Support Information for Cisco NAC Appliance Agents, Release 4.5 and Later

Table Of Contents

Support Information for Cisco NAC Appliance Agents, Release 4.5 and Later

Cisco NAC Appliance Agent System Requirements

Cisco NAC Appliance Agent/Server Version Compatibility

Cisco NAC Agent Interoperability Between NAC Appliance and Identity Services Engine (ISE)

Cisco NAC Appliance Agent/OS/Browser Support Matrix

Cisco NAC Windows Agent/Browser/Java Support

Mac OS X Agent/Browser/Java Support

Linux Browser/Java Support

Windows Clean Access Agent/Browser/Java Support

Cisco NAC Appliance Agent/AD Server Compatibility for AD SSO

Cisco NAC Agent Localized Language Support

Clean Access Agent Localized Language Template Support

Supported OS Locales

Support Information for Cisco NAC Appliance Agents, Release 4.5 and Later

Revised: March 25, 2013, OL-18184-01

This document provides the following information for Cisco NAC Appliance Release 4.5 and later:

•Cisco NAC Appliance Agent System Requirements

•Cisco NAC Appliance Agent/Server Version Compatibility

•Cisco NAC Appliance Agent/OS/Browser Support Matrix

•Cisco NAC Appliance Agent/AD Server Compatibility for AD SSO

•Cisco NAC Agent Localized Language Support

•Clean Access Agent Localized Language Template Support

Cisco NAC Appliance Agent System Requirements

Table 1 Minimum Requirements for Cisco NAC Appliance Agents

Cisco NAC Appliance Agent

Required Hard Drive Space

Cisco NAC Agent (Windows)

15 MB

Clean Access Agent (Windows)

10 MB

Mac OS X Clean Access Agent

Cisco NAC Web Agent (temporal)

Cisco NAC Appliance Agent/Server Version Compatibility

Table 2 shows Clean Access Server and Agent compatibility between CAM/CAS releases and Agent versions for Windows and Mac OS X client operating systems. Agent client versions listed as compatible can perform basic login/logout for the CAM/CAS version listed and provide the minimum features available for that Agent version or CAM/CAS version (whichever is lower).

The AV/AS support available is determined by the version of the Agent on the client as well as the version of the Cisco NAC Agent Setup or Clean Access Agent Setup/Patch (upgrade) file uploaded to the CAM. For example:

•4.5(x) CAM/CAS with 4.5.0.0 Agent Setup file and 4.5.0.0 Agent Patch file provides 4.1.2.2 Agent AV/AS support for 4.1.2.2 clients.

•4.6(1) CAM/CAS with 4.5.1.0 Agent Installation file provides 4.5.1.0 Agent AV/AS support for 4.5.1.0 clients.

•4.5(1) CAM/CAS with 4.6.2.113 Agent Installation file provides 4.6.2.113 Agent AV/AS support for 4.6.2.113 clients, but the Agent must operate as an English-only entity—you cannot take advantage of the native operating system localization support available to Cisco NAC Agent users who are logging in to a 4.6(1) CAM/CAS network.

•4.7(0) FIPS 140-2 compliant CAM/CAS with the 4.7.1.15 Agent Installation file provides 4.7.1.15 Agent AV/AS support for Windows XP/Vista client machines.

•4.7(1) (non-FIPS) CAM/CAS with the 4.7.1.511 Agent Installation file provides 4.7.1.511 Agent AV/AS support for Windows 2000/XP/Vista/7 client machines.

Note The 4.7.1.511 Agent does not provide support for client machines with Windows 7 Starter Edition.

•4.7(2) (non-FIPS) CAM/CAS with the 4.7.2.10 Agent Installation file provides 4.7.2.10 Agent AV/AS support for Windows 2000/XP/Vista/7 client machines.

•4.7(3) CAM/CAS with 4.7.3.2 Agent Installation file provides 4.7.3.2 Agent AV/AS support for Windows 2000/XP/Vista/7 client machines.

•4.7(3) CAM/CAS with 4.7.4.2 Agent Installation file provides 4.7.4.2 Agent AV/AS support for Windows 2000/XP/Vista/7 client machines.

•4.7(5) CAM/CAS with 4.7.5.5 Agent Installation file provides AV/AS support for Windows 2000/XP/Vista/7 client machines.

•4.7(5) CAM/CAS with 4.7.5.531 Agent Installation file provides AV/AS support for Mac OS X 10.7 "Lion" client machines.

•4.8 FIPS 140-2 compliant CAM/CAS with 4.8.0.35 Agent Installation file provides 4.8.0.35 Agent AV/AS support for Windows XP/Vista/7 client machines.

Note For NAC Appliance Release 4.8, the File Distribution requirement type works only when the Agent version is the latest (4.8.0.35). If you are using CAM/CAS version 4.8 with an Agent version earlier than 4.8.0.35, then either use the Link Distribution requirement or upgrade the Agent to the latest version to use the File Distribution. To know more about File Distribution, see the "Configuring Agent-Based Posture Assessment" section in Cisco NAC Appliance - Clean Access Manager Configuration Guide, Release 4.8(3).

•4.8(1) CAM/CAS with 4.8.1.5 Agent Installation file provides 4.8.1.5 Agent AV/AS support for Windows XP/Vista/7 client machines.

•4.8(2) CAM/CAS with 4.8.2.1 Agent Installation file provides 4.8.2.1 Agent AV/AS support for Windows XP/Vista/7 client machines.

•4.8(2) CAM/CAS with 4.8.2.591 Agent Installation file provides AV/AS support for Mac OS X 10.7 "Lion" client machines.

•4.8(3) CAM/CAS with 4.8.3.3 Agent Installation file provides 4.8.3.3 Agent AV/AS support for Windows XP/Vista/7 client machines.

•4.8(3) CAM/CAS with 4.8.3.594 Agent Installation file provides AV/AS support for Mac OS X 10.8 "Mountain Lion" client machines.

•4.8(3) CAM/CAS with 4.8.3.8 Agent Installation file provides AV/AS support for Windows 8 client machines.

•4.9 FIPS 140-2 compliant CAM/CAS with 4.9.0.33 Agent Installation file provides AV/AS support for Windows XP/Vista/7 client machines.

•4.9 CAM/CAS with 4.9.0.649 Agent Installation file provides AV/AS support for Mac OS X 10.7 "Lion" client machines.

•4.9(1) CAM/CAS with 4.9.1.6 Agent Installation file provides AV/AS support for Windows XP/Vista/7 client machines.

•4.9(1) CAM/CAS with 4.9.1.682 Agent Installation file provides AV/AS support for Mac OS X 10.8 "Mountain Lion" client machines.

•4.9(1) CAM/CAS with 4.9.1.13 Agent Installation file provides AV/AS support for Windows 8 client machines.

•4.9(2) CAM/CAS with 4.9.2.7 Agent Installation file provides AV/AS support for Windows XP/Vista/7/8 client machines.

Table 2 Cisco NAC Appliance Server/Agent Compatibility

CAM/CAS Version

Cisco NAC Agent Version

Clean Access Agent Version (Windows XP/Vista/2000)

Clean Access Agent Version (Mac OS X 10.4, 10.5, 10.6, 10.7, 10.8) ¹

FIPS 140-2 Compliant²

4.9
4.8
4.7(0)

4.9.0.33
4.8.0.35
4.7.1.15

N/A

N/A

Non-FIPS

4.9(2)

4.9.2.7
4.9.1.6
4.9.0.33
4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35

4.5.2.0³
4.5.1.0
4.5.0.0

4.9.2.702
4.9.1.682
4.9.0.649
4.8.3.594
4.8.2.591
4.8.2.590
4.8.1.584
4.8.0.569

4.1.10.0
4.1.8.0
4.1.7.0
4.1.6.0
4.1.3.2

4.1.3.1

4.9(1)
4.9

4.9.1.6
4.9.0.33
4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35
4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10 ⁴
4.7.1.511⁵
4.7.1.15

4.5.2.0⁶
4.5.1.0
4.5.0.0

4.9.1.682
4.9.0.649
4.8.3.594
4.8.2.591
4.8.2.590
4.8.1.584
4.8.0.569
4.7.5.531
4.7.3.522
4.7.2.507 ⁷
4.7.1.506 ⁷4.7.0.2

4.1.10.0
4.1.8.0
4.1.7.0
4.1.6.0
4.1.3.2

4.1.3.1

4.8(3)
4.8(2)
4.8(1)
4.8
4.7(5)
4.7(3)
4.7(2)
4.7(1)
4.7(0)

4.9.1.6
4.9.0.33
4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35
4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.5.2.0
4.5.1.0
4.5.0.0

4.9.1.682
4.9.0.649
4.8.3.594
4.8.2.591
4.8.2.590
4.8.1.584
4.8.0.569
4.7.5.531
4.7.3.522
4.7.2.507
4.7.1.506
4.7.0.2

4.1.10.0
4.1.8.0
4.1.7.0
4.1.6.0
4.1.3.2

4.1.3.1

4.6(1)

4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35
4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.5.2.0
4.5.1.0
4.5.0.0

4.6.0.3

4.1.10.0
4.1.8.0
4.1.7.0
4.1.6.0
4.1.3.2

4.1.3.1

4.5(1)
4.5(0)

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113 ⁸^,⁹

4.5.2.0
4.5.1.0
4.5.0.0

4.5.0.0

4.1.10.0
4.1.8.0
4.1.7.0
4.1.6.0
4.1.3.2
4.1.2.2

4.1.3.1
4.1.2.0

4.1(8) ¹⁰4.1(6)
4.1.3.1 ¹⁰

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113 ⁸

4.5.2.0
4.5.1.0 ¹⁰4.5.0.0 ¹⁰

4.5.0.0 ¹⁰

4.1.10.0
4.1.8.0
4.1.7.0
4.1.6.0
4.1.3.2
4.1.2.2

4.1.3.1
4.1.2.0

¹Only Mac OS X Agent 4.5.0.0 and later provides posture assessment, remediation, and AV/AS support. Mac OS X Agent 4.1.2.0 provides authentication only. MAC OS X Agent 4.1.3.1 provides authentication and auto-upgrade support, and does not provide posture assessment. Mac OS X Agent version 4.1.3.1 will not be authorized to login to the network if the associated login role has any posture requirements matched with the client OS. For full 4.5 feature support (e.g. Mac OS posture), the 4.5.x.x or later Agent must be run with a release 4.5 or later CAM/CAS.

²Release 4.8 and 4.7(0) are the only certified FIPS-compliant Cisco NAC Appliance releases.

³Cisco NAC Agent version 4.5.x is not supported for download from a Release 4.6(1) CAM because the Agent installation file structure is different in Release 4.5(x) as compared to the Agents supported in Release 4.6(1). Ensure that you are using Agent version 4.5.x along with CAM/CAS version 4.5(x).

⁴Cisco NAC Agent version 4.7.2.10 along with CAM/CAS version 4.7(2) supports Windows 7 Starter Edition.

⁵Cisco NAC Agent version 4.7.1.511 along with CAM/CAS version 4.7(1) supports Windows 7 except the Windows 7 Starter Edition.

⁶Cisco NAC Agent version 4.5.x is not supported for download from a Release 4.6(1) CAM because the Agent installation file structure is different in Release 4.5(x) as compared to the Agents supported in Release 4.6(1). Ensure that you are using Agent version 4.5.x along with CAM/CAS version 4.5(x).

⁷Mac Agent versions 4.7.2.507 and 4.7.1.506 along with CAM/CAS version 4.7(1) and later support the Mac OS X 10.6 (Snow Leopard) operating system.

⁸When you install the Cisco NAC Agent, the Agent installer automatically detects the client operating system locale and installs to match. This can break Agent-CAM/CAS communication if the CAM/CAS are not also running release 4.6(1) or later, because the Agent does not automatically default to English-only operation on the client machine, as would be required to restore successful Agent-to-CAM/CAS communication. To work around this potential issue, the user must force the English locale on the client machine after upgrading to/installing Agent version 4.6.2.113 or later on the client machine.

⁹Cisco NAC Agent version 4.6.2.113 is not supported for download from a Release 4.5(x) CAM because the Agent installation file structure is different in Release 4.6(1) as compared to the Agents supported in Release 4.5(x). Ensure that you are using Agent version 4.6.2.113 along with CAM/CAS version 4.6(1).

¹⁰4.1(x) CAM/CAS cannot download 4.5.x.x and later Agents from Cisco Updates.

,

Cisco NAC Agent Interoperability Between NAC Appliance and Identity Services Engine (ISE)

Cisco supports different versions of the NAC Agent for integration with NAC Appliance. NAC Agent versions 4.9 and later are supported for integration with ISE. Current releases are developed to work in either environment. However, interoperability between deployments is not guaranteed. Therefore, there is no explicit interoperability support for a given NAC Agent version intended for one environment that will necessarily work in the other. If you require support for both NAC Appliance and ISE using a single NAC Agent, be sure to test the NAC Agent in your specific environment to verify compatibility.

Unless there is a specific defect or feature required for your NAC Appliance deployment, Cisco recommends deploying the most current agent certified for your ISE deployment. If an issue arises, Cisco recommends restricting the NAC Agent's use to its intended environment and contacting Cisco TAC for assistance. Cisco will be addressing this issue through the standard Cisco TAC support escalation process, but NAC Agent interoperability is not guaranteed.

The NAC Agent interoperability may be supported in future releases.

Cisco NAC Appliance Agent/OS/Browser Support Matrix

This section lists the operating systems, web browsers, and Java versions known to work with the Cisco NAC Appliance Agents, version 4.5.0.0 and later.

•Cisco NAC Windows Agent/Browser/Java Support

•Mac OS X Agent/Browser/Java Support

•Linux Browser/Java Support

•Windows Clean Access Agent/Browser/Java Support

For Web Login on all operating systems, the ActiveX/Java Applet web client used for L3 MAC address/OS detection and for OOB IP refresh/renew after posture assessment is supported for the web browsers and Java versions listed in each operating system support table.

Cisco NAC Windows Agent/Browser/Java Support

This section provides CAM/CAS version, browser, and Java JRE compatibility information for web login methods as well as the Cisco NAC Agent (version 4.6.2.113 and later) and Cisco NAC Web Agent that you can install and run on Windows operating systems.

The tables in this section list the Cisco NAC Windows Agent/Browser/Java Support for the following Operating Systems:

•Windows 2000, SP4

•Windows XP Media Center Edition, SP2, SP3

•Windows XP Tablet PC, SP2, SP3

•Windows XP Home, SP2

•Windows XP Professional SP2, SP3

•Windows XP Professional x64, SP2

•Windows Vista SP1, SP2

•Windows Vista x64 SP1, SP2

•Windows 7 Professional

•Windows 7 Professional x64

•Windows 7 Ultimate

•Windows 7 Ultimate x64

•Windows 7 Enterprise

•Windows 7 Enterprise x64

•Windows 7 Home Premium

•Windows 7 Home Premium x64

•Windows 7 Home Basic

•Windows 7 Starter Edition

•Windows 8

•Windows 8 Professional

•Windows 8 Enterprise

Table 3 Windows 2000, SP4

Supported Cisco NAC Appliance Versions

Supported Browsers¹

Java Version ²

Cisco NAC Agent ³

Web Login ⁴

Web Agent ⁵

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁶,⁷

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.0.17
Firefox 3.5.7

1.6.0_17

Internet Explorer 6.0.2, 7.0, 8.0, and 9.0

4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(3)

2.7.0.0 / 2.7.0.0

4.7.4.1
4.7.3.1

2.7.0.0 / 2.7.0.0

Firefox 3.0.17
Firefox 3.5.7

1.6.0_17

Internet Explorer 6.0.2
Internet Explorer 7

4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(2)

2.7.0.0 / 2.6.0.0

4.7.2.5

2.7.0.0 / 2.6.0.0

Firefox 3.0.17
Firefox 3.5.7

1.6.0_17

Internet Explorer 6.0.2
Internet Explorer 7

4.7.1.511
4.7.1.15
4.6.2.113

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Firefox 1.5.0.12
Firefox 3.0.3

1.5.0_01 ⁸

Internet Explorer 6.0.2
Internet Explorer 7

4.7.1.511
4.7.1.15
4.6.2.113

4.7(0)

2.3.0.0/ 2.2.2.0

4.7.0

2.3.0.0/ 2.2.2.0

Firefox 1.5.0.12

1.5.0_01

Internet Explorer 6.0

4.7.1.511
4.7.1.15
4.6.2.113

4.6(1)

2.3.0.0/ 2.2.2.0

4.6.0

2.3.0.0/ 2.2.2.0

Firefox 1.5.0.12

1.5.0_01

Internet Explorer 6.0

¹ActiveX is supported only on the 32-bit versions of Internet Explorer .

²Java version 1.5 is the minimum version required for Java Applet support.

³Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁴Web login is not supported on 64-bit versions of Internet Explorer.

⁵If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine.

⁶The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁷To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

⁸Java version 1.4.2_15 does not work for Firefox on Windows 2000, SP4 client machines.

Table 4 Windows XP Media Center Edition, SP2, SP3

Supported Cisco NAC Appliance Versions

Supported Browsers¹

Java Version ²

Cisco NAC Agent ³

Web Login ⁴

Web Agent ⁵

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁶,⁷

4.9.2.7
4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Internet Explorer 7.0, 8.0, and 9.0

1.6.0_17

4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.3

2.9.0.0 / 3.4.0.0

Internet Explorer 7.0, 8.0, and 9.0

1.6.0_17

4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15

4.9

2.9.0.0 / 3.4.0.0

4.9.0.20

2.9.0.0 / 3.4.0.0

Internet Explorer 7.0, 8.0, and 9.0

1.6.0_17

4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(3)

2.9.0.0 / 3.4.0.0

4.8.3.1

2.9.0.0 / 3.4.0.0

Internet Explorer 7.0, 8.0, and 9.0

1.6.0_17

4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(2)

2.9.0.0 / 3.2.0.0

4.8.2.1

2.9.0.0 / 3.2.0.0

Internet Explorer 7.0, 8.0, and 9.0

1.6.0_17

4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(1)

2.8.0.0 / 2.8.0.0

4.8.1.4

2.8.0.0 / 2.8.0.0

Internet Explorer 7.0 and 8.0

1.6.0_17

4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8

2.7.0.0 / 2.7.0.0

4.8.0.4

2.7.0.0 / 2.7.0.0

Internet Explorer 7.0 and 8.0

1.6.0_17

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Internet Explorer 7.0, 8.0, and 9.0

1.6.0_17

4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(3)

2.7.0.0 / 2.7.0.0

4.7.4.1
4.7.3.1

2.7.0.0 / 2.7.0.0

Internet Explorer 7.0 and 8.0

1.6.0_17

4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(2)

2.7.0.0 / 2.6.0.0

4.7.2.5

2.7.0.0 / 2.6.0.0

Internet Explorer 7.0 and 8.0

1.6.0_17

4.7.1.511
4.7.1.15
4.6.2.113

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Internet Explorer 8.0

1.6.0_17

4.7.1.511
4.7.1.15
4.6.2.113

4.7(0)

2.3.0.0/ 2.2.2.0

4.7.0

2.3.0.0/ 2.2.2.0

Internet Explorer 6.0, 7.0

1.6.0_14

4.7.1.511
4.7.1.15
4.6.2.113

4.6(1)

2.3.0.0/ 2.2.2.0

4.6.0

2.3.0.0/ 2.2.2.0

Internet Explorer 6.0, 7.0, and 8.0

1.6.0_14

¹ActiveX is supported only on the 32-bit versions of Internet Explorer .

²Java version 1.5 is the minimum version required for Java Applet support.

³Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁴Web login is not supported on 64-bit versions of Internet Explorer.

⁵If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine.

⁶The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁷To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

Table 5 Windows XP Tablet PC, SP2, SP3

Supported Cisco NAC Appliance Versions

Supported Browsers¹

Java Version ²

Cisco NAC Agent ³

Web Login ⁴

Web Agent ⁵

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁶,⁷

4.9.2.7
4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Firefox 3.6

1.6.0_17

Internet Explorer 8.0 and 9.0

4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.3

2.9.0.0 / 3.4.0.0

Firefox 3.6

1.6.0_17

Internet Explorer 8.0 and 9.0

4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15

4.9

2.9.0.0 / 3.4.0.0

4.9.0.20

2.9.0.0 / 3.4.0.0

Firefox 3.6

1.6.0_17

Internet Explorer 8.0 and 9.0

4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(3)

2.9.0.0 / 3.4.0.0

4.8.3.1

2.9.0.0 / 3.4.0.0

Firefox 3.6

1.6.0_17

Internet Explorer 8.0 and 9.0

4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(2)

2.9.0.0 / 3.2.0.0

4.8.2.1

2.9.0.0 / 3.2.0.0

Firefox 3.6

1.6.0_17

Internet Explorer 8.0 and 9.0

4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(1)

2.8.0.0 / 2.8.0.0

4.8.1.4

2.8.0.0 / 2.8.0.0

Firefox 3.6

1.6.0_17

Internet Explorer 8.0

4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8

2.7.0.0 / 2.7.0.0

4.8.0.4

2.7.0.0 / 2.7.0.0

Firefox 3.6

1.6.0_17

Internet Explorer 8.0

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.6

1.6.0_17

Internet Explorer 8.0 and 9.0

4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(3)

2.7.0.0 / 2.7.0.0

4.7.4.1
4.7.3.1

2.7.0.0 / 2.7.0.0

Firefox 3.6

1.6.0_17

Internet Explorer 8.0

4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(2)

2.7.0.0 / 2.6.0.0

4.7.2.5

2.7.0.0 / 2.6.0.0

Firefox 3.6

1.6.0_17

Internet Explorer 8.0

4.7.1.511
4.7.1.15
4.6.2.113

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Firefox 3.0.3
Firefox 3.5.1

1.6.0_17

Internet Explorer 8

4.7.1.511
4.7.1.15
4.6.2.113

4.7(0)

2.3.0.0/ 2.2.2.0

4.7.0

2.3.0.0/ 2.2.2.0

Internet Explorer 6.0, 7.0

1.6.0_14

4.7.1.511
4.7.1.15
4.6.2.113

4.6(1)

2.3.0.0/ 2.2.2.0

4.6.0

2.3.0.0/ 2.2.2.0

Internet Explorer 6.0, 7.0, and 8.0

1.6.0_14

¹ActiveX is supported only on the 32-bit versions of Internet Explorer .

²Java version 1.5 is the minimum version required for Java Applet support.

³Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁴Web login is not supported on 64-bit versions of Internet Explorer.

⁵If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine.

⁶The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁷To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

Table 6 Windows XP Home, SP2

Supported Cisco NAC Appliance Versions

Supported Browsers¹

Java Version ²

Cisco NAC Agent ³

Web Login ⁴

Web Agent ⁵

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁶,⁷

4.9.2.7
4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Firefox 3.0.17
Firefox 3.5.7

1.6.0_17

Internet Explorer 6.0, 7.0, 8.0, and 9.0

4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.3

2.9.0.0 / 3.4.0.0

Firefox 3.0.17
Firefox 3.5.7

1.6.0_17

Internet Explorer 6.0, 7.0, 8.0, and 9.0

4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15

4.9

2.9.0.0 / 3.4.0.0

4.9.0.20

2.9.0.0 / 3.4.0.0

Firefox 3.0.17
Firefox 3.5.7

1.6.0_17

Internet Explorer 6.0, 7.0, 8.0, and 9.0

4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(3)

2.9.0.0 / 3.4.0.0

4.8.3.1

2.9.0.0 / 3.4.0.0

Firefox 3.0.17
Firefox 3.5.7

1.6.0_17

Internet Explorer 6.0, 7.0, 8.0, and 9.0

4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(2)

2.9.0.0 / 3.2.0.0

4.8.2.1

2.9.0.0 / 3.2.0.0

Firefox 3.0.17
Firefox 3.5.7

1.6.0_17

Internet Explorer 6.0, 7.0, 8.0, and 9.0

4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(1)

2.8.0.0 / 2.8.0.0

4.8.1.4

2.8.0.0 / 2.8.0.0

Firefox 3.0.17
Firefox 3.5.7

1.6.0_17

Internet Explorer 6.0, 7.0, and 8.0

4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8

2.7.0.0 / 2.7.0.0

4.8.0.4

2.7.0.0 / 2.7.0.0

Firefox 3.0.17
Firefox 3.5.7

1.6.0_17

Internet Explorer 6.0, 7.0, and 8.0

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.5.7

1.6.0_17

Internet Explorer 6.0, 7.0, 8.0, and 9.0

4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(3)

2.7.0.0 / 2.7.0.0

4.7.4.1
4.7.3.1

2.7.0.0 / 2.7.0.0

Firefox 3.5.7

1.6.0_17

Internet Explorer 6.0, 7.0, and 8.0

4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(2)

2.7.0.0 / 2.6.0.0

4.7.2.5

2.7.0.0 / 2.6.0.0

Firefox 3.0.17
Firefox 3.5.7

1.6.0_17

Internet Explorer 6.0, 7.0, and 8.0

4.7.1.511
4.7.1.15
4.6.2.113

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Firefox 2.0.0.27
Firefox 3.5.5

1.5.0_13
1.6.0_17

Internet Explorer 6.0, 7.0, and 8.0

4.7.1.511
4.7.1.15
4.6.2.113

4.7(0)

2.3.0.0/ 2.2.2.0

—

—

Internet Explorer 6.0, 7.0

1.5.0_13

Firefox 2.0.0.27

4.7.1.511
4.7.1.15
4.6.2.113

4.6(1)

2.3.0.0/ 2.2.2.0

—

—

Firefox 2.0.0.27

1.5.0_13

¹ActiveX is supported only on the 32-bit versions of Internet Explorer .

²Java version 1.5 is the minimum version required for Java Applet support.

³Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁴Web login is not supported on 64-bit versions of Internet Explorer.

⁵If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine.

⁶The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁷To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

Table 7 Windows XP Professional SP2, SP3

Supported Cisco NAC Appliance Versions

Supported Browsers¹

Java Version ²

Cisco NAC Agent ³

Web Login ⁴

Web Agent ⁵

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁶,⁷

4.9.2.7
4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁸

Internet Explorer 6.0, 7.0, 8.0, and 9.0

4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.3

2.9.0.0 / 3.4.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁹

Internet Explorer 6.0, 7.0, 8.0, and 9.0

4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15

4.9

2.9.0.0 / 3.4.0.0

4.9.0.20

2.9.0.0 / 3.4.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁸

Internet Explorer 6.0, 7.0, 8.0, and 9.0

4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(3)

2.9.0.0 / 3.4.0.0

4.8.3.1

2.9.0.0 / 3.4.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁸

Internet Explorer 6.0, 7.0, 8.0, and 9.0

4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(2)

2.9.0.0 / 3.2.0.0

4.8.2.1

2.9.0.0 / 3.2.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁸

Internet Explorer 6.0, 7.0, 8.0, and 9.0

4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(1)

2.8.0.0 / 2.8.0.0

4.8.1.4

2.8.0.0 / 2.8.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁸

Internet Explorer 6.0, 7.0, and 8.0

4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8

2.7.0.0 / 2.7.0.0

4.8.0.4

2.7.0.0 / 2.7.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁸

Internet Explorer 6.0, 7.0, and 8.0

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁸

Internet Explorer 6.0, 7.0, 8.0, and 9.0

4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(3)

2.7.0.0 / 2.7.0.0

4.7.4.1
4.7.3.1

2.7.0.0 / 2.7.0.0

Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁸

Internet Explorer 6.0, 7.0, and 8.0

4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(2)

2.7.0.0 / 2.6.0.0

4.7.2.5

2.7.0.0 / 2.6.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁸

Internet Explorer 6.0, 7.0, and 8.0

4.7.1.511
4.7.1.15
4.6.2.113

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Firefox 3.0.3
Firefox 3.5.1
Firefox 3.5.5

1.6.0_17

Internet Explorer 6.0, 7.0, and 8.0

4.7.1.511
4.7.1.15
4.6.2.113

4.7(0)

2.3.0.0/ 2.2.2.0

4.7.0

2.3.0.0/ 2.2.2.0

Firefox 3.0.3

1.6.0_11

Internet Explorer 6.0, 7.0, and 8.0

1.6.0_14

4.7.1.511
4.7.1.15
4.6.2.113

4.6(1)

2.3.0.0/ 2.2.2.0

4.6.0

2.3.0.0/ 2.2.2.0

Firefox 3.0.3

1.6.0_11

Internet Explorer 6.0, 7.0, and 8.0

1.6.0_14

¹ActiveX is supported only on the 32-bit versions of Internet Explorer .

²Java version 1.5 is the minimum version required for Java Applet support.

³Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁴Web login is not supported on 64-bit versions of Internet Explorer.

⁵If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine.

⁶The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁷To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

⁸Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

⁹Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 8 Windows XP Professional x64, SP2

Supported Cisco NAC Appliance Versions

Supported Browsers¹

Java Version ²

Cisco NAC Agent ³

Web Login ⁴

Web Agent ⁵

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁶,⁷

4.9.2.7
4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁸

Internet Explorer 7.0, 8.0, and 9.0

4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.3

2.9.0.0 / 3.4.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁹

Internet Explorer 7.0, 8.0, and 9.0

4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15

4.9

2.9.0.0 / 3.4.0.0

4.9.0.20

2.9.0.0 / 3.4.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁹

Internet Explorer 7.0, 8.0, and 9.0

4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(2)

2.9.0.0 / 3.2.0.0

4.8.2.1

2.9.0.0 / 3.2.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁹

Internet Explorer 7.0, 8.0, and 9.0

4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(1)

2.8.0.0 / 2.8.0.0

4.8.1.4

2.8.0.0 / 2.8.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁹

Internet Explorer 7.0, 8.0

4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8

2.7.0.0 / 2.7.0.0

4.8.0.4

2.7.0.0 / 2.7.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁹

Internet Explorer 7.0, 8.0

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁹

Internet Explorer 7.0, 8.0, and 9.0

4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(3)

2.7.0.0 / 2.7.0.0

4.7.4.1
4.7.3.1

2.7.0.0 / 2.7.0.0

Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁹

Internet Explorer 7.0, 8.0

4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(2)

2.7.0.0 / 2.6.0.0

4.7.2.5

2.7.0.0 / 2.6.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6.0_17
1.6_0_18 ⁹

Internet Explorer 7.0, 8.0

4.7.1.511
4.7.1.15
4.6.2.113

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Firefox 3.0.3
Firefox 3.5.1
Firefox 3.5.5

1.6.0_17

Internet Explorer 6.0, 7.0, and 8.0

4.7.1.511
4.7.1.15
4.6.2.113

4.7(0)

2.3.0.0/ 2.2.2.0

4.7.0

2.3.0.0/ 2.2.2.0

Firefox 3.0.3

1.6.0_14

Internet Explorer 6.0, 7.0, and 8.0

4.7.1.511
4.7.1.15
4.6.2.113

4.6(1)

2.3.0.0/ 2.2.2.0

4.6.0

2.3.0.0/ 2.2.2.0

Firefox 3.0.3

1.6.0_14

Internet Explorer 6.0, 7.0, and 8.0

¹ActiveX is supported only on the 32-bit versions of Internet Explorer .

²Java version 1.5 is the minimum version required for Java Applet support.

³Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁴Web login is not supported on 64-bit versions of Internet Explorer.

⁵If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine.

⁶The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁷To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

⁸Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

⁹Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 9 Windows Vista SP1, SP2 ¹

Supported Cisco NAC Appliance Versions

Supported Browsers²

Java Version ³

Cisco NAC Agent ⁴

Web Login ⁵

Web Agent ⁶

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁷,⁸

4.9.2.7
4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ⁹

Internet Explorer 7.0, 8.0, and 9.0

4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.3

2.9.0.0 / 3.4.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ¹⁰

Internet Explorer 7.0, 8.0, and 9.0

4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15

4.9

2.9.0.0 / 3.4.0.0

4.9.0.20

2.9.0.0 / 3.4.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ¹⁰

Internet Explorer 7.0, 8.0, and 9.0

4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(3)

2.9.0.0 / 3.4.0.0

4.8.3.1

2.9.0.0 / 3.4.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ¹⁰

Internet Explorer 7.0, 8.0, and 9.0

4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(2)

2.9.0.0 / 3.2.0.0

4.8.2.1

2.9.0.0 / 3.2.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ¹⁰

Internet Explorer 7.0, 8.0, and 9.0

4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(1)

2.8.0.0 / 2.8.0.0

4.8.1.4

2.8.0.0 / 2.8.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ¹⁰

Internet Explorer 7.0 and 8.0

4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8

2.7.0.0 / 2.7.0.0

4.8.0.4

2.7.0.0 / 2.7.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ¹⁰

Internet Explorer 7.0 and 8.0

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ¹⁰

Internet Explorer 7.0, 8.0, and 9.0

4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(3)

2.7.0.0 / 2.7.0.0

4.7.4.1
4.7.3.1

2.7.0.0 / 2.7.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ¹⁰

Internet Explorer 7.0 and 8.0

4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(2)

2.7.0.0 / 2.6.0.0

4.7.2.5

2.7.0.0 / 2.6.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ¹⁰

Internet Explorer 7.0 and 8.0

4.7.1.511
4.7.1.15
4.6.2.113

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Firefox 3.0.3

1.6.0_11
1.6.0_14

Internet Explorer 7.0 and 8.0

4.7.1.511
4.7.1.15
4.6.2.113

4.7(0)

2.3.0.0/ 2.2.2.0

4.7.0

2.3.0.0/ 2.2.2.0

Firefox 3.0.3

1.6.0_11

Internet Explorer 7.0 and 8.0

1.6.0_14

4.7.1.511
4.7.1.15
4.6.2.113

4.6(1)

2.3.0.0/ 2.2.2.0

4.6.0

2.3.0.0/ 2.2.2.0

Firefox 3.0.3

1.6.0_11

Internet Explorer 7.0 and 8.0

1.6.0_14

¹Includes all Vista operating systems (Business, Home, Ultimate, Enterprise), both Service Pack1 and Service Pack 2. In OOB modes with IP refresh/renew upon successful login (for example, L3 OOB RIP), Web Login and Web Agent with Windows Vista OS requires local admin users to launch the browser as administrator.

²ActiveX is supported only on the 32-bit versions of Internet Explorer .

³Java version 1.5 is the minimum version required for Java Applet support.

⁴Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁵Web login is not supported on 64-bit versions of Internet Explorer.

⁶If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine.

⁷The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁸To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

⁹Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

¹⁰Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 10 Windows Vista x64 SP1, SP2 ¹

Supported Cisco NAC Appliance Versions

Supported Browsers²

Java Version ³

Cisco NAC Agent ⁴

Web Login ⁵

Web Agent ⁶

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁷,⁸

4.9.2.7
4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ⁹

Internet Explorer 7.0, 8.0, and 9.0

4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.3

2.9.0.0 / 3.4.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18

Internet Explorer 7.0, 8.0, and 9.0

4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15

4.9

2.9.0.0 / 3.4.0.0

4.9.0.20

2.9.0.0 / 3.4.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18

Internet Explorer 7.0, 8.0, and 9.0

4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(3)

2.9.0.0 / 3.4.0.0

4.8.3.1

2.9.0.0 / 3.4.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18

Internet Explorer 7.0, 8.0, and 9.0

4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(2)

2.9.0.0 / 3.2.0.0

4.8.2.1

2.9.0.0 / 3.2.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18

Internet Explorer 7.0, 8.0, and 9.0

4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8(1)

2.8.0.0 / 2.8.0.0

4.8.1.4

2.7.0.0 / 2.7.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18

Internet Explorer 7.0 and 8.0

4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.8

2.7.0.0 / 2.7.0.0

4.8.0.4

2.7.0.0 / 2.7.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18

Internet Explorer 7.0 and 8.0

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18

Internet Explorer 7.0, 8.0, and 9.0

4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(3)

2.7.0.0 / 2.7.0.0

4.7.4.1
4.7.3.1

2.7.0.0 / 2.7.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18

Internet Explorer 7.0 and 8.0

4.7.2.10
4.7.1.511
4.7.1.15
4.6.2.113

4.7(2)

2.7.0.0 / 2.6.0.0

4.7.2.5

2.7.0.0 / 2.6.0.0

Firefox 3.0.17
Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18

Internet Explorer 7.0 and 8.0

4.7.1.511
4.7.1.15
4.6.2.113

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Firefox 3.0.3
Firefox 3.5.2

1.6.0_14

Internet Explorer 7.0 and 8.0

4.7.1.511
4.7.1.15
4.6.2.113

4.7(0)

2.3.0.0/ 2.2.2.0

4.7.0

2.3.0.0/ 2.2.2.0

Firefox 3.0.3
Firefox 3.5.2

1.6.0_14

Internet Explorer 7.0 and 8.0

4.7.1.511
4.7.1.15
4.6.2.113

4.6(1)

2.3.0.0/ 2.2.2.0

4.6.0

2.3.0.0/ 2.2.2.0

Firefox 3.0.3

1.6.0_14

Internet Explorer 7.0 and 8.0

¹Includes all Vista operating systems (Business, Home, Ultimate, Enterprise), both Service Pack1 and Service Pack 2. In OOB modes with IP refresh/renew upon successful login (for example, L3 OOB RIP), Web Login and Web Agent with Windows Vista OS requires local admin users to launch the browser as administrator.

²ActiveX is supported only on the 32-bit versions of Internet Explorer .

³Java version 1.5 is the minimum version required for Java Applet support.

⁴Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁵Web login is not supported on 64-bit versions of Internet Explorer.

⁶If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine.

⁷The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁸To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

⁹Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 11 Windows 7 Professional

Supported Cisco NAC Appliance Versions

Supported Browsers¹

Java Version ²

Cisco NAC Agent ³

Web Login ⁴

Web Agent ⁵

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁶,⁷

4.9.2.7
4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.3

2.9.0.0 / 3.4.0.0

Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9

2.9.0.0 / 3.4.0.0

4.9.0.20

2.9.0.0 / 3.4.0.0

Firefox 3.6

1.6_0_17
1.6_0_18

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(3)

2.9.0.0 / 3.4.0.0

4.8.3.1

2.9.0.0 / 3.4.0.0

Firefox 3.6

1.6_0_17
1.6_0_18

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(2)

2.9.0.0 / 3.2.0.0

4.8.2.1

2.9.0.0 / 3.2.0.0

Firefox 3.6

1.6_0_17
1.6_0_18

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(1)

2.8.0.0 / 2.8.0.0

4.8.1.4

2.8.0.0 / 2.8.0.0

Firefox 3.6

1.6_0_17
1.6_0_18

Internet Explorer 8.0, 10 ⁹

4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8

2.7.0.0 / 2.7.0.0

4.8.0.4

2.7.0.0 / 2.7.0.0

Firefox 3.6

1.6_0_17
1.6_0_18

Internet Explorer 8.0, 10 ⁹

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.6

1.6_0_17
1.6_0_18

Internet Explorer 8.0 and 9.0

4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.7(3)

2.7.0.0 / 2.7.0.0

4.7.4.1
4.7.3.1

2.7.0.0 / 2.7.0.0

Firefox 3.6

1.6_0_17
1.6_0_18

Internet Explorer 8.0

4.7.2.10
4.7.1.511

4.7(2)

2.7.0.0 / 2.6.0.0

4.7.2.5

2.7.0.0 / 2.6.0.0

Firefox 3.6

1.6_0_17
1.6_0_18

Internet Explorer 8.0

4.7.1.511

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Internet Explorer 8.0

1.6.0_16

¹ActiveX is supported only on the 32-bit versions of Internet Explorer .

²Java version 1.5 is the minimum version required for Java Applet support.

³Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁴Web login is not supported on 64-bit versions of Internet Explorer.

⁵If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine.

⁶The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁷To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

⁸Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

⁹When Internet Explorer 10 is installed on Windows 7, to get full network access, you need to update to March 2013 Hotfix ruleset.

Table 12 Windows 7 Professional x64¹

Supported Cisco NAC Appliance Versions

Supported Browsers²

Java Version ³

Cisco NAC Agent ⁴

Web Login ⁵

Web Agent ⁶

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁷,⁸

4.9.2.7
4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Internet Explorer 8.0, 9.0, 10 ⁹

1.6_0_17
1.6_0_18 ¹⁰

4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.3

2.9.0.0 / 3.4.0.0

Internet Explorer 8.0, 9.0, 10 ⁹

1.6_0_17
1.6_0_18 ¹⁰

4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9

2.9.0.0 / 3.4.0.0

4.9.0.20

2.9.0.0 / 3.4.0.0

Internet Explorer 8.0, 9.0, 10 ⁹

1.6_0_17
1.6_0_18 ¹⁰

4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(2)

2.9.0.0 / 3.2.0.0

4.8.2.1

2.9.0.0 / 3.2.0.0

Internet Explorer 8.0, 9.0, 10 ⁹

1.6_0_17
1.6_0_18 ¹⁰

4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(1)

2.8.0.0 / 2.8.0.0

4.8.1.4

2.8.0.0 / 2.8.0.0

Internet Explorer 8.0, 10 ⁹

1.6_0_17
1.6_0_18 ¹⁰

4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8

2.7.0.0 / 2.7.0.0

4.8.0.4

2.7.0.0 / 2.7.0.0

Internet Explorer 8.0, 10 ⁹

1.6_0_17
1.6_0_18 ¹⁰

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Internet Explorer 8.0 and 9.0

1.6_0_17
1.6_0_18 ¹⁰

4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.7(3)

2.7.0.0 / 2.7.0.0

4.7.4.1
4.7.3.1

2.7.0.0 / 2.7.0.0

Internet Explorer 8.0

1.6_0_17
1.6_0_18 ¹⁰

4.7.2.10
4.7.1.511

4.7(2)

2.7.0.0 / 2.6.0.0

4.7.2.5

2.7.0.0 / 2.6.0.0

Internet Explorer 8.0

1.6_0_17
1.6_0_18 ¹⁰

4.7.1.511

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Internet Explorer 8.0

¹In OOB, for web login IP refresh to work on a Windows 7 64-bit system with local administrative privileges, add the CAS to the intranet zone with protected mode off.

²ActiveX is supported only on the 32-bit versions of Internet Explorer .

³Java version 1.5 is the minimum version required for Java Applet support.

⁴Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁵Web login is not supported on 64-bit versions of Internet Explorer.

⁶If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine.

⁷The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁸To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

⁹When Internet Explorer 10 is installed on Windows 7, to get full network access, you need to update to March 2013 Hotfix ruleset.

¹⁰Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 13 Windows 7 Ultimate

Supported Cisco NAC Appliance Versions

Supported Browsers¹

Java Version ²

Cisco NAC Agent ³

Web Login ⁴

Web Agent ⁵

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁶,⁷

4.9.2.7
4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.3

2.9.0.0 / 3.4.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9

2.9.0.0 / 3.4.0.0

4.9.0.20

2.9.0.0 / 3.4.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(3)

2.9.0.0 / 3.4.0.0

4.8.3.1

2.9.0.0 / 3.4.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(2)

2.9.0.0 / 3.2.0.0

4.8.2.1

2.9.0.0 / 3.2.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(1)

2.8.0.0 / 2.8.0.0

4.8.1.4

2.8.0.0 / 2.8.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 10 ⁹

4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8

2.7.0.0 / 2.7.0.0

4.8.0.4

2.7.0.0 / 2.7.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 10 ⁹

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0 and 9.0

4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.7(3)

2.7.0.0 / 2.7.0.0

4.7.4.1
4.7.3.1

2.7.0.0 / 2.7.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0

4.7.2.10
4.7.1.511

4.7(2)

2.7.0.0 / 2.6.0.0

4.7.2.5

2.7.0.0 / 2.6.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0

4.7.1.511

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Firefox 3.5.3

1.6.0_16

Internet Explorer 8.0

¹ActiveX is supported only on the 32-bit versions of Internet Explorer .

²Java version 1.5 is the minimum version required for Java Applet support.

³Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁴Web login is not supported on 64-bit versions of Internet Explorer.

⁵If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine.

⁶The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁷To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

⁸Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

⁹When Internet Explorer 10 is installed on Windows 7, to get full network access, you need to update to March 2013 Hotfix ruleset.

Table 14 Windows 7 Ultimate x64

Supported Cisco NAC Appliance Versions

Supported Browsers¹

Java Version ²

Cisco NAC Agent ³

Web Login ⁴

Web Agent ⁵

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁶,⁷

4.9.2.7
4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.3

2.9.0.0 / 3.4.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9

2.9.0.0 / 3.4.0.0

4.9.0.20

2.9.0.0 / 3.4.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(3)

2.9.0.0 / 3.4.0.0

4.8.3.1

2.9.0.0 / 3.4.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(2)

2.9.0.0 / 3.2.0.0

4.8.2.1

2.9.0.0 / 3.2.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(1)

2.8.0.0 / 2.8.0.0

4.8.1.4

2.8.0.0 / 2.8.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 10 ⁹

4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8

2.7.0.0 / 2.7.0.0

4.8.0.4

2.7.0.0 / 2.7.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 10 ⁹

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0 and 9.0

4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.7(3)

2.7.0.0 / 2.7.0.0

4.7.4.1
4.7.3.1

2.7.0.0 / 2.7.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0

4.7.2.10
4.7.1.511

4.7(2)

2.7.0.0 / 2.6.0.0

4.7.2.5

2.7.0.0 / 2.6.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0

4.7.1.511

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Firefox 3.5.3

1.6.0_16

Internet Explorer 8.0

¹ActiveX is supported only on the 32-bit versions of Internet Explorer .

²Java version 1.5 is the minimum version required for Java Applet support.

³Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁴Web login is not supported on 64-bit versions of Internet Explorer.

⁵If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine.

⁶The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁷To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

⁸Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

⁹When Internet Explorer 10 is installed on Windows 7, to get full network access, you need to update to March 2013 Hotfix ruleset.

Table 15 Windows 7 Enterprise

Supported Cisco NAC Appliance Versions

Supported Browsers¹

Java Version ²

Cisco NAC Agent ³

Web Login ⁴

Web Agent ⁵

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁶,⁷

4.9.2.7
4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.3

2.9.0.0 / 3.4.0.0

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9

2.9.0.0 / 3.4.0.0

4.9.0.20

2.9.0.0 / 3.4.0.0

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(3)

2.9.0.0 / 3.4.0.0

4.8.3.1

2.9.0.0 / 3.4.0.0

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(2)

2.9.0.0 / 3.2.0.0

4.8.2.1

2.9.0.0 / 3.2.0.0

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(1)

2.8.0.0 / 2.8.0.0

4.8.1.4

2.8.0.0 / 2.8.0.0

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 10 ⁹

4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8

2.7.0.0 / 2.7.0.0

4.8.0.4

2.7.0.0 / 2.7.0.0

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 10 ⁹

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0 and 9.0

4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.7(3)

2.7.0.0 / 2.7.0.0

4.7.4.1
4.7.3.1

2.7.0.0 / 2.7.0.0

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0

4.7.2.10
4.7.1.511

4.7(2)

2.7.0.0 / 2.6.0.0

4.7.2.5

2.7.0.0 / 2.6.0.0

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0

4.7.1.511

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Firefox 3.5.3
Firefox 3.6

1.6.0_16

Internet Explorer 8.0

¹ActiveX is supported only on the 32-bit versions of Internet Explorer .

²Java version 1.5 is the minimum version required for Java Applet support.

³Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁴Web login is not supported on 64-bit versions of Internet Explorer.

⁵If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine.

⁶The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁷To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

⁸Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

⁹When Internet Explorer 10 is installed on Windows 7, to get full network access, you need to update to March 2013 Hotfix ruleset.

Table 16 Windows 7 Enterprise x64

Supported Cisco NAC Appliance Versions

Supported Browsers¹

Java Version ²

Cisco NAC Agent ³

Web Login ⁴

Web Agent ⁵

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁶,⁷

4.9.2.7
4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.3

2.9.0.0 / 3.4.0.0

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9

2.9.0.0 / 3.4.0.0

4.9.0.20

2.9.0.0 / 3.4.0.0

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(3)

2.9.0.0 / 3.4.0.0

4.8.3.1

2.9.0.0 / 3.4.0.0

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(2)

2.9.0.0 / 3.2.0.0

4.8.2.1

2.9.0.0 / 3.2.0.0

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(1)

2.8.0.0 / 2.8.0.0

4.8.1.4

2.8.0.0 / 2.8.0.0

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 10 ⁹

4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8

2.7.0.0 / 2.7.0.0

4.8.0.4

2.7.0.0 / 2.7.0.0

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 10 ⁹

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0 and 9.0

4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.7(3)

2.7.0.0 / 2.7.0.0

4.7.4.1
4.7.3.1

2.7.0.0 / 2.7.0.0

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0

4.7.2.10
4.7.1.511

4.7(2)

2.7.0.0 / 2.6.0.0

4.7.2.5

2.7.0.0 / 2.6.0.0

Firefox 3.5.3

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0

4.7.1.511

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Firefox 3.0.15
Firefox 3.5.3

1.6.0_16

Internet Explorer 8.0

¹ActiveX is supported only on the 32-bit versions of Internet Explorer .

²Java version 1.5 is the minimum version required for Java Applet support.

³Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁴Web login is not supported on 64-bit versions of Internet Explorer.

⁵If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine.

⁶The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁷To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

⁸Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

⁹When Internet Explorer 10 is installed on Windows 7, to get full network access, you need to update to March 2013 Hotfix ruleset.

Table 17 Windows 7 Home Premium

Supported Cisco NAC Appliance Versions

Supported Browsers¹

Java Version ²

Cisco NAC Agent ³

Web Login ⁴

Web Agent ⁵

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁶,⁷

4.9.2.7
4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.3

2.9.0.0 / 3.4.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9

2.9.0.0 / 3.4.0.0

4.9.0.20

2.9.0.0 / 3.4.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(3)

2.9.0.0 / 3.4.0.0

4.8.3.1

2.9.0.0 / 3.4.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(2)

2.9.0.0 / 3.2.0.0

4.8.2.1

2.9.0.0 / 3.2.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(1)

2.8.0.0 / 2.8.0.0

4.8.1.4

2.8.0.0 / 2.8.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 10 ⁹

4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8

2.7.0.0 / 2.7.0.0

4.8.0.4

2.7.0.0 / 2.7.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 10 ⁹

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0 and 9.0

4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.7(3)

2.7.0.0 / 2.7.0.0

4.7.4.1
4.7.3.1

2.7.0.0 / 2.7.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0

4.7.2.10
4.7.1.511

4.7(2)

2.7.0.0 / 2.6.0.0

4.7.2.5

2.7.0.0 / 2.6.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0

4.7.1.511

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Firefox 3.5.3

1.6.0_16

Internet Explorer 8.0

¹ActiveX is supported only on the 32-bit versions of Internet Explorer .

²Java version 1.5 is the minimum version required for Java Applet support.

³Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁴Web login is not supported on 64-bit versions of Internet Explorer.

⁵If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine.

⁶The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁷To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

⁸Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

⁹When Internet Explorer 10 is installed on Windows 7, to get full network access, you need to update to March 2013 Hotfix ruleset.

Table 18 Windows 7 Home Premium x64

Supported Cisco NAC Appliance Versions

Supported Browsers¹

Java Version ²

Cisco NAC Agent ³

Web Login ⁴

Web Agent ⁵

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁶,⁷

4.9.2.7
4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.3

2.9.0.0 / 3.4.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9

2.9.0.0 / 3.4.0.0

4.9.0.20

2.9.0.0 / 3.4.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(3)

2.9.0.0 / 3.4.0.0

4.8.3.1

2.9.0.0 / 3.4.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(2)

2.9.0.0 / 3.2.0.0

4.8.2.1

2.9.0.0 / 3.2.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(1)

2.8.0.0 / 2.8.0.0

4.8.1.4

2.8.0.0 / 2.8.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 10 ⁹

4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8

2.7.0.0 / 2.7.0.0

4.8.0.4

2.7.0.0 / 2.7.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 10 ⁹

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0 and 9.0

4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.7(3)

2.7.0.0 / 2.7.0.0

4.7.4.1
4.7.3.1

2.7.0.0 / 2.7.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0

4.7.2.10
4.7.1.511

4.7(2)

2.7.0.0 / 2.6.0.0

4.7.2.5

2.7.0.0 / 2.6.0.0

Firefox 3.5.3
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0

4.7.1.511

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Firefox 3.0.15
Firefox 3.5.3

1.6.0_16

Internet Explorer 8.0

¹ActiveX is supported only on the 32-bit versions of Internet Explorer .

²Java version 1.5 is the minimum version required for Java Applet support.

³Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁴Web login is not supported on 64-bit versions of Internet Explorer.

⁵If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine.

⁶The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁷To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

⁸Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

⁹When Internet Explorer 10 is installed on Windows 7, to get full network access, you need to update to March 2013 Hotfix ruleset.

Table 19 Windows 7 Home Basic

Supported Cisco NAC Appliance Versions

Supported Browsers¹

Java Version ²

Cisco NAC Agent ³

Web Login ⁴

Web Agent ⁵

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁶,⁷

4.9.2.7
4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Firefox 3.5.7

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.3

2.9.0.0 / 3.4.0.0

Firefox 3.5.7

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.9

2.9.0.0 / 3.4.0.0

4.9.0.20

2.9.0.0 / 3.4.0.0

Firefox 3.5.7

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(3)

2.9.0.0 / 3.4.0.0

4.8.3.1

2.9.0.0 / 3.4.0.0

Firefox 3.5.7

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(2)

2.9.0.0 / 3.2.0.0

4.8.2.1

2.9.0.0 / 3.2.0.0

Firefox 3.5.7

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8(1)

2.8.0.0 / 2.8.0.0

4.8.1.4

2.8.0.0 / 2.8.0.0

Firefox 3.5.7

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 10 ⁹

4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.8

2.7.0.0 / 2.7.0.0

4.8.0.4

2.7.0.0 / 2.7.0.0

Firefox 3.5.7

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 10 ⁹

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.5.7

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0 and 9.0

4.7.4.2
4.7.3.2
4.7.2.10
4.7.1.511

4.7(3)

2.7.0.0 / 2.7.0.0

4.7.4.1
4.7.3.1

2.7.0.0 / 2.7.0.0

Firefox 3.5.7

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0

4.7.2.10
4.7.1.511

4.7(2)

2.7.0.0 / 2.6.0.0

4.7.2.5

2.7.0.0 / 2.6.0.0

Firefox 3.5.7

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0

4.7.1.511

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Internet Explorer 8.0

1.6.0_16

¹ActiveX is supported only on the 32-bit versions of Internet Explorer .

²Java version 1.5 is the minimum version required for Java Applet support.

³Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁴Web login is not supported on 64-bit versions of Internet Explorer.

⁵If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine.

⁶The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁷To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

⁸Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

⁹When Internet Explorer 10 is installed on Windows 7, to get full network access, you need to update to March 2013 Hotfix ruleset.

Table 20 Windows 7 Starter Edition

Supported Cisco NAC Appliance Versions

Supported Browsers¹

Java Version ²

Cisco NAC Agent ³

Web Login ⁴

Web Agent ⁵

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁶,⁷

4.9.2.7
4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.9.1.6
4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.3

2.9.0.0 / 3.4.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.9.0.33
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10

4.9

2.9.0.0 / 3.4.0.0

4.9.0.20

2.9.0.0 / 3.4.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.3.3
4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10

4.8(3)

2.9.0.0 / 3.4.0.0

4.8.3.1

2.9.0.0 / 3.4.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.2.1
4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10

4.8(2)

2.9.0.0 / 3.2.0.0

4.8.2.1

2.9.0.0 / 3.2.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 9.0, 10 ⁹

4.8.1.5
4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10

4.8(1)

2.8.0.0 / 2.8.0.0

4.8.1.4

2.8.0.0 / 2.8.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 10 ⁹

4.8.0.35
4.7.4.2
4.7.3.2
4.7.2.10

4.8

2.7.0.0 / 2.7.0.0

4.8.0.4

2.7.0.0 / 2.7.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0, 10 ⁹

4.7.5.5
4.7.4.2
4.7.3.2
4.7.2.10

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0 and 9.0

4.7.4.2
4.7.3.2
4.7.2.10

4.7(3)

2.7.0.0 / 2.7.0.0

4.7.4.1
4.7.3.1

2.7.0.0 / 2.7.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0

4.7.2.10

4.7(2)¹⁰

2.7.0.0 / 2.6.0.0

4.7.2.5

2.7.0.0 / 2.6.0.0

Firefox 3.5.7
Firefox 3.6

1.6_0_17
1.6_0_18 ⁸

Internet Explorer 8.0

—

4.7(1)¹¹

2.6.0.0/ 2.6.0.0

—

—

Internet Explorer 8.0

—

¹ActiveX is supported only on the 32-bit versions of Internet Explorer .

²Java version 1.5 is the minimum version required for Java Applet support.

³Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁴Web login is not supported on 64-bit versions of Internet Explorer.

⁵If users are logging in via the Web Agent in a Windows 7 environment and have proxy connections configured on Internet Explorer, they must enable "Protected Mode" in the browser's security settings to enable Web Agent download on the client machine.

⁶The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁷To avoid ActiveX initiation issues that could affect Agent download and web login functions, ensure users logging in via Windows 7 client machines maintain "elevated privileges" on the system by keeping the User Access Control (UAC) settings at the "default" level.

⁸Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

⁹When Internet Explorer 10 is installed on Windows 7, to get full network access, you need to update to March 2013 Hotfix ruleset.

¹⁰You must upgrade both the CAM/CAS to Release 4.7(2) and the Cisco NAC Agent to version 4.7.2.10 to enable Cisco NAC Agent support on client machines running Windows 7 Starter Edition.

¹¹For Cisco NAC Appliance Release 4.7(1), the Cisco NAC Agent and Cisco NAC Web Agent do not support Windows 7 Starter Edition. Client machines with the Windows 7 Starter Edition operating system can only perform web login to verify user credentials. For more information on enabling web login for client machines running Windows 7 Starter Edition, see the "Known Issues" section of the Release Notes for Cisco NAC Appliance, Version 4.7(2).

Table 21 Windows 8

Supported Cisco NAC Appliance Versions

Supported Browsers¹

Java Version ²

Cisco NAC Agent ³

Web Login ⁴

Web Agent

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁵

4.9.2.7

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Internet Explorer 10 ⁶

1.6_0_17
1.6_0_18 ⁷

4.9.1.13

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.8

2.9.0.0 / 3.4.0.0

Internet Explorer 10

1.6_0_17
1.6_0_18

4.8.3.8

4.8(3)

2.9.0.0 / 3.4.0.0

4.8.3.6

2.9.0.0 / 3.4.0.0

Internet Explorer 10

1.6_0_17
1.6_0_18

¹ActiveX is supported only on the 32-bit versions of Internet Explorer .

²Java version 1.5 is the minimum version required for Java Applet support.

³Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁴Web login is not supported on 64-bit versions of Internet Explorer.

⁵The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁶You cannot install the Cisco NAC Agent or Web Agent using Metro Mode in Internet Explorer 10.

⁷Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 22 Windows 8 Professional

Supported Cisco NAC Appliance Versions

Supported Browsers¹

Java Version ²

Cisco NAC Agent ³

Web Login ⁴

Web Agent

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁵

4.9.2.7

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Internet Explorer 10 ⁶

1.6_0_17
1.6_0_18 ⁷

4.9.1.13

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.8

2.9.0.0 / 3.4.0.0

Internet Explorer 10

1.6_0_17
1.6_0_18

4.8.3.8

4.8(3)

2.9.0.0 / 3.4.0.0

4.8.3.6

2.9.0.0 / 3.4.0.0

Internet Explorer 10

1.6_0_17
1.6_0_18

¹ActiveX is supported only on the 32-bit versions of Internet Explorer .

²Java version 1.5 is the minimum version required for Java Applet support.

³Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁴Web login is not supported on 64-bit versions of Internet Explorer.

⁵The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁶You cannot install the Cisco NAC Agent or Web Agent using Metro Mode in Internet Explorer 10.

⁷Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Table 23 Windows 8 Enterprise

Supported Cisco NAC Appliance Versions

Supported Browsers¹

Java Version ²

Cisco NAC Agent ³

Web Login ⁴

Web Agent

CAM/ CAS

L3 MAC (ActiveX/ Applet)

Version

Web Agent (ActiveX/Applet) ⁵

4.9.2.7

4.9(2)

4.9.2.1 / 4.9.2.1

4.9.2.6

4.9.2.1 / 4.9.2.1

Internet Explorer 10 ⁶

1.6_0_17
1.6_0_18 ⁷

4.9.1.13

4.9(1)

2.9.0.0 / 3.4.0.0

4.9.1.8

2.9.0.0 / 3.4.0.0

Internet Explorer 10

1.6_0_17
1.6_0_18

4.8.3.8

4.8(3)

2.9.0.0 / 3.4.0.0

4.8.3.6

2.9.0.0 / 3.4.0.0

Internet Explorer 10

1.6_0_17
1.6_0_18

¹ActiveX is supported only on the 32-bit versions of Internet Explorer .

²Java version 1.5 is the minimum version required for Java Applet support.

³Testing on international languages has been verified with ActiveX. Although Cisco believes the installer runs successfully in the foreign language with Java, this has not been verified. In the event of a Java installer issue, Cisco NAC Agent installation on international language operating systems defaults to English.

⁴Web login is not supported on 64-bit versions of Internet Explorer.

⁵The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁶You cannot install the Cisco NAC Agent or Web Agent using Metro Mode in Internet Explorer 10.

⁷Java version 1.6_0_18 can cause a certificate authentication error. Refer to the caveat CSCte58249 in Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information.

Mac OS X Agent/Browser/Java Support

Table 24 provides CAM/CAS version, browser, and Java JRE compatibility information for Apple operating systems on Macintosh client machines.

Note For full 4.5 and later features (e.g. Mac OS X posture assessment), the 4.5.x.x Agent must be run with release 4.5 or later CAM/CAS.

Table 24 Mac OS X Agent/Browser/Java Support

Operating System ¹
(English OS Language)

Mac OS X Clean Access Agent

Web Login on CAM/CAS

Supported Browsers

Java Version ²

iOS (formerly known as iPhone OS) 1.1.1 and later³^,⁴

N/A

4.9(x)
4.8(x)
4.7(x)
4.6(1)
4.5

Safari

—

iOS 5

N/A

4.9(x)
4.8(3)
4.8(2)
4.7(5)

Safari

—

iOS 6

N/A

4.9(2)
4.9(1)
4.8(3)

Safari

—

Mac OS X 10.4.11 "Tiger"

4.8.2.591
4.8.2.590
4.8.1.584
4.8.0.569
4.7.3.522
4.7.2.507
4.7.1.506
4.7.0.2
4.6.0.3
4.5.0.0

4.8(x) ⁵
4.7(x) ⁵
4.6(1)
4.5

Google Chrome 3 and later ⁶
Firefox 4.0 ⁶
Firefox 3.5.10
Firefox 3.6.6
Safari 4.1

1.5.0_19

Mac OS X 10.5.8 "Leopard"

4.9.2.702
4.9.1.682
4.9.0.649
4.8.3.594
4.8.2.591
4.8.2.590
4.8.1.584
4.8.0.569
4.7.5.531
4.7.3.522
4.7.2.507
4.7.1.506
4.7.0.2
4.6.0.3

4.9(x)
4.8(x)
4.7(x)
4.6(1)

Google Chrome 3 and later ⁶
Firefox 4.0 ⁶
Firefox 3.5.10
Firefox 3.6.6
Firefox 3.6.9
Safari 5.0 ⁷

1.5.0_24
1.6.0_20

Mac OS X 10.6.4 "Snow Leopard" (32- and 64-bit) ⁸

4.9.2.702
4.9.1.682
4.9.0.649
4.8.3.594
4.8.2.591
4.8.2.590
4.8.1.584
4.8.0.569
4.7.5.531
4.7.3.522
4.7.2.507
4.7.1.506

4.9(x)
4.8(x)
4.7(x)

Google Chrome 3 and later ⁶
Firefox 4.0 ⁶
Firefox 3.5.10
Firefox 3.6.6
Safari 5.0

1.6.0_20

Mac OS X 10.7 "Lion"
Mac OS X 10.7.2 "Lion"

4.9.2.702
4.9.1.682
4.9.0.649
4.8.3.594
4.8.2.591
4.7.5.531

4.9(x)
4.8(3)
4.8(2)
4.7(5)

Google Chrome 3 and later⁶
Firefox 4.0 ⁶
Firefox 3.5.10
Firefox 3.6.6
Safari 5.0
Safari 5.1

1.6.0_20

Mac OS X 10.8 "Mountain Lion"

4.9.2.702
4.9.1.682
4.8.3.594

4.9(2)
4.9(1)
4.8(3) ⁹

Google Chrome 3 and later⁶
Firefox 4.0 ⁶
Firefox 3.5.10
Firefox 3.6.6
Safari 5.0
Safari 5.1

1.6.0_20

¹Mac OS X Agents do not support any Mac OS X for Power PC in 64-bit mode.

²Java 1.5 is the minimum version required for Java Applet support.

³Cisco NAC Appliance recognizes iOS as "Macintosh All" and supports basic web login only if Safari browser is used. Cisco has released a patch update for Cisco NAC Appliance Release 4.7(2) CASs that provides web login (no persistent or temporal Agents) support for Apple iPads. See caveat CSCtf60530 in the Release Notes for Cisco NAC Appliance, Version 4.7(2) for more information. This patch has been integrated in Cisco NAC Appliance Release 4.7(3) and Release 4.8.

⁴Devices running with iOS 4.3.2 are not detected by Cisco NAC Appliance.

⁵Cisco NAC Appliance, Release 4.7(5) and 4.8(3) do not support Mac OS X 10.4.11 "Tiger"

⁶Web login IP refresh does not work with Firefox 4.0 and Google Chrome 8 or later. You need to launch Firefox 4.0 or Google Chrome as Administrator with sudo.
To launch Firefox as admin, use the following command and provide the admin password:
sudo /Applications/Firefox.app/Contents/MacOS/firefox

To launch Chrome as admin, use the following command and provide the admin password:
sudo /Applications/Google\ Chrome.app/Contents/MacOS/Google\ Chrome

Otherwise, you can use Firefox 3.x or Safari.

⁷Web login via Safari 5.0 may not work with MAC OS 10.5.x and with Java for Mac OS X 10.5 Update 6 and Update 7.

⁸The Cisco Mac OS X VPN Client version 4.9.x does not support Mac OS X 10.6 in 64-bit mode. Cisco recommends using the built-in Mac OS X 10.6 Cisco IPSec client when connecting via IPSec VPN or AnyConnect where Cisco SSL VPN is available.

⁹For NAC Appliance Release 4.8(3), you need to download a server patch to work with the Mac OS X 10.8 clients. Refer to Release Notes for Cisco NAC Appliance, Version 4.8(3).

Linux Browser/Java Support

Table 25 provides CAM/CAS version, Java applet, browser, and Java JRE compatibility information for Linux operating systems.

Table 25 Linux Browser/Java Support

Operating System
(English OS Language)

Web Login

Supported Browsers

Java Version ¹

CAM/ CAS

L3 MAC Address (Java Applet) ²

Fedora Core 4 (Stentz)

4.5

2.2.2.0

Mozilla Firefox 1.0.4

Sun JRE 1.4.2

Fedora 8 (Werewolf)³^, ⁴

4.5(1)

2.2.2.0

Mozilla Firefox 3.0.6, 2.0.0.16

Sun JRE 1.6.0_07-b06

Fedora 9 (Sulphur) ³^, ⁴

4.5(1)

2.2.2.0

Mozilla Firefox 3.0.6

Sun JRE 1.6.0_12-b04

4.7(1)

2.5.0.0

Mozilla Firefox 3.0b5

Sun JRE 1.6.0_16

4.7(2)

2.6.0.0

Mozilla Firefox 3.0b5

Sun JRE 1.6.0_16

4.7(3)

2.7.0.0

Mozilla Firefox 3.0b5

Sun JRE 1.6.0_16

4.7(5)

3.3.0.0

Mozilla Firefox 3.0b5

Sun JRE 1.6.0_16

4.8

2.7.0.0

Mozilla Firefox 3.0b5

Sun JRE 1.6.0_16

4.8(1)

2.8.0.0

Mozilla Firefox 3.0b5

Sun JRE 1.6.0_16

4.8(2)

3.2.0.0

Mozilla Firefox 3.0b5

Sun JRE 1.6.0_16

4.8(3)

3.4.0.0

Mozilla Firefox 3.0b5

Sun JRE 1.6.0_16

4.9

3.4.0.0

Mozilla Firefox 3.0b5

Sun JRE 1.6.0_16

4.9(1)

3.4.0.0

Mozilla Firefox 3.0b5

Sun JRE 1.6.0_16

4.9(2)

3.4.0.0

Mozilla Firefox 3.0b5

Sun JRE 1.6.0_16

Fedora 10 (Cambridge)³^, ⁴

4.5(1)

2.2.2.0

Mozilla Firefox 3.0.4

Sun JRE 1.6.0_12-b04

4.7(1)

2.5.0.0

Mozilla Firefox 3.0.4

Sun JRE 1.6.0_16

4.7(2)

2.6.0.0

Mozilla Firefox 3.0.4

Sun JRE 1.6.0_16

4.7(3)

2.7.0.0

Mozilla Firefox 3.0.4

Sun JRE 1.6.0_16

4.7(5)

3.3.0.0

Mozilla Firefox 3.0.4

Sun JRE 1.6.0_16

4.8

2.7.0.0

Mozilla Firefox 3.0.4

Sun JRE 1.6.0_16

4.8(1)

2.8.0.0

Mozilla Firefox 3.0.4

Sun JRE 1.6.0_16

4.8(2)

3.2.0.0

Mozilla Firefox 3.0.4

Sun JRE 1.6.0_16

4.8(3)

3.4.0.0

Mozilla Firefox 3.0.4

Sun JRE 1.6.0_16

4.9

3.4.0.0

Mozilla Firefox 3.0.4

Sun JRE 1.6.0_16

4.9(1)

3.4.0.0

Mozilla Firefox 3.0.4

Sun JRE 1.6.0_16

4.9(2)

3.4.0.0

Mozilla Firefox 3.0.4

Sun JRE 1.6.0_16

Fedora 11 (Leonidas)

4.7(1)

2.5.0.0

Mozilla Firefox 3.5b4

Sun JRE 1.6.0_16

4.7(2)

2.6.0.0

Mozilla Firefox 3.6

Sun JRE 1.6.0_18

4.7(3)

2.7.0.0

Mozilla Firefox 3.6

Sun JRE 1.6.0_18

4.7(5)

3.3.0.0

Mozilla Firefox 3.6

Sun JRE 1.6.0_18

4.8

2.7.0.0

Mozilla Firefox 3.6

Sun JRE 1.6.0_18

4.8(1)

2.8.0.0

Mozilla Firefox 3.6

Sun JRE 1.6.0_18

4.8(2)

3.2.0.0

Mozilla Firefox 3.6

Sun JRE 1.6.0_18

4.8(3)

3.4.0.0

Mozilla Firefox 3.6

Sun JRE 1.6.0_18

4.9

3.4.0.0

Mozilla Firefox 3.6

Sun JRE 1.6.0_18

4.9(1)

3.4.0.0

Mozilla Firefox 3.6

Sun JRE 1.6.0_18

4.9(2)

3.4.0.0

Mozilla Firefox 3.6

Sun JRE 1.6.0_18

Ubuntu 9.04

4.7(1)

2.5.0.0

Mozilla Firefox 3.0.8

Sun JRE 1.6.0_16

4.7(2)

2.6.0.0

Mozilla Firefox 3.0.8

Sun JRE 1.6.0_16

4.7(3)

2.7.0.0

Mozilla Firefox 3.0.8

Sun JRE 1.6.0_16

4.7(5)

3.3.0.0

Mozilla Firefox 3.0.8

Sun JRE 1.6.0_16

4.8

2.7.0.0

Mozilla Firefox 3.0.8

Sun JRE 1.6.0_16

4.8(1)

2.8.0.0

Mozilla Firefox 3.0.8

Sun JRE 1.6.0_16

4.8(2)

3.2.0.0

Mozilla Firefox 3.0.8

Sun JRE 1.6.0_16

4.8(3)

3.4.0.0

Mozilla Firefox 3.0.8

Sun JRE 1.6.0_16

4.9

3.4.0.0

Mozilla Firefox 3.0.8

Sun JRE 1.6.0_16

4.9(1)

3.4.0.0

Mozilla Firefox 3.0.8

Sun JRE 1.6.0_16

4.9(2)

3.4.0.0

Mozilla Firefox 3.0.8

Sun JRE 1.6.0_16

CentOS 5.3

4.7(1)

2.5.0.0

Mozilla Firefox 3.0

Sun JRE 1.6.0_16

4.7(2)

2.6.0.0

Mozilla Firefox 3.0.

Sun JRE 1.6.0_16

4.7(3)

2.7.0.0

Mozilla Firefox 3.0.

Sun JRE 1.6.0_16

4.7(5)

3.3.0.0

Mozilla Firefox 3.0.

Sun JRE 1.6.0_16

4.8

2.7.0.0

Mozilla Firefox 3.0.

Sun JRE 1.6.0_16

4.8(1)

2.8.0.0

Mozilla Firefox 3.0.

Sun JRE 1.6.0_16

4.8(2)

3.2.0.0

Mozilla Firefox 3.0.

Sun JRE 1.6.0_16

4.8(3)

3.4.0.0

Mozilla Firefox 3.0.

Sun JRE 1.6.0_16

4.9

3.4.0.0

Mozilla Firefox 3.0.

Sun JRE 1.6.0_16

4.9(1)

3.4.0.0

Mozilla Firefox 3.0.

Sun JRE 1.6.0_16

4.9(2)

3.4.0.0

Mozilla Firefox 3.0.

Sun JRE 1.6.0_16

¹Java version 1.5 is the minimum version required for Java Applet support.

²For Linux OS clients, Web Login is supported in L2/L3 IB modes, and L2 OOB mode. In L3 OOB mode, the L3 MAC Address Detection Java Applet is required to obtain the MAC address of the client and refresh the IP address when necessary.

³To support IP refresh/renew, "#Defaults requiretty" must be commented out in the /etc/sudoers file on the Linux client. If not commented, the applet used for IP refresh/renew fails with error "sudo: sorry, you must have a tty to run sudo" if the script is called by the applet. PortBounce occurs on Fedora 8/9/10 clients during the IP Refresh after authentication.

⁴Supported for root and non-root users. Tested for Cisco NAC Appliance Release 4.5(1) and 4.1(8).

Windows Clean Access Agent/Browser/Java Support

Table 26 provides CAM/CAS version, browser, and Java JRE compatibility information for web login methods as well as the pre-release 4.6(1) Clean Access Agent (version 4.5.0.0 through 4.5.2.0) and Cisco NAC Web Agent that you can install and run on Windows operating systems.

Table 26 Windows Clean Access Agent/Browser/Java Support

Operating System
(English OS Language)

Win Clean Access Agent ¹

Web Login ²

Web Agent

Supported Browsers ³

Java Version ⁴

CAM/ CAS

L3 MAC (ActiveX/Applet)

Version

Web Agent (ActiveX/Applet) ⁵

Windows 2000, SP4 ⁶

4.5.2.0
4.5.1.0
4.5.0.0

4.5

2.0.3.0/ 2.0.3.0

4.5.0.0

2.0.3.0/ 2.0.3.0

Firefox 2.0.0.8

1.6.0_07

Internet Explorer 6.0

Windows XP Tablet PC, SP2, SP3

4.5.2.0
4.5.1.0
4.5.0.0

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Internet Explorer 6.0, 7.0, 8.0, and 9.0

1.6.0_14

4.5.2.0
4.5.1.0
4.5.0.0

4.7(3)

2.7.0.0/ 2.7.0.0

4.7.3.1

2.7.0.0/ 2.7.0.0

Internet Explorer 6.0, 7.0, and 8.0

1.6.0_14

4.5.2.0
4.5.1.0
4.5.0.0

4.7(2)

2.7.0.0/ 2.6.0.0

4.7.2.5

2.7.0.0/ 2.6.0.0

Internet Explorer 6.0, 7.0, and 8.0

1.6.0_14

4.5.2.0
4.5.1.0
4.5.0.0

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Internet Explorer 6.0, 7.0, and 8.0

1.6.0_14

4.5.2.0
4.5.1.0
4.5.0.0

4.7(0)

2.3.0.0/ 2.2.2.0

4.7.0

2.3.0.0/ 2.2.2.0

Internet Explorer 6.0, 7.0, and 8.0

1.6.0_14

4.5.2.0
4.5.1.0
4.5.0.0

4.6(1)

2.3.0.0/ 2.2.2.0

4.6.0

2.3.0.0/ 2.2.2.0

Internet Explorer 6.0, 7.0, and 8.0

1.6.0_14

Windows XP Professional, SP2, SP3

4.5.2.0
4.5.1.0
4.5.0.0

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.0.3

1.6.0_11

Internet Explorer 6.0, 7.0, 8.0, and 9.0

1.6.0_14

4.5.2.0
4.5.1.0
4.5.0.0

4.7(3)

2.7.0.0/ 2.7.0.0

4.7.3.1

2.7.0.0/ 2.7.0.0

Firefox 3.0.3

1.6.0_11

Internet Explorer 6.0, 7.0, and 8.0

1.6.0_14

4.5.2.0
4.5.1.0
4.5.0.0

4.7(2)

2.7.0.0/ 2.6.0.0

4.7.2.5

2.7.0.0/ 2.6.0.0

Firefox 3.0.3

1.6.0_11

Internet Explorer 6.0, 7.0, and 8.0

1.6.0_14

4.5.2.0
4.5.1.0
4.5.0.0

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Firefox 3.0.3

1.6.0_11

Internet Explorer 6.0, 7.0, and 8.0

1.6.0_14

4.5.2.0
4.5.1.0
4.5.0.0

4.7(0)

2.3.0.0/ 2.2.2.0

4.7.0

2.3.0.0/ 2.2.2.0

Firefox 3.0.3

1.6.0_11

Internet Explorer 6.0, 7.0, and 8.0

1.6.0_14

4.5.2.0
4.5.1.0
4.5.0.0

4.6(1)

2.3.0.0/ 2.2.2.0

4.6.0

2.3.0.0/ 2.2.2.0

Firefox 3.0.3

1.6.0_11

Internet Explorer 6.0, 7.0, and 8.0

1.6.0_14

Windows XP Professional x64, SP2

4.5.2.0
4.5.1.0
4.5.0.0

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.0.3

1.6.0_14

Internet Explorer 6.0, 7.0, 8.0, and 9.0

4.5.2.0
4.5.1.0
4.5.0.0

4.7(3)

2.7.0.0/ 2.7.0.0

4.7.3.1

2.7.0.0/ 2.7.0.0

Firefox 3.0.3

1.6.0_14

Internet Explorer 6.0, 7.0, and 8.0

4.5.2.0
4.5.1.0
4.5.0.0

4.7(2)

2.7.0.0/ 2.6.0.0

4.7.2.5

2.7.0.0/ 2.6.0.0

Firefox 3.0.3

1.6.0_14

Internet Explorer 6.0, 7.0, and 8.0

4.5.2.0
4.5.1.0
4.5.0.0

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Firefox 3.0.3

1.6.0_14

Internet Explorer 6.0, 7.0, and 8.0

4.5.2.0
4.5.1.0
4.5.0.0

4.7(0)

2.3.0.0/ 2.2.2.0

4.7.0

2.3.0.0/ 2.2.2.0

Firefox 3.0.3

1.6.0_14

Internet Explorer 6.0, 7.0, and 8.0

4.5.2.0
4.5.1.0
4.5.0.0

4.6(1)

2.3.0.0/ 2.2.2.0

4.6.0

2.3.0.0/ 2.2.2.0

Firefox 3.0.3

1.6.0_14

Internet Explorer 6.0, 7.0, and 8.0

Windows Vista ⁷ SP1, SP2

4.5.2.0
4.5.1.0
4.5.0.0

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.0.3

1.6.0_11

Internet Explorer 7.0, 8.0, and 9.0

1.6.0_14

4.5.2.0
4.5.1.0
4.5.0.0

4.7(3)

2.7.0.0/ 2.7.0.0

4.7.3.1

2.7.0.0/ 2.7.0.0

Firefox 3.0.3

1.6.0_11

Internet Explorer 7.0 and 8.0

1.6.0_14

4.5.2.0
4.5.1.0
4.5.0.0

4.7(2)

2.7.0.0/ 2.6.0.0

4.7.2.5

2.7.0.0/ 2.6.0.0

Firefox 3.0.3

1.6.0_11

Internet Explorer 7.0 and 8.0

1.6.0_14

4.5.2.0
4.5.1.0
4.5.0.0

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Firefox 3.0.3

1.6.0_11

Internet Explorer 7.0 and 8.0

1.6.0_14

4.5.2.0
4.5.1.0
4.5.0.0

4.7(0)

2.3.0.0/ 2.2.2.0

4.7.0

2.3.0.0/ 2.2.2.0

Firefox 3.0.3

1.6.0_11

Internet Explorer 7.0 and 8.0

1.6.0_14

4.5.2.0
4.5.1.0
4.5.0.0

4.6(1)

2.3.0.0/ 2.2.2.0

4.6.0

2.3.0.0/ 2.2.2.0

Firefox 3.0.3

1.6.0_11

Internet Explorer 7.0 and 8.0

1.6.0_14

Windows Vista ⁷ x64 SP1, SP2

4.5.2.0
4.5.1.0
4.5.0.0

4.7(5)

2.9.0.0 / 3.3.0.0

4.7.5.5

2.9.0.0 / 3.3.0.0

Firefox 3.0.3

1.6.0_14

Internet Explorer 7.0, 8.0, and 9.0

4.5.2.0
4.5.1.0
4.5.0.0

4.7(3)

2.7.0.0/ 2.7.0.0

4.7.3.1

2.7.0.0/ 2.7.0.0

Firefox 3.0.3

1.6.0_14

Internet Explorer 7.0 and 8.0

4.5.2.0
4.5.1.0
4.5.0.0

4.7(2)

2.7.0.0/ 2.6.0.0

4.7.2.5

2.7.0.0/ 2.6.0.0

Firefox 3.0.3

1.6.0_14

Internet Explorer 7.0 and 8.0

4.5.2.0
4.5.1.0
4.5.0.0

4.7(1)

2.6.0.0/ 2.6.0.0

4.7.1.504

2.6.0.0/ 2.6.0.0

Firefox 3.0.3

1.6.0_14

Internet Explorer 7.0 and 8.0

4.5.2.0
4.5.1.0
4.5.0.0

4.7(0)

2.3.0.0/ 2.2.2.0

4.7.0

2.3.0.0/ 2.2.2.0

Firefox 3.0.3

1.6.0_14

Internet Explorer 7.0 and 8.0

4.5.2.0
4.5.1.0
4.5.0.0

4.6(1)

2.3.0.0/ 2.2.2.0

4.6.0

2.3.0.0/ 2.2.2.0

Firefox 3.0.3

1.6.0_14

Internet Explorer 7.0 and 8.0

¹The Clean Access Agent only fully supports authentication/posture assessment/remediation on 32-bit operating systems. Any client OS not listed is not supported, even if the Agent can be installed on the client (e.g. Embedded XP is not supported).

²Web login is not supported on 64-bit versions of Internet Explorer.

³ActiveX is supported only on the 32-bit versions of Internet Explorer .

⁴Java version 1.5 is the minimum version required for Java Applet support.

⁵The temporal Cisco NAC Web Agent can be launched from the Web Login Facilitator using ActiveX from the Internet Explorer versions or via Java applet from the web browsers listed as supported for Windows systems.

⁶Agent (4.1.3.0 or later) login to Windows 2000 system with Local DB authentication to CAM and requirements configured requires a system restart. See the Release Notes for Cisco NAC Appliance, Version 4.5 for details.

⁷Includes all Vista operating systems (Business, Home, Ultimate, Enterprise), both Service Pack1 and Service Pack 2.

Cisco NAC Appliance Agent/AD Server Compatibility for AD SSO

Cisco NAC Appliance supports Windows Single Sign-On (SSO) on Windows 7/Vista/XP/2000 client machines and Active Directory on Windows 2000/2003/2008 Servers, as shown in Table 27.

Note Cisco NAC Web Agent does not support SSO functions.

Table 27 Cisco NAC Appliance Support for Windows Active Directory SSO

CAM/CAS Version

Active Directory (AD) Servers ¹

ktpass.exe Version Required

Client Machines ²

FIPS 140-2 Compliant

4.9

Windows 2008 Server Enterprise R2 SP1 (64-bit )
Windows 2008 Server Enterprise SP1 (32-bit) ³^{, ⁴}

6.1.7600.16385
6.0.6002.18005
6.0.6001.18000

Windows 7
Windows Vista

4.8
4.7(0)

Windows 2008 Server Enterprise SP1 (32-bit) ³^,⁴

6.0.6002.18005
6.0.6001.18000

Windows 7
Windows Vista

Non-FIPS

4.9(2)
4.9(1)

Windows 2008 Datacenter SP2 (64-bit)

6.0.6002.18005 (64-bit)

•Windows 7

•Windows Vista

•Windows XP

Windows 2008 Datacenter SP2 (32-bit)

6.0.6002.18005 (32-bit)

•Windows XP

Windows 2008 Server Standard SP2 (32-bit and 64-bit)

6.0.6002.18005 (32-bit)
6.0.6001.18000 (64-bit)

•Windows 7 Professional⁵

•Windows 7 Ultimate⁵

•Windows 7 Enterprise⁵

•Windows Vista⁶

•Windows XP

Windows 2008 Server Standard R2 (64-bit)

6.1.7600.16385

Windows 2008 Server Enterprise R2

6.1.7600.16385

Windows 2008 Server Enterprise SP2
(32-bit and 64-bit)

6.0.6002.18005

Windows 2008 Server Enterprise SP1 (32-bit) ³^,⁴

6.0.6001.18000

•Windows 2003 Server Enterprise SP1

•Windows 2003 Server Enterprise SP2

•Windows 2003 Server Enterprise SP2 R2

•Windows 2003 Server Standard SP2 R2

5.2.3790.1830

•Windows 2003 Server Enterprise SP1

•Windows 2003 Server Enterprise SP2

•Windows 2003 Server Enterprise SP2 R2

•Windows 2003 Server Standard SP1⁷

•Windows 2003 Server Standard SP2 R2

5.2.3790.0

4.9
4.8(3)
4.8(2)
4.8(1)
4.8

Windows 2008 Datacenter SP2 (32-bit)

6.0.6002.18005 (32-bit)

•Windows XP

Windows 2008 Server Standard SP2 (32-bit and 64-bit)

6.0.6002.18005 (32-bit)
6.0.6001.18000 (64-bit)

•Windows 7 Professional⁸

•Windows 7 Ultimate⁵

•Windows 7 Enterprise⁵

•Windows Vista⁹

•Windows XP

Windows 2008 Server Standard R2 (64-bit)

6.1.7600.16385

Windows 2008 Server Enterprise R2

6.1.7600.16385

Windows 2008 Server Enterprise SP2
(32-bit and 64-bit)

6.0.6002.18005

Windows 2008 Server Enterprise SP1 (32-bit) ³^,⁴

6.0.6001.18000

•Windows 2003 Server Enterprise SP1

•Windows 2003 Server Enterprise SP2

•Windows 2003 Server Enterprise SP2 R2

•Windows 2003 Server Standard SP2 R2

5.2.3790.1830

•Windows 2003 Server Enterprise SP1

•Windows 2003 Server Enterprise SP2

•Windows 2003 Server Enterprise SP2 R2

•Windows 2003 Server Standard SP1¹⁰

•Windows 2003 Server Standard SP2 R2

5.2.3790.0

4.7(5)

Windows 2008 Server Enterprise R2

6.1.7600.16385

•Windows 7 Professional ⁵

•Windows 7 Ultimate ⁵

•Windows 7 Enterprise ⁵

•Windows Vista ⁶

•Windows XP

•Windows 2000 SP4

Windows 2008 Server Enterprise SP2
(32-bit and 64-bit)

6.0.6002.18005

Windows 2008 Server Enterprise SP1 (32-bit) ³^,⁴

6.0.6001.18000

Windows 2008 Server Standard R2 (64-bit)

6.1.7600.16385

•Windows 2003 Server Enterprise SP1

•Windows 2003 Server Enterprise SP2

•Windows 2003 Server Enterprise SP2 R2

•Windows 2003 Server Standard SP2 R2

5.2.3790.1830

•Windows 2003 Server Enterprise SP1

•Windows 2003 Server Enterprise SP2

•Windows 2003 Server Enterprise SP2 R2

•Windows 2003 Server Standard SP1⁷

•Windows 2003 Server Standard SP2 R2

5.2.3790.0

4.7(3)
4.7(2)

Windows 2008 Server Enterprise R2

6.1.7600.16385

•Windows 7 Professional ⁵

•Windows 7 Ultimate ⁵

•Windows 7 Enterprise ⁵

•Windows Vista ⁶

•Windows XP

•Windows 2000 SP4

Windows 2008 Server Enterprise SP2
(32-bit and 64-bit)

6.0.6002.18005

Windows 2008 Server Enterprise SP1 (32-bit) ³^,⁴

6.0.6001.18000

•Windows 2003 Server Enterprise SP1

•Windows 2003 Server Enterprise SP2

•Windows 2003 Server Enterprise SP2 R2

•Windows 2003 Server Standard SP2 R2

5.2.3790.1830

•Windows 2003 Server Enterprise SP1

•Windows 2003 Server Enterprise SP2

•Windows 2003 Server Enterprise SP2 R2

•Windows 2003 Server Standard SP1⁷

•Windows 2003 Server Standard SP2 R2

5.2.3790.0

4.7(1)

Windows 2008 Server Enterprise SP2
(32-bit and 64-bit)

6.0.6002.18005

•Windows 7 Professional ⁵

•Windows 7 Ultimate ⁵

•Windows 7 Enterprise ⁵

•Windows Vista ⁶

•Windows XP

•Windows 2000 SP4

Windows 2008 Server Enterprise SP1 (32-bit) ³^,⁴

6.0.6001.18000

•Windows 2003 Server Enterprise SP1

•Windows 2003 Server Enterprise SP2

•Windows 2003 Server Enterprise SP2 R2

•Windows 2003 Server Standard SP2 R2

5.2.3790.1830

•Windows 2003 Server Enterprise SP1

•Windows 2003 Server Enterprise SP2

•Windows 2003 Server Enterprise SP2 R2

•Windows 2003 Server Standard SP1⁷

•Windows 2003 Server Standard SP2 R2

5.2.3790.0

4.7(0)
4.6(1)
4.5(1)
4.1(8)

Windows 2008 Server Enterprise SP1 (32-bit) ³^,⁴

6.0.6001.18000

•Windows Vista

•Windows XP Professional SP2, SP3

•Windows 2000 SP4

•Windows 7 Ultimate SP0

•Windows XP Pro SP3

•Windows Vista Business SP2

4.7(0)
4.6(1)
4.5(x)
4.1(8)
4.1(6)
4.1(3)+

•Windows 2000 Server SP4

•Windows 2003 Server Enterprise SP1

•Windows 2003 Server Enterprise SP2

•Windows 2003 Server Enterprise SP2 R2

•Windows 2003 Server Standard SP1⁷

•Windows 2003 Server Standard SP2 R2

5.2.3790.0

¹64-bit versions of Windows 2003 Enterprise are not supported.

²AD SSO requires the Cisco NAC Agent to be installed on client systems (for example, you cannot use a Linux Kerberos client for AD SSO with Cisco NAC Appliance.)

³Single Domain AD SSO is supported on Windows 2008 Enterprise SP1 (32-bit).

⁴To support AD SSO on the Windows 2008 Server SP1, you must:
- Apply Microsoft Windows Hotfix KB951191 (http://support.microsoft.com/kb/951191)
- Use the native Windows 2008 KTPass tool
- (Optional) Issue the KTPass command using a slash (/) instead of a dash (-), as instructed in the Microsoft TechNet support page (http://technet.microsoft.com/en-us/library/cc753771.aspx) The following illustrates an example command:
C:\Program Files\Support Tools> ktpass.exe /princ sanac/TestAD01.testdom.com@TESTDOM.COM /mapuser sanac /pass 123456sS /out c:\casuser.keytab /ptype KRB5_NT_PRINCIPAL +DesOnly

For additional information, refer to the "Configuring Active Directory Single Sign-On (AD SSO)" chapter of the corresponding Cisco NAC Appliance - Clean Access Server Configuration Guide. See also caveat CSCsy45780 for further details.

⁵If the AD system is based on an upgrade from Windows Server 2003, you must raise the domain functionality to Windows Server 2008 level for Cisco NAC appliance to perform SSO on Windows 7 clients. Without this you will not be able to automatically login to the Cisco NAC Appliance network.

⁶Users logging into Cisco NAC Appliance via AD SSO must be running Windows Vista or Windows 7 and have one of the supported Cisco NAC Agent versions (4.7.1.15 or 4.8.0.35) installed on their client machine in order to remain FIPS-compliant. Windows XP clients performing AD SSO do not conform to FIPS 140-2 compliance requirements.

⁷Windows 2003 Standard without SP1 is not supported.

⁸If the AD system is based on an upgrade from Windows Server 2003, you must raise the domain functionality to Windows Server 2008 level for Cisco NAC appliance to perform SSO on Windows 7 clients. Without this you will not be able to automatically login to the Cisco NAC Appliance network.

⁹Users logging into Cisco NAC Appliance via AD SSO must be running Windows Vista or Windows 7 and have one of the supported Cisco NAC Agent versions (4.7.1.15 or 4.8.0.35) installed on their client machine in order to remain FIPS-compliant. Windows XP clients performing AD SSO do not conform to FIPS 140-2 compliance requirements.

¹⁰Windows 2003 Standard without SP1 is not supported.

Cisco NAC Agent Localized Language Support

Cisco NAC Agent version 4.6.2.113 and later provides native localization support of user-facing dialog text and messages. The Agent determines the correct language template based on the local computer Locale (under Control Panel > Regional and Language Options), unless you explicitly disable this function by setting the "Locale" parameter in the Agent configuration XML file. The Agent also provides MultiByte Character Support (MBCS) for posture assessment and remediation on "double-byte" language operating systems. The following languages are supported:."

Catalan

English

Italian

Russian

Chinese (Simplified)

Finnish

Japanese

Serbian (Cyrillic)

Chinese (Traditional)

French

Korean

Serbian (Latin)

Czech

French Canadian

Norwegian

Spanish

Danish

German

Polish ¹

Swedish

Dutch

Hungarian

Portuguese

Turkish

¹Polish language is supported starting from Cisco NAC Appliance, Release 4.9(1).

Note If you use the latest version of the Cisco NAC Agent, but leave your CAM/CAS at release 4.5(1) or earlier, Agent connect-time information (e.g. remediation requirement names and descriptions) is English-only—users lose the advantage of the native operating system localization support available to Cisco NAC Agent users who are logging in to a 4.6(1) and later CAM/CAS network.

Clean Access Agent Localized Language Template Support

The Clean Access Agent determines the correct language template based on the local computer Locale (under Control Panel > Regional and Language Options). Agent language template support only controls what the viewer sees after the Agent is installed; it does not include support for different client operating systems for the Agent Installer or for AV/AS products.

Version 4.5.x.x of the Clean Access Agent supports the following localized language templates:

Catalan

Finnish

International English

Serbian

Czech

French

Italian

Spanish

Danish

French (Canada)

Norwegian

Swedish

Dutch

German

Portuguese

Turkish

English

Hungarian

Russian

Note For the Russian localized template, the Agent must run on Russian Windows to be able display all characters correctly.

Supported OS Locales

All languages supported for language templates are also supported for OS Locales. Japanese is also supported as an OS Locale. With OS Locale support, the Clean Access Agent installs/authenticates on the Windows language version (e.g. German Windows or Japanese Windows) but displays all information and instructions in English.

Note For details on the Clean Access Agent for Release 4.1(x) and earlier, refer to Supported Hardware and System Requirements for Cisco NAC Appliance (Cisco Clean Access).

Cisco NAC Appliance (Clean Access)

Support Information for Cisco NAC Appliance Agents, Release 4.5 and Later

Hierarchical Navigation

Downloads

Table Of Contents

Support Information for Cisco NAC Appliance Agents, Release 4.5 and Later

Cisco NAC Appliance Agent System Requirements

Cisco NAC Appliance Agent/Server Version Compatibility

Cisco NAC Agent Interoperability Between NAC Appliance and Identity Services Engine (ISE)

Cisco NAC Appliance Agent/OS/Browser Support Matrix

Cisco NAC Windows Agent/Browser/Java Support

Mac OS X Agent/Browser/Java Support

Linux Browser/Java Support

Windows Clean Access Agent/Browser/Java Support

Cisco NAC Appliance Agent/AD Server Compatibility for AD SSO

Cisco NAC Agent Localized Language Support

Clean Access Agent Localized Language Template Support

Supported OS Locales

Programs

Programs

Programs

Programs