Well we have Cisco WAPs, controllers, and radius servers. We have full authentication built into Active Directory. We are missing the whole NAC piece though like the checks for Antivirus, scanning, patching etc before you autehnticate. Thanks.
________________________________ From: John Aldrich [mailto:[email protected]] Sent: Thursday, February 11, 2010 11:31 AM To: NT System Admin Issues Subject: RE: Wireless NAC There are controls built into a lot of the 3rd-party firmware for wireless access points to allow you to have a "hotspot" mode. I'm sure that could be modified to require authentication against the network, etc. From: Chyka, Robert [mailto:[email protected]] Sent: Thursday, February 11, 2010 10:41 AM To: NT System Admin Issues Subject: Wireless NAC We currently have a homegrown system for our dorm students on campus for our wired network. It resembles Cisco clean access, but it is agent-less. It basically puts all ports on an isolated subnet that can only get to our "ResNet" clean access system Our system makes sure that they remove their current and install our Corporate managed Antivirus Product, it makes them run Microsoft Update to patch their system, run a qucik spyware scan with an embedded scanner on the webpage, then it makes them authenticate against our user database serverss and then it "flips" their network port over to the non isolated network segment (vlan). We do not have wireless in the dorms, and we need to get it there soon. The reason why we don't have wireless in the dorms is so they don't bypass our "clean access" system when they bring their machines from home filled with junk. Does anyone know a good package to look at for wireless nac? Agentless would be best, We evaluated Clean Access 2 years ago and it really wasn't worth the money. Had alot of issues and maybe just wasn't mature then? Thanks for any suggestions. Bob ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
<<image001.jpg>>
<<image002.jpg>>
