106 Building a Network Access Control Solution with IBM Tivoli and Cisco Systems
There are several parameters of interest:
The
POLICY_VERSION parameter (Figure 5-6) establishes the version level
of the policy. This field is simply a string value. The company version control
process
is strictly a manual one. During the network admission check, this
version information is used to ensure that the client has an acceptable version
of the compliance policy. (More on this in the next section.)
Figure 5-6 Setting the policy version
The MAX_DATA_AGE_SECS parameter (Figure 5-7) establishes the
maximum data age for the posture cache data: When the workstation is
challenged by the network for posture status it returns the data from its cache
if the data is more recent than the maximum data age parameter. Otherwise
the posture collectors are triggered, the posture cache is refreshed, and the
posture data is returned to the network.
Figure 5-7 Setting the posture cache maximum data age
