Follow the procedure below to deploy the Policy Server for Cisco
Install the OfficeScan server: Install the OfficeScan server on the network.
Install OfficeScan clients: Install the OfficeScan client program on all clients whose antivirus protection you want Policy Server to evaluate.
Enroll the Cisco Secure ACS server: Establish a trusted relationship between the ACS server and a Certificate Authority (CA) server by having the ACS server issue a certificate signing request and then saving the CA-signed certificate (called the ACS certificate) on the ACS server (see Understanding certificates for more information).
Export and install a CA certificate: Export the CA certificate to the ACS server and store a copy on the OfficeScan server. This step is only necessary if you did not deploy a certificate to clients and the ACS server.
Deploy the Cisco Trust Agent and CA certificate: Deploy the Cisco Trust Agent and the CA certificate to all OfficeScan clients so clients can submit security posture information to the Policy server.
Install the Policy Server for Cisco NAC: Install the Policy Server for Cisco NAC to handle requests from the ACS server.
Export an SSL certificate from the Policy Server: Export an SSL certificate from the Policy Server to the Cisco ACS server to establish secure SSL communications between the two servers.
Configure the ACS server: Configure the ACS server to forward posture validation requests to the Policy Server.
Configure the Policy Server for NAC: Create and modify rules and policies to enforce your organization's security strategy for OfficeScan clients.
Note: The above procedure is for reference only
and may be subject to change depending on updates to either the Microsoft
Before performing any of the tasks, verify that the Network Access
Device(s) on your network are able to support Cisco NAC. See the device documentation for set up and
configuration instructions. Also, install the ACS server on your network.
See your Cisco Secure ACS documentation for instructions.