 7.0, and 8.0	1.6.0_14
4.7.1.511 4.7.1.15 4.6.2.113	4.6(1)	2.3.0.0/ 2.2.2.0	4.6.0	2.3.0.0/ 2.2.2.0	Firefox 3.0.3	1.6.0_11
					Internet Explorer 6.0, 7.0, and 8.0	1.6.0_14

1 ActiveX is only supported on the Internet Explorer browser. 2 Java version 1.5 is the minimum version required for Java Applet support. 3 Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English. 4 Web login is not supported on 64-bit versions of Internet Explorer. 5 If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine. 6 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 7 To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level. 8 Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 8 Windows XP Professional x64, SP2 

Supported Cisco NAC Appliance Versions					Supported Browsers1	Java Version 2
Cisco NAC Agent 3	Web Login 4		Web Agent 5
	CAM/ CAS	L3 MAC (ActiveX/ Applet)	Version	Web Agent (ActiveX/Applet) 6 ,7
4.9.0.33 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Firefox 3.0.17 Firefox 3.5.7 Firefox 3.6	1.6.0_17 1.6_0_18 8
					Internet Explorer 7.0, 8.0, and 9.0
4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.0.17 Firefox 3.5.7 Firefox 3.6	1.6.0_17 1.6_0_18 8
					Internet Explorer 7.0, 8.0, and 9.0
4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(1)	2.8.0.0 / 2.8.0.0	4.8.1.4	2.8.0.0 / 2.8.0.0	Firefox 3.0.17 Firefox 3.5.7 Firefox 3.6	1.6.0_17 1.6_0_18 8
					Internet Explorer 7.0, 8.0
4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8	2.7.0.0 / 2.7.0.0	4.8.0.4	2.7.0.0 / 2.7.0.0	Firefox 3.0.17 Firefox 3.5.7 Firefox 3.6	1.6.0_17 1.6_0_18 8
					Internet Explorer 7.0, 8.0
4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.5.7 Firefox 3.6	1.6.0_17 1.6_0_18 8
					Internet Explorer 7.0, 8.0, and 9.0
4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(3)	2.7.0.0 / 2.7.0.0	4.7.4.1 4.7.3.1	2.7.0.0 / 2.7.0.0	Firefox 3.5.7 Firefox 3.6	1.6.0_17 1.6_0_18 8
					Internet Explorer 7.0, 8.0
4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(2)	2.7.0.0 / 2.6.0.0	4.7.2.5	2.7.0.0 / 2.6.0.0	Firefox 3.0.17 Firefox 3.5.7 Firefox 3.6	1.6.0_17 1.6_0_18 8
					Internet Explorer 7.0, 8.0
4.7.1.511 4.7.1.15 4.6.2.113	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Firefox 3.0.3 Firefox 3.5.1 Firefox 3.5.5	1.6.0_17
					Internet Explorer 6.0, 7.0, and 8.0
4.7.1.511 4.7.1.15 4.6.2.113	4.7(0)	2.3.0.0/ 2.2.2.0	4.7.0	2.3.0.0/ 2.2.2.0	Firefox 3.0.3	1.6.0_14
					Internet Explorer 6.0, 7.0, and 8.0
4.7.1.511 4.7.1.15 4.6.2.113	4.6(1)	2.3.0.0/ 2.2.2.0	4.6.0	2.3.0.0/ 2.2.2.0	Firefox 3.0.3	1.6.0_14
					Internet Explorer 6.0, 7.0, and 8.0

1 ActiveX is only supported on the Internet Explorer browser. 2 Java version 1.5 is the minimum version required for Java Applet support. 3 Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English. 4 Web login is not supported on 64-bit versions of Internet Explorer. 5 If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine. 6 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 7 To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level. 8 Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 9 Windows Vista SP1, SP2 ¹

Supported Cisco NAC Appliance Versions					Supported Browsers2	Java Version 3
Cisco NAC Agent 4	Web Login 5		Web Agent 6
	CAM/ CAS	L3 MAC (ActiveX/ Applet)	Version	Web Agent (ActiveX/Applet) 7 ,8
4.9.0.33 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 9
					Internet Explorer 7.0, 8.0, and 9.0
4.8.3.1 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 9
					Internet Explorer 7.0, 8.0, and 9.0
4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 9
					Internet Explorer 7.0, 8.0, and 9.0
4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(1)	2.8.0.0 / 2.8.0.0	4.8.1.4	2.8.0.0 / 2.8.0.0	Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 9
					Internet Explorer 7.0 and 8.0
4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8	2.7.0.0 / 2.7.0.0	4.8.0.4	2.7.0.0 / 2.7.0.0	Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 9
					Internet Explorer 7.0 and 8.0
4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 9
					Internet Explorer 7.0, 8.0, and 9.0
4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(3)	2.7.0.0 / 2.7.0.0	4.7.4.1 4.7.3.1	2.7.0.0 / 2.7.0.0	Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 9
					Internet Explorer 7.0 and 8.0
4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(2)	2.7.0.0 / 2.6.0.0	4.7.2.5	2.7.0.0 / 2.6.0.0	Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 9
					Internet Explorer 7.0 and 8.0
4.7.1.511 4.7.1.15 4.6.2.113	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Firefox 3.0.3	1.6.0_11 1.6.0_14
					Internet Explorer 7.0 and 8.0
4.7.1.511 4.7.1.15 4.6.2.113	4.7(0)	2.3.0.0/ 2.2.2.0	4.7.0	2.3.0.0/ 2.2.2.0	Firefox 3.0.3	1.6.0_11
					Internet Explorer 7.0 and 8.0	1.6.0_14
4.7.1.511 4.7.1.15 4.6.2.113	4.6(1)	2.3.0.0/ 2.2.2.0	4.6.0	2.3.0.0/ 2.2.2.0	Firefox 3.0.3	1.6.0_11
					Internet Explorer 7.0 and 8.0	1.6.0_14

1 Includes all Vista operating systems (Business, Home, Ultimate, Enterprise), both Service Pack1 and Service Pack 2. In OOB modes with IP refresh/renew upon successful login (for example, L3 OOB RIP), Web Login and Web Agent with Windows Vista OS requires local admin users to launch the browser as administrator. 2 ActiveX is only supported on the Internet Explorer browser. 3 Java version 1.5 is the minimum version required for Java Applet support. 4 Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English. 5 Web login is not supported on 64-bit versions of Internet Explorer. 6 If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine. 7 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 8 To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level. 9 Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 10 Windows Vista x64 SP1, SP2 ¹

Supported Cisco NAC Appliance Versions					Supported Browsers2	Java Version 3
Cisco NAC Agent 4	Web Login 5		Web Agent 6
	CAM/ CAS	L3 MAC (ActiveX/ Applet)	Version	Web Agent (ActiveX/Applet) 7 ,8
4.9.0.33 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Firefox 3.0.17 Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 9
					Internet Explorer 7.0, 8.0, and 9.0
4.8.3.1 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Firefox 3.0.17 Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 9
					Internet Explorer 7.0, 8.0, and 9.0
4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.0.17 Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 9
					Internet Explorer 7.0, 8.0, and 9.0
4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8(1)	2.8.0.0 / 2.8.0.0	4.8.1.4	2.7.0.0 / 2.7.0.0	Firefox 3.0.17 Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 9
					Internet Explorer 7.0 and 8.0
4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.8	2.7.0.0 / 2.7.0.0	4.8.0.4	2.7.0.0 / 2.7.0.0	Firefox 3.0.17 Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 9
					Internet Explorer 7.0 and 8.0
4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 9
					Internet Explorer 7.0, 8.0, and 9.0
4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(3)	2.7.0.0 / 2.7.0.0	4.7.4.1 4.7.3.1	2.7.0.0 / 2.7.0.0	Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 9
					Internet Explorer 7.0 and 8.0
4.7.2.10 4.7.1.511 4.7.1.15 4.6.2.113	4.7(2)	2.7.0.0 / 2.6.0.0	4.7.2.5	2.7.0.0 / 2.6.0.0	Firefox 3.0.17 Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 9
					Internet Explorer 7.0 and 8.0
4.7.1.511 4.7.1.15 4.6.2.113	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Firefox 3.0.3 Firefox 3.5.2	1.6.0_14
					Internet Explorer 7.0 and 8.0
4.7.1.511 4.7.1.15 4.6.2.113	4.7(0)	2.3.0.0/ 2.2.2.0	4.7.0	2.3.0.0/ 2.2.2.0	Firefox 3.0.3 Firefox 3.5.2	1.6.0_14
					Internet Explorer 7.0 and 8.0
4.7.1.511 4.7.1.15 4.6.2.113	4.6(1)	2.3.0.0/ 2.2.2.0	4.6.0	2.3.0.0/ 2.2.2.0	Firefox 3.0.3	1.6.0_14
					Internet Explorer 7.0 and 8.0

1 Includes all Vista operating systems (Business, Home, Ultimate, Enterprise), both Service Pack1 and Service Pack 2. In OOB modes with IP refresh/renew upon successful login (for example, L3 OOB RIP), Web Login and Web Agent with Windows Vista OS requires local admin users to launch the browser as administrator. 2 ActiveX is only supported on the Internet Explorer browser. 3 Java version 1.5 is the minimum version required for Java Applet support. 4 Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English. 5 Web login is not supported on 64-bit versions of Internet Explorer. 6 If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine. 7 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 8 To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level. 9 Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 11 Windows 7 Professional 

Supported Cisco NAC Appliance Versions					Supported Browsers1	Java Version 2
Cisco NAC Agent 3	Web Login 4		Web Agent 5
	CAM/ CAS	L3 MAC (ActiveX/ Applet)	Version	Web Agent (ActiveX/Applet) 6 ,7
4.9.0.33 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.3.1 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(1)	2.8.0.0 / 2.8.0.0	4.8.1.4	2.8.0.0 / 2.8.0.0	Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8	2.7.0.0 / 2.7.0.0	4.8.0.4	2.7.0.0 / 2.7.0.0	Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.7(3)	2.7.0.0 / 2.7.0.0	4.7.4.1 4.7.3.1	2.7.0.0 / 2.7.0.0	Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.2.10 4.7.1.511	4.7(2)	2.7.0.0 / 2.6.0.0	4.7.2.5	2.7.0.0 / 2.6.0.0	Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.1.511	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Internet Explorer 8.0	1.6.0_16

1 ActiveX is only supported on the Internet Explorer browser. 2 Java version 1.5 is the minimum version required for Java Applet support. 3 Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English. 4 Web login is not supported on 64-bit versions of Internet Explorer. 5 If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine. 6 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 7 To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level. 8 Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 12 Windows 7 Professional x64¹  

Supported Cisco NAC Appliance Versions					Supported Browsers2	Java Version 3
Cisco NAC Agent 4	Web Login 5		Web Agent 6
	CAM/ CAS	L3 MAC (ActiveX/ Applet)	Version	Web Agent (ActiveX/Applet) 7 ,8
4.9.0.33 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Internet Explorer 8.0 and 9.0	1.6_0_17 1.6_0_18 9
4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Internet Explorer 8.0 and 9.0	1.6_0_17 1.6_0_18 9
4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(1)	2.8.0.0 / 2.8.0.0	4.8.1.4	2.8.0.0 / 2.8.0.0	Internet Explorer 8.0	1.6_0_17 1.6_0_18 9
4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8	2.7.0.0 / 2.7.0.0	4.8.0.4	2.7.0.0 / 2.7.0.0	Internet Explorer 8.0	1.6_0_17 1.6_0_18 9
4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Internet Explorer 8.0 and 9.0	1.6_0_17 1.6_0_18 9
4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.7(3)	2.7.0.0 / 2.7.0.0	4.7.4.1 4.7.3.1	2.7.0.0 / 2.7.0.0	Internet Explorer 8.0	1.6_0_17 1.6_0_18 9
4.7.2.10 4.7.1.511	4.7(2)	2.7.0.0 / 2.6.0.0	4.7.2.5	2.7.0.0 / 2.6.0.0	Internet Explorer 8.0	1.6_0_17 1.6_0_18 9
4.7.1.511	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Internet Explorer 8.0

1 In OOB, for web login IP refresh to work on a Windows 7 64-bit system with local administrative privileges, add the CAS to the intranet zone with protected mode off. 2 ActiveX is only supported on the Internet Explorer browser. 3 Java version 1.5 is the minimum version required for Java Applet support. 4 Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English. 5 Web login is not supported on 64-bit versions of Internet Explorer. 6 If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine. 7 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 8 To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level. 9 Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 13 Windows 7 Ultimate 

Supported Cisco NAC Appliance Versions					Supported Browsers1	Java Version 2
Cisco NAC Agent 3	Web Login 4		Web Agent 5
	CAM/ CAS	L3 MAC (ActiveX/ Applet)	Version	Web Agent (ActiveX/Applet) 6 ,7
4.9.0.33 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.3.1 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(1)	2.8.0.0 / 2.8.0.0	4.8.1.4	2.8.0.0 / 2.8.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8	2.7.0.0 / 2.7.0.0	4.8.0.4	2.7.0.0 / 2.7.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.7(3)	2.7.0.0 / 2.7.0.0	4.7.4.1 4.7.3.1	2.7.0.0 / 2.7.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.2.10 4.7.1.511	4.7(2)	2.7.0.0 / 2.6.0.0	4.7.2.5	2.7.0.0 / 2.6.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.1.511	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Firefox 3.5.3	1.6.0_16
					Internet Explorer 8.0

1 ActiveX is only supported on the Internet Explorer browser. 2 Java version 1.5 is the minimum version required for Java Applet support. 3 Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English. 4 Web login is not supported on 64-bit versions of Internet Explorer. 5 If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine. 6 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 7 To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level. 8 Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 14 Windows 7 Ultimate x64 

Supported Cisco NAC Appliance Versions					Supported Browsers1	Java Version 2
Cisco NAC Agent 3	Web Login 4		Web Agent 5
	CAM/ CAS	L3 MAC (ActiveX/ Applet)	Version	Web Agent (ActiveX/Applet) 6 ,7
4.9.0.33 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.3.1 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(1)	2.8.0.0 / 2.8.0.0	4.8.1.4	2.8.0.0 / 2.8.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8	2.7.0.0 / 2.7.0.0	4.8.0.4	2.7.0.0 / 2.7.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.7(3)	2.7.0.0 / 2.7.0.0	4.7.4.1 4.7.3.1	2.7.0.0 / 2.7.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.2.10 4.7.1.511	4.7(2)	2.7.0.0 / 2.6.0.0	4.7.2.5	2.7.0.0 / 2.6.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.1.511	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Firefox 3.5.3	1.6.0_16
					Internet Explorer 8.0

1 ActiveX is only supported on the Internet Explorer browser. 2 Java version 1.5 is the minimum version required for Java Applet support. 3 Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English. 4 Web login is not supported on 64-bit versions of Internet Explorer. 5 If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine. 6 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 7 To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level. 8 Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 15 Windows 7 Enterprise 

Supported Cisco NAC Appliance Versions					Supported Browsers1	Java Version 2
Cisco NAC Agent 3	Web Login 4		Web Agent 5
	CAM/ CAS	L3 MAC (ActiveX/ Applet)	Version	Web Agent (ActiveX/Applet) 6 ,7
4.9.0.33 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Firefox 3.5.3	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.3.1 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Firefox 3.5.3	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.5.3	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(1)	2.8.0.0 / 2.8.0.0	4.8.1.4	2.8.0.0 / 2.8.0.0	Firefox 3.5.3	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8	2.7.0.0 / 2.7.0.0	4.8.0.4	2.7.0.0 / 2.7.0.0	Firefox 3.5.3	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.5.3	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.7(3)	2.7.0.0 / 2.7.0.0	4.7.4.1 4.7.3.1	2.7.0.0 / 2.7.0.0	Firefox 3.5.3	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.2.10 4.7.1.511	4.7(2)	2.7.0.0 / 2.6.0.0	4.7.2.5	2.7.0.0 / 2.6.0.0	Firefox 3.5.3	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.1.511	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Firefox 3.5.3 Firefox 3.6	1.6.0_16
					Internet Explorer 8.0

1 ActiveX is only supported on the Internet Explorer browser. 2 Java version 1.5 is the minimum version required for Java Applet support. 3 Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English. 4 Web login is not supported on 64-bit versions of Internet Explorer. 5 If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine. 6 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 7 To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level. 8 Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 16 Windows 7 Enterprise x64 

Supported Cisco NAC Appliance Versions					Supported Browsers1	Java Version 2
Cisco NAC Agent 3	Web Login 4		Web Agent 5
	CAM/ CAS	L3 MAC (ActiveX/ Applet)	Version	Web Agent (ActiveX/Applet) 6 ,7
4.9.0.33 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Firefox 3.5.3	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.3.1 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Firefox 3.5.3	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.5.3	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(1)	2.8.0.0 / 2.8.0.0	4.8.1.4	2.8.0.0 / 2.8.0.0	Firefox 3.5.3	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8	2.7.0.0 / 2.7.0.0	4.8.0.4	2.7.0.0 / 2.7.0.0	Firefox 3.5.3	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.5.3	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.7(3)	2.7.0.0 / 2.7.0.0	4.7.4.1 4.7.3.1	2.7.0.0 / 2.7.0.0	Firefox 3.5.3	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.2.10 4.7.1.511	4.7(2)	2.7.0.0 / 2.6.0.0	4.7.2.5	2.7.0.0 / 2.6.0.0	Firefox 3.5.3	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.1.511	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Firefox 3.0.15 Firefox 3.5.3	1.6.0_16
					Internet Explorer 8.0

1 ActiveX is only supported on the Internet Explorer browser. 2 Java version 1.5 is the minimum version required for Java Applet support. 3 Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English. 4 Web login is not supported on 64-bit versions of Internet Explorer. 5 If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine. 6 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 7 To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level. 8 Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 17 Windows 7 Home Premium 

Supported Cisco NAC Appliance Versions					Supported Browsers1	Java Version 2
Cisco NAC Agent 3	Web Login 4		Web Agent 5
	CAM/ CAS	L3 MAC (ActiveX/ Applet)	Version	Web Agent (ActiveX/Applet) 6 ,7
4.9.0.33 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.3.1 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(1)	2.8.0.0 / 2.8.0.0	4.8.1.4	2.8.0.0 / 2.8.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8	2.7.0.0 / 2.7.0.0	4.8.0.4	2.7.0.0 / 2.7.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.7(3)	2.7.0.0 / 2.7.0.0	4.7.4.1 4.7.3.1	2.7.0.0 / 2.7.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.2.10 4.7.1.511	4.7(2)	2.7.0.0 / 2.6.0.0	4.7.2.5	2.7.0.0 / 2.6.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.1.511	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Firefox 3.5.3	1.6.0_16
					Internet Explorer 8.0

1 ActiveX is only supported on the Internet Explorer browser. 2 Java version 1.5 is the minimum version required for Java Applet support. 3 Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English. 4 Web login is not supported on 64-bit versions of Internet Explorer. 5 If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine. 6 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 7 To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level. 8 Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 18 Windows 7 Home Premium x64 

Supported Cisco NAC Appliance Versions					Supported Browsers1	Java Version 2
Cisco NAC Agent 3	Web Login 4		Web Agent 5
	CAM/ CAS	L3 MAC (ActiveX/ Applet)	Version	Web Agent (ActiveX/Applet) 6 ,7
4.9.0.33 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.3.1 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(1)	2.8.0.0 / 2.8.0.0	4.8.1.4	2.8.0.0 / 2.8.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8	2.7.0.0 / 2.7.0.0	4.8.0.4	2.7.0.0 / 2.7.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.7(3)	2.7.0.0 / 2.7.0.0	4.7.4.1 4.7.3.1	2.7.0.0 / 2.7.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.2.10 4.7.1.511	4.7(2)	2.7.0.0 / 2.6.0.0	4.7.2.5	2.7.0.0 / 2.6.0.0	Firefox 3.5.3 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.1.511	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Firefox 3.0.15 Firefox 3.5.3	1.6.0_16
					Internet Explorer 8.0

1 ActiveX is only supported on the Internet Explorer browser. 2 Java version 1.5 is the minimum version required for Java Applet support. 3 Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English. 4 Web login is not supported on 64-bit versions of Internet Explorer. 5 If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine. 6 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 7 To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level. 8 Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 19 Windows 7 Home Basic 

Supported Cisco NAC Appliance Versions					Supported Browsers1	Java Version 2
Cisco NAC Agent 3	Web Login 4		Web Agent 5
	CAM/ CAS	L3 MAC (ActiveX/ Applet)	Version	Web Agent (ActiveX/Applet) 6 ,7
4.9.0.33 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Firefox 3.5.7	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.3.1 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Firefox 3.5.7	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.5.7	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8(1)	2.8.0.0 / 2.8.0.0	4.8.1.4	2.8.0.0 / 2.8.0.0	Firefox 3.5.7	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.8	2.7.0.0 / 2.7.0.0	4.8.0.4	2.7.0.0 / 2.7.0.0	Firefox 3.5.7	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.5.7	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.7.4.2 4.7.3.2 4.7.2.10 4.7.1.511	4.7(3)	2.7.0.0 / 2.7.0.0	4.7.4.1 4.7.3.1	2.7.0.0 / 2.7.0.0	Firefox 3.5.7	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.2.10 4.7.1.511	4.7(2)	2.7.0.0 / 2.6.0.0	4.7.2.5	2.7.0.0 / 2.6.0.0	Firefox 3.5.7	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.1.511	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Internet Explorer 8.0	1.6.0_16

1 ActiveX is only supported on the Internet Explorer browser. 2 Java version 1.5 is the minimum version required for Java Applet support. 3 Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English. 4 Web login is not supported on 64-bit versions of Internet Explorer. 5 If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine. 6 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 7 To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level. 8 Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 20 Windows 7 Starter Edition 

Supported Cisco NAC Appliance Versions					Supported Browsers1	Java Version 2
Cisco NAC Agent 3	Web Login 4		Web Agent 5
	CAM/ CAS	L3 MAC (ActiveX/ Applet)	Version	Web Agent (ActiveX/Applet) 6 ,7
4.9.0.33 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.3.1 4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.2.1 4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.8.1.5 4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10	4.8(1)	2.8.0.0 / 2.8.0.0	4.8.1.4	2.8.0.0 / 2.8.0.0	Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.8.0.35 4.7.4.2 4.7.3.2 4.7.2.10	4.8	2.7.0.0 / 2.7.0.0	4.8.0.4	2.7.0.0 / 2.7.0.0	Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.5.5 4.7.4.2 4.7.3.2 4.7.2.10	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0 and 9.0
4.7.4.2 4.7.3.2 4.7.2.10	4.7(3)	2.7.0.0 / 2.7.0.0	4.7.4.1 4.7.3.1	2.7.0.0 / 2.7.0.0	Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
4.7.2.10	4.7(2)9	2.7.0.0 / 2.6.0.0	4.7.2.5	2.7.0.0 / 2.6.0.0	Firefox 3.5.7 Firefox 3.6	1.6_0_17 1.6_0_18 8
					Internet Explorer 8.0
—	4.7(1)10	2.6.0.0/ 2.6.0.0	—	—	Internet Explorer 8.0	—

1 ActiveX is only supported on the Internet Explorer browser. 2 Java version 1.5 is the minimum version required for Java Applet support. 3 Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English. 4 Web login is not supported on 64-bit versions of Internet Explorer. 5 If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine. 6 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 7 To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level. 8 Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information. 9 You must upgrade both the CAM/CAS to Release 4.7(2) and the Cisco NAC Agent to version 4.7.2.10 to enable Cisco NAC Agent support on client machines running Windows 7 Starter Edition. 10 For Cisco NAC Appliance Release 4.7(1), the Cisco NAC Agent and Cisco NAC Web Agent do not support Windows 7 Starter Edition. Client machines with the Windows 7 Starter Edition operating system can only perform web login to verify user credentials. For more information on enabling web login for client machines running Windows 7 Starter Edition, see the "Known Issues" section of the Release Notes for Cisco NAC Appliance, Version 4.7(2).

Mac OS X Agent/Browser/Java Support

Table 21 provides CAM/CAS version, browser, and Java JRE compatibility information for Apple operating systems on Macintosh client machines.

---

Note For full 4.5 and later features (e.g. Mac OS X posture assessment), the 4.5.x.x Agent must be run with release 4.5 or later CAM/CAS.

---

Table 21 Mac OS X Agent/Browser/Java Support 

Operating System 1 (English OS Language)	Mac OS X Clean Access Agent	Web Login on CAM/CAS	Supported Browsers	Java Version 2
iOS (formerly known as iPhone OS) 1.1.1 and later3 ,4	N/A	4.9 4.8(x) 4.7(x) 4.6(1) 4.5	Safari	—
iOS 5	N/A	4.9 4.8(3) 4.8(2) 4.7(5)	Safari	—
Mac OS X 10.4.11 "Tiger"	4.8.2.591 4.8.2.590 4.8.1.584 4.8.0.569 4.7.3.522 4.7.2.507 4.7.1.506 4.7.0.2 4.6.0.3 4.5.0.0	4.8(x) 5 4.7(x) 5 4.6(1) 4.5	Google Chrome 3 and later 6 Firefox 4.0 6 Firefox 3.5.10 Firefox 3.6.6 Safari 4.1	1.5.0_19
Mac OS X 10.5.8 "Leopard"	4.9.0.649 4.8.3.594 4.8.2.591 4.8.2.590 4.8.1.584 4.8.0.569 4.7.5.531 4.7.3.522 4.7.2.507 4.7.1.506 4.7.0.2 4.6.0.3	4.9 4.8(x) 4.7(x) 4.6(1)	Google Chrome 3 and later 6 Firefox 4.0 6 Firefox 3.5.10 Firefox 3.6.6 Firefox 3.6.9 Safari 5.0 7	1.5.0_24 1.6.0_20
Mac OS X 10.6.4 "Snow Leopard" (32- and 64-bit) 8	4.9.0.649 4.8.3.594 4.8.2.591 4.8.2.590 4.8.1.584 4.8.0.569 4.7.5.531 4.7.3.522 4.7.2.507 4.7.1.506	4.9 4.8(x) 4.7(x)	Google Chrome 3 and later 6 Firefox 4.0 6 Firefox 3.5.10 Firefox 3.6.6 Safari 5.0	1.6.0_20
Mac OS X 10.7 "Lion" Mac OS X 10.7.2 "Lion"	4.9.0.649 4.8.3.594 4.8.2.591 4.7.5.531	4.9 4.8(3) 4.8(2) 4.7(5)	Google Chrome 3 and later6 Firefox 4.0 6 Firefox 3.5.10 Firefox 3.6.6 Safari 5.0 Safari 5.1	1.6.0_20

1 Mac OS X Agents do not support any Mac OS X for Power PC in 64-bit mode. 2 Java 1.5 is the minimum version required for Java Applet support. 3 Cisco NAC Appliance recognizes iOS as "Macintosh All" and supports basic web login only if Safari browser is used. Cisco has released a patch update for Cisco NAC Appliance Release 4.7(2) CASs that provides web login (no persistent or temporal Agents) support for Apple iPads. See caveat CSCtf60530 in the Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information. This patch has been integrated in Cisco NAC Appliance Release 4.7(3) and Release 4.8. 4 Devices running with iOS 4.3.2 are not detected by Cisco NAC Appliance. 5 Cisco NAC Appliance, Release 4.7(5) and 4.8(3) do not support Mac OS X 10.4.11 "Tiger" 6 Web login IP refresh does not work with Firefox 4.0 and Google Chrome 8 or later. You need to launch Firefox 4.0 or Google Chrome as Administrator with sudo. To launch Firefox as admin, use the following command and provide the admin password: sudo /Applications/Firefox.app/Contents/MacOS/firefox To launch Chrome as admin, use the following command and provide the admin password: sudo /Applications/Google\ Chrome.app/Contents/MacOS/Google\ Chrome Otherwise, you can use Firefox 3.x or Safari. 7 Web login via Safari 5.0 may not work with MAC OS 10.5.x and with Java for Mac OS X 10.5 Update 6 and Update 7. 8 The Cisco Mac OS X VPN Client version 4.9.x does not support Mac OS X 10.6 in 64-bit mode. Cisco recommends using the built-in Mac OS X 10.6 Cisco IPSec client when connecting via IPSec VPN or AnyConnect where Cisco SSL VPN is available.

Linux Browser/Java Support

Table 22 provides CAM/CAS version, Java applet, browser, and Java JRE compatibility information for Linux operating systems.

Table 22 Linux Browser/Java Support 

Operating System (English OS Language)	Web Login		Supported Browsers	Java Version 1
	CAM/ CAS	L3 MAC Address (Java Applet) 2
Fedora Core 4 (Stentz)	4.5	2.2.2.0	Mozilla Firefox 1.0.4	Sun JRE 1.4.2
Fedora 8 (Werewolf)3 , 4	4.5(1)	2.2.2.0	Mozilla Firefox 3.0.6, 2.0.0.16	Sun JRE 1.6.0_07-b06
Fedora 9 (Sulphur) 3, 4	4.5(1)	2.2.2.0	Mozilla Firefox 3.0.6	Sun JRE 1.6.0_12-b04
	4.7(1)	2.5.0.0	Mozilla Firefox 3.0b5	Sun JRE 1.6.0_16
	4.7(2)	2.6.0.0	Mozilla Firefox 3.0b5	Sun JRE 1.6.0_16
	4.7(3)	2.7.0.0	Mozilla Firefox 3.0b5	Sun JRE 1.6.0_16
	4.7(5)	3.3.0.0	Mozilla Firefox 3.0b5	Sun JRE 1.6.0_16
	4.8	2.7.0.0	Mozilla Firefox 3.0b5	Sun JRE 1.6.0_16
	4.8(1)	2.8.0.0	Mozilla Firefox 3.0b5	Sun JRE 1.6.0_16
	4.8(2)	3.2.0.0	Mozilla Firefox 3.0b5	Sun JRE 1.6.0_16
	4.8(3)	3.4.0.0	Mozilla Firefox 3.0b5	Sun JRE 1.6.0_16
	4.9	3.4.0.0	Mozilla Firefox 3.0b5	Sun JRE 1.6.0_16
Fedora 10 (Cambridge)3, 4	4.5(1)	2.2.2.0	Mozilla Firefox 3.0.4	Sun JRE 1.6.0_12-b04
	4.7(1)	2.5.0.0	Mozilla Firefox 3.0.4	Sun JRE 1.6.0_16
	4.7(2)	2.6.0.0	Mozilla Firefox 3.0.4	Sun JRE 1.6.0_16
	4.7(3)	2.7.0.0	Mozilla Firefox 3.0.4	Sun JRE 1.6.0_16
	4.7(5)	3.3.0.0	Mozilla Firefox 3.0.4	Sun JRE 1.6.0_16
	4.8	2.7.0.0	Mozilla Firefox 3.0.4	Sun JRE 1.6.0_16
	4.8(1)	2.8.0.0	Mozilla Firefox 3.0.4	Sun JRE 1.6.0_16
	4.8(2)	3.2.0.0	Mozilla Firefox 3.0.4	Sun JRE 1.6.0_16
	4.8(3)	3.4.0.0	Mozilla Firefox 3.0.4	Sun JRE 1.6.0_16
	4.9	3.4.0.0	Mozilla Firefox 3.0.4	Sun JRE 1.6.0_16
Fedora 11 (Leonidas)	4.7(1)	2.5.0.0	Mozilla Firefox 3.5b4	Sun JRE 1.6.0_16
	4.7(2)	2.6.0.0	Mozilla Firefox 3.6	Sun JRE 1.6.0_18
	4.7(3)	2.7.0.0	Mozilla Firefox 3.6	Sun JRE 1.6.0_18
	4.7(5)	3.3.0.0	Mozilla Firefox 3.6	Sun JRE 1.6.0_18
	4.8	2.7.0.0	Mozilla Firefox 3.6	Sun JRE 1.6.0_18
	4.8(1)	2.8.0.0	Mozilla Firefox 3.6	Sun JRE 1.6.0_18
	4.8(2)	3.2.0.0	Mozilla Firefox 3.6	Sun JRE 1.6.0_18
	4.8(3)	3.4.0.0	Mozilla Firefox 3.6	Sun JRE 1.6.0_18
	4.9	3.4.0.0	Mozilla Firefox 3.6	Sun JRE 1.6.0_18
Ubuntu 9.04	4.7(1)	2.5.0.0	Mozilla Firefox 3.0.8	Sun JRE 1.6.0_16
	4.7(2)	2.6.0.0	Mozilla Firefox 3.0.8	Sun JRE 1.6.0_16
	4.7(3)	2.7.0.0	Mozilla Firefox 3.0.8	Sun JRE 1.6.0_16
	4.7(5)	3.3.0.0	Mozilla Firefox 3.0.8	Sun JRE 1.6.0_16
	4.8	2.7.0.0	Mozilla Firefox 3.0.8	Sun JRE 1.6.0_16
	4.8(1)	2.8.0.0	Mozilla Firefox 3.0.8	Sun JRE 1.6.0_16
	4.8(2)	3.2.0.0	Mozilla Firefox 3.0.8	Sun JRE 1.6.0_16
	4.8(3)	3.4.0.0	Mozilla Firefox 3.0.8	Sun JRE 1.6.0_16
	4.9	3.4.0.0	Mozilla Firefox 3.0.8	Sun JRE 1.6.0_16
CentOS 5.3	4.7(1)	2.5.0.0	Mozilla Firefox 3.0	Sun JRE 1.6.0_16
	4.7(2)	2.6.0.0	Mozilla Firefox 3.0.	Sun JRE 1.6.0_16
	4.7(3)	2.7.0.0	Mozilla Firefox 3.0.	Sun JRE 1.6.0_16
	4.7(5)	3.3.0.0	Mozilla Firefox 3.0.	Sun JRE 1.6.0_16
	4.8	2.7.0.0	Mozilla Firefox 3.0.	Sun JRE 1.6.0_16
	4.8(1)	2.8.0.0	Mozilla Firefox 3.0.	Sun JRE 1.6.0_16
	4.8(2)	3.2.0.0	Mozilla Firefox 3.0.	Sun JRE 1.6.0_16
	4.8(3)	3.4.0.0	Mozilla Firefox 3.0.	Sun JRE 1.6.0_16
	4.9	3.4.0.0	Mozilla Firefox 3.0.	Sun JRE 1.6.0_16

1 Java version 1.5 is the minimum version required for Java Applet support. 2 For Linux OS clients, Web Login is supported in L2/L3 IB modes, and L2 OOB mode. In L3 OOB mode, the L3 MAC Address Detection Java Applet is required to obtain the MAC address of the client and refresh the IP address when necessary. 3 To support IP refresh/renew, "#Defaults requiretty" must be commented out in the /etc/sudoers file on the Linux client. If not commented, the applet used for IP refresh/renew fails with error "sudo: sorry, you must have a tty to run sudo" if the script is called by the applet. PortBounce occurs on Fedora 8/9/10 clients during the IP Refresh after authentication. 4 Supported for root and non-root users. Tested for Cisco NAC Appliance Release 4.5(1) and 4.1(8).

Windows Clean Access Agent/Browser/Java Support

Table 23 provides CAM/CAS version, browser, and Java JRE compatibility information for web login methods as well as the pre-release 4.6(1) Clean Access Agent (version 4.5.0.0 through 4.5.2.0) and Cisco NAC Web Agent that you can install and run on Windows operating systems.

Table 23 Windows Clean Access Agent/Browser/Java Support 

Operating System (English OS Language)	Win Clean Access Agent 1	Web Login 2		Web Agent		Supported Browsers 3	Java Version 4
		CAM/ CAS	L3 MAC (ActiveX/Applet)	Version	Web Agent (ActiveX/Applet) 5
Windows 2000, SP4 6	4.5.2.0 4.5.1.0 4.5.0.0	4.5	2.0.3.0/ 2.0.3.0	4.5.0.0	2.0.3.0/ 2.0.3.0	Firefox 2.0.0.8	1.6.0_07
						Internet Explorer 6.0
Windows XP Tablet PC, SP2, SP3	4.5.2.0 4.5.1.0 4.5.0.0	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Internet Explorer 6.0, 7.0, 8.0, and 9.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Internet Explorer 6.0, 7.0, 8.0, and 9.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Internet Explorer 6.0, 7.0, 8.0, and 9.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.8(1)	2.8.0.0/ 2.8.0.0	4.8.1.4	2.8.0.0/ 2.8.0.0	Internet Explorer 6.0, 7.0, and 8.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.8	2.7.0.0/ 2.7.0.0	4.8.0.4	2.7.0.0/ 2.7.0.0	Internet Explorer 6.0, 7.0, and 8.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Internet Explorer 6.0, 7.0, 8.0, and 9.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(3)	2.7.0.0/ 2.7.0.0	4.7.3.1	2.7.0.0/ 2.7.0.0	Internet Explorer 6.0, 7.0, and 8.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(2)	2.7.0.0/ 2.6.0.0	4.7.2.5	2.7.0.0/ 2.6.0.0	Internet Explorer 6.0, 7.0, and 8.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Internet Explorer 6.0, 7.0, and 8.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(0)	2.3.0.0/ 2.2.2.0	4.7.0	2.3.0.0/ 2.2.2.0	Internet Explorer 6.0, 7.0, and 8.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.6(1)	2.3.0.0/ 2.2.2.0	4.6.0	2.3.0.0/ 2.2.2.0	Internet Explorer 6.0, 7.0, and 8.0	1.6.0_14
Windows XP Professional, SP2, SP3	4.5.2.0 4.5.1.0 4.5.0.0	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 6.0, 7.0, 8.0, and 9.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 6.0, 7.0, 8.0, and 9.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 6.0, 7.0, 8.0, and 9.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.8(1)	2.8.0.0/ 2.8.0.0	4.8.1.4	2.8.0.0/ 2.8.0.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 6.0, 7.0, and 8.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.8	2.7.0.0/ 2.7.0.0	4.8.0.4	2.7.0.0/ 2.7.0.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 6.0, 7.0, and 8.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 6.0, 7.0, 8.0, and 9.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(3)	2.7.0.0/ 2.7.0.0	4.7.3.1	2.7.0.0/ 2.7.0.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 6.0, 7.0, and 8.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(2)	2.7.0.0/ 2.6.0.0	4.7.2.5	2.7.0.0/ 2.6.0.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 6.0, 7.0, and 8.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 6.0, 7.0, and 8.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(0)	2.3.0.0/ 2.2.2.0	4.7.0	2.3.0.0/ 2.2.2.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 6.0, 7.0, and 8.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.6(1)	2.3.0.0/ 2.2.2.0	4.6.0	2.3.0.0/ 2.2.2.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 6.0, 7.0, and 8.0	1.6.0_14
Windows XP Professional x64, SP2	4.5.2.0 4.5.1.0 4.5.0.0	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 6.0, 7.0, 8.0, and 9.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 6.0, 7.0, 8.0, and 9.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 6.0, 7.0, 8.0, and 9.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.8(1)	2.8.0.0/ 2.8.0.0	4.8.1.4	2.8.0.0/ 2.8.0.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 6.0, 7.0, and 8.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.8	2.7.0.0/ 2.7.0.0	4.8.0.4	2.7.0.0/ 2.7.0.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 6.0, 7.0, and 8.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 6.0, 7.0, 8.0, and 9.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(3)	2.7.0.0/ 2.7.0.0	4.7.3.1	2.7.0.0/ 2.7.0.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 6.0, 7.0, and 8.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(2)	2.7.0.0/ 2.6.0.0	4.7.2.5	2.7.0.0/ 2.6.0.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 6.0, 7.0, and 8.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 6.0, 7.0, and 8.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(0)	2.3.0.0/ 2.2.2.0	4.7.0	2.3.0.0/ 2.2.2.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 6.0, 7.0, and 8.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.6(1)	2.3.0.0/ 2.2.2.0	4.6.0	2.3.0.0/ 2.2.2.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 6.0, 7.0, and 8.0
Windows Vista 7 SP1, SP2	4.5.2.0 4.5.1.0 4.5.0.0	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 7.0, 8.0, and 9.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 7.0, 8.0, and 9.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 7.0, 8.0, and 9.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.8(1)	2.8.0.0/ 2.8.0.0	4.8.1.4	2.8.0.0/ 2.8.0.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 7.0 and 8.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.8	2.7.0.0/ 2.7.0.0	4.8.0.4	2.7.0.0/ 2.7.0.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 7.0 and 8.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 7.0, 8.0, and 9.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(3)	2.7.0.0/ 2.7.0.0	4.7.3.1	2.7.0.0/ 2.7.0.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 7.0 and 8.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(2)	2.7.0.0/ 2.6.0.0	4.7.2.5	2.7.0.0/ 2.6.0.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 7.0 and 8.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 7.0 and 8.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(0)	2.3.0.0/ 2.2.2.0	4.7.0	2.3.0.0/ 2.2.2.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 7.0 and 8.0	1.6.0_14
	4.5.2.0 4.5.1.0 4.5.0.0	4.6(1)	2.3.0.0/ 2.2.2.0	4.6.0	2.3.0.0/ 2.2.2.0	Firefox 3.0.3	1.6.0_11
						Internet Explorer 7.0 and 8.0	1.6.0_14
Windows Vista 7 x64 SP1, SP2	4.5.2.0 8 4.5.1.0 4.5.0.0	4.9	2.9.0.0 / 3.4.0.0	4.9.0.20	2.9.0.0 / 3.4.0.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 7.0, 8.0, and 9.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.8(3)	2.9.0.0 / 3.4.0.0	4.8.3.1	2.9.0.0 / 3.4.0.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 7.0, 8.0, and 9.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.8(2)	2.9.0.0 / 3.2.0.0	4.8.2.1	2.9.0.0 / 3.2.0.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 7.0, 8.0, and 9.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.8(1)	2.8.0.0/ 2.8.0.0	4.8.1.4	2.8.0.0/ 2.8.0.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 7.0 and 8.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.8	2.7.0.0/ 2.7.0.0	4.8.0.4	2.7.0.0/ 2.7.0.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 7.0 and 8.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(5)	2.9.0.0 / 3.3.0.0	4.7.5.5	2.9.0.0 / 3.3.0.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 7.0, 8.0, and 9.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(3)	2.7.0.0/ 2.7.0.0	4.7.3.1	2.7.0.0/ 2.7.0.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 7.0 and 8.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(2)	2.7.0.0/ 2.6.0.0	4.7.2.5	2.7.0.0/ 2.6.0.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 7.0 and 8.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(1)	2.6.0.0/ 2.6.0.0	4.7.1.504	2.6.0.0/ 2.6.0.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 7.0 and 8.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.7(0)	2.3.0.0/ 2.2.2.0	4.7.0	2.3.0.0/ 2.2.2.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 7.0 and 8.0
	4.5.2.0 4.5.1.0 4.5.0.0	4.6(1)	2.3.0.0/ 2.2.2.0	4.6.0	2.3.0.0/ 2.2.2.0	Firefox 3.0.3	1.6.0_14
						Internet Explorer 7.0 and 8.0

1 The Clean Access Agent only fully supports authentication/posture assessment/remediation on 32-bit operating systems. Any client OS not listed is not supported, even if the Agent can be installed on the client (e.g. Embedded XP is not supported). 2 Web login is not supported on 64-bit versions of Internet Explorer. 3 ActiveX is only supported on the Internet Explorer browser. 4 Java version 1.5 is the minimum version required for Java Applet support. 5 The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems. 6 Agent (4.1.3.0 or later) login to Windows 2000 system with Local DB authentication to CAM and requirements configured requires a system restart. See the Release Notes for Cisco NAC Appliance, Version 4.5 for details. 7 Includes all Vista operating systems (Business, Home, Ultimate, Enterprise), both Service Pack1 and Service Pack 2. 8 Clean Access Agent/Cisco NAC Web Agent support authentication only on 64-bit Windows systems. The Agent does not perform posture assessment or Nessus scanning. To support x64 Windows, the CAM/CAS/Agent must all be running same release (e.g. 4.5/4.5.0.0).

Cisco NAC Appliance Agent/AD Server Compatibility for AD SSO

Cisco NAC Appliance supports Windows Single Sign-On (SSO) on Windows 7/Vista/XP/2000 client machines and Active Directory on Windows 2000/2003/2008 Servers, as shown in Table 24.

---

Note Cisco NAC Web Agent does not support SSO functions.

---

Table 24 Cisco NAC Appliance Support for Windows Active Directory SSO

CAM/CAS Version	Active Directory (AD) Servers 1	ktpass.exe Version Required	Client Machines 2
FIPS 140-2 Compliant
4.9	Windows 2008 Server Enterprise R2 SP1 (64-bit ) Windows 2008 Server Enterprise SP1 (32-bit) 3 , 4	6.1.7600.16385 6.0.6002.18005 6.0.6001.18000	Windows 7 Windows Vista
4.8 4.7(0)	Windows 2008 Server Enterprise SP1 (32-bit) 3, 4	6.0.6002.18005 6.0.6001.18000	Windows 7 Windows Vista
Non-FIPS
4.9 4.8(3) 4.8(2) 4.8(1) 4.8	Windows 2008 Datacenter SP2 (32bit)	6.0.6002.18005 (32-bit)	•Windows XP
	Windows 2008 Server Standard SP2 (32- and 64-bit)	6.0.6002.18005 (32-bit) 6.0.6001.18000 (64-bit)	•Windows 7 Professional5 •Windows 7 Ultimate5 •Windows 7 Enterprise5 •Windows Vista6 •Windows XP
	Windows 2008 Server Standard R2 (64-bit)	6.1.7600.16385
	Windows 2008 Server Enterprise R2	6.1.7600.16385
	Windows 2008 Server Enterprise SP2 (32- and 64-bit)	6.0.6002.18005
	Windows 2008 Server Enterprise SP1 (32-bit) 3,4	6.0.6001.18000
	•Windows 2003 Server Enterprise SP1 •Windows 2003 Server Enterprise SP2 •Windows 2003 Server Enterprise SP2 R2 •Windows 2003 Server Standard SP2 R2	5.2.3790.1830
	•Windows 2003 Server Enterprise SP1 •Windows 2003 Server Enterprise SP2 •Windows 2003 Server Enterprise SP2 R2 •Windows 2003 Server Standard SP17 •Windows 2003 Server Standard SP2 R2	5.2.3790.0
4.7(5)	Windows 2008 Server Enterprise R2	6.1.7600.16385	•Windows 7 Professional 5 •Windows 7 Ultimate 5 •Windows 7 Enterprise 5 •Windows Vista 6 •Windows XP •Windows 2000 SP4
	Windows 2008 Server Enterprise SP2 (32- and 64-bit)	6.0.6002.18005
	Windows 2008 Server Enterprise SP1 (32-bit) 3,4	6.0.6001.18000
	Windows 2008 Server Standard R2 (64-bit)	6.1.7600.16385
	•Windows 2003 Server Enterprise SP1 •Windows 2003 Server Enterprise SP2 •Windows 2003 Server Enterprise SP2 R2 •Windows 2003 Server Standard SP2 R2	5.2.3790.1830
	•Windows 2003 Server Enterprise SP1 •Windows 2003 Server Enterprise SP2 •Windows 2003 Server Enterprise SP2 R2 •Windows 2003 Server Standard SP17 •Windows 2003 Server Standard SP2 R2	5.2.3790.0
4.7(3) 4.7(2)	Windows 2008 Server Enterprise R2	6.1.7600.16385	•Windows 7 Professional 5 •Windows 7 Ultimate 5 •Windows 7 Enterprise 5 •Windows Vista 6 •Windows XP •Windows 2000 SP4
	Windows 2008 Server Enterprise SP2 (32- and 64-bit)	6.0.6002.18005
	Windows 2008 Server Enterprise SP1 (32-bit) 3,4	6.0.6001.18000
	•Windows 2003 Server Enterprise SP1 •Windows 2003 Server Enterprise SP2 •Windows 2003 Server Enterprise SP2 R2 •Windows 2003 Server Standard SP2 R2	5.2.3790.1830
	•Windows 2003 Server Enterprise SP1 •Windows 2003 Server Enterprise SP2 •Windows 2003 Server Enterprise SP2 R2 •Windows 2003 Server Standard SP17 •Windows 2003 Server Standard SP2 R2	5.2.3790.0
4.7(1)	Windows 2008 Server Enterprise SP2 (32- and 64-bit)	6.0.6002.18005	•Windows 7 Professional 5 •Windows 7 Ultimate 5 •Windows 7 Enterprise 5 •Windows Vista 6 •Windows XP •Windows 2000 SP4
	Windows 2008 Server Enterprise SP1 (32-bit) 3,4	6.0.6001.18000
	•Windows 2003 Server Enterprise SP1 •Windows 2003 Server Enterprise SP2 •Windows 2003 Server Enterprise SP2 R2 •Windows 2003 Server Standard SP2 R2	5.2.3790.1830
	•Windows 2003 Server Enterprise SP1 •Windows 2003 Server Enterprise SP2 •Windows 2003 Server Enterprise SP2 R2 •Windows 2003 Server Standard SP17 •Windows 2003 Server Standard SP2 R2	5.2.3790.0
4.7(0) 4.6(1) 4.5(1) 4.1(8)	Windows 2008 Server Enterprise SP1 (32-bit) 3,4	6.0.6001.18000	•Windows Vista •Windows XP Professional SP2, SP3 •Windows 2000 SP4 •Windows 7 Ultimate SP0 •Windows XP Pro SP3 •Windows Vista Business SP2
4.7(0) 4.6(1) 4.5(x) 4.1(8) 4.1(6) 4.1(3)+	•Windows 2000 Server SP4 •Windows 2003 Server Enterprise SP1 •Windows 2003 Server Enterprise SP2 •Windows 2003 Server Enterprise SP2 R2 •Windows 2003 Server Standard SP17 •Windows 2003 Server Standard SP2 R2	5.2.3790.0

1 64-bit versions of Windows 2003 Enterprise are not supported. 2 AD SSO requires the Cisco NAC Agent to be installed on client systems (for example, you cannot use a Linux Kerberos client for AD SSO with Cisco NAC Appliance.) 3 Single Domain AD SSO is supported on Windows 2008 Enterprise SP1 (32-bit). 4 To support AD SSO on the Windows 2008 Server SP1, you must: - Apply Microsoft Windows Hotfix KB951191 (http://support.microsoft.com/kb/951191) - Use the native Windows 2008 KTPass tool - (Optional) Issue the KTPass command using a slash (/) instead of a dash (-), as instructed in the Microsoft TechNet support page (http://technet.microsoft.com/en-us/library/cc753771.aspx) The following illustrates an example command: C:\Program Files\Support Tools> ktpass.exe /princ sanac/TestAD01.testdom.com@TESTDOM.COM /mapuser sanac /pass 123456sS /out c:\casuser.keytab /ptype KRB5_NT_PRINCIPAL +DesOnly For additional information, refer to the "Configuring Active Directory Single Sign-On (AD SSO)" chapter of the Cisco NAC Appliance - Clean Access Server Configuration Guide, Release 4.7(1). See also caveat CSCsy45780 for further details. 5 If the AD system is based on an upgrade from Windows Server 2003, you must raise the domain functionality to Windows Server 2008 level for Cisco NAC appliance to perform SSO on Windows 7 clients. Without this you will not be able to automatically login to the Cisco NAC Appliance network. 6 Users logging into Cisco NAC Appliance via AD SSO must be running Windows Vista or Windows 7 and have one of the supported Cisco NAC Agent versions (4.7.1.15 or 4.8.0.35) installed on their client machine in order to remain FIPS-compliant. Windows XP clients performing AD SSO do not conform to FIPS 140-2 compliance requirements. 7 Windows 2003 Standard without SP1 is not supported.

Cisco NAC Agent Localized Language Support

Cisco NAC Agent version 4.6.2.113 and later provides native localization support of user-facing dialog text and messages. The Agent determines the correct language template based on the local computer Locale (under Control Panel > Regional and Language Options), unless you explicitly disable this function by setting the "Locale" parameter in the Agent configuration XML file. The Agent also provides MultiByte Character Support (MBCS) for posture assessment and remediation on "double-byte" language operating systems. The following languages are supported:."

Catalan	English	Italian	Serbian (Cyrillic)
Chinese (Simplified)	Finnish	Japanese	Serbian (Latin)
Chinese (Traditional)	French	Korean	Spanish
Czech	French Canadian	Norwegian	Swedish
Danish	German	Portuguese	Turkish
Dutch	Hungarian	Russian

---

Note If you use the latest version of the Cisco NAC Agent, but leave your CAM/CAS at release 4.5(1) or earlier, Agent connect-time information (e.g. remediation requirement names and descriptions) is English-only—users lose the advantage of the native operating system localization support available to Cisco NAC Agent users who are logging in to a 4.6(1) and later CAM/CAS network.

---

Clean Access Agent Localized Language Template Support

The Clean Access Agent determines the correct language template based on the local computer Locale (under Control Panel > Regional and Language Options). Agent language template support only controls what the viewer sees after the Agent is installed; it does not include support for different client operating systems for the Agent Installer or for AV/AS products.

Version 4.5.x.x of the Clean Access Agent supports the following localized language templates:

Catalan	Finnish	International English	Serbian
Czech	French	Italian	Spanish
Danish	French (Canada)	Norwegian	Swedish
Dutch	German	Portuguese	Turkish
English	Hungarian	Russian

---

Note For the Russian localized template, the Agent must run on Russian Windows to be able display all characters correctly.

---

Supported OS Locales

All languages supported for language templates are also supported for OS Locales. Japanese is also supported as an OS Locale. With OS Locale support, the Clean Access Agent installs/authenticates on the Windows language version (e.g. German Windows or Japanese Windows) but displays all information and instructions in English.

---

Note For details on the Clean Access Agent for Release 4.1(x) and earlier, refer to Supported Hardware and System Requirements for Cisco NAC Appliance (Cisco Clean Access).

---