• 
• 
• 
• 
• 

CleanAccess Client

This program allows users of operating systems other than Microsoft Windows to automatically log into Cisco CleanAccess (previously called Perfigo) controlled networks by providing a username and password. The client automatically configures itself and finds where to send what data, and can also auto-accept annoying virus policy messages.

Download Cisco CleanAccess Client

Usage

Using the client requires that you have Python installed. Note that it will refuse to run on Microsoft Windows; please use the official client because it provides some extra features for Windows users.

$ ./perfigo.py login username password
$ ./perfigo.py logout

Please view the beginning of the file in a text editor for more information and options.

How it Works

The CleanAccess system uses simple authentication over secure HTTP connections to let clients access the network. When a new client attempts a DNS lookup for a website they are sent the address of the CleanAccess device, which then sends the client a login page (if you aren't using Microsoft Windows). Several values must be filled in and sent back to the device, and then optionally any policy messages must be accepted.

Weaknesses of the System

The CleanAccess device will let clients log into the network bypassing its security checks if the client tells the device that it is not using Microsoft Windows. The device itself must trust the response of the client, which would allow an infected Windows machine onto the network so long as it claims to be e.g. Linux or Mac OSX. My client is specifically written to disallow such usage.

\\ Copyright 2003 - 2008 Daniel G. Taylor | Valid XHTML CSS //