Last time I worked with NAP (Win 2008 and briefly 2008 R2) it was harder to setup than going with a dedicated unit but once up and running it was rock solid. Unless you go with a Linux build your own system you will pay for a dedicated unit (I am sure you know that) but in testing it was a bit more flexible but I no longer have any of the details just memory. The NAP I set up was running on a DC so it was "free". Jon From: [email protected] Date: Wed, 23 Apr 2014 17:57:40 -0400 Subject: Re: [NTSysADM] NAC and NAP technologies To: [email protected]
Thanks, MBS... Yeah, Microsoft is pushing NAP in the direction of System Center, but for smaller environments, this seems like overkill. ASB http://XeeMe.com/AndrewBaker Providing Virtual CIO Services (IT Operations & Information Security) for the SMB market… On Wed, Apr 23, 2014 at 4:49 PM, Michael B. Smith <[email protected]> wrote: System Center can do that, of course, as well as presenting a pretty good MDM solution when combined with Intune. However, it is far more about “block vs allow”. I’m not aware of a way to move network segments, although you can do just about anything with PowerShell. I’ve deployed it several times in medium-scale networks (a few thousand devices). From: [email protected] [mailto:[email protected]] On Behalf Of Andrew S. Baker Sent: Wednesday, April 23, 2014 4:39 PM Subject: [NTSysADM] NAC and NAP technologies I'm in the midst of evaluating some network access control/protection tools, including PacketFence and Microsoft NAP. Is anyone using any of these technologies today? (Microsoft NAP is deprecated as of 2012-R2, as they look to nudge us over to System Center) Any recommendations? I'm looking for the ability to manage what devices show up on the network, and move them to appropriate network segments or block them from the network outright. Some health checking would be nice, on top of all that. Agent vs agentless doesn't really matter. Mostly Microsoft networks, with Android/iOS mobile devices. Thanks! ASB http://XeeMe.com/AndrewBaker Providing Virtual CIO Services (IT Operations & Information Security) for the SMB market…
