Have you looked at or considered using 2008 AD/NAS/NAC for this? Jon
On Thu, Feb 11, 2010 at 11:34 AM, Chyka, Robert <[email protected]> wrote: > Well we have Cisco WAPs, controllers, and radius servers. We have full > authentication built into Active Directory. We are missing the whole NAC > piece though like the checks for Antivirus, scanning, patching etc before > you autehnticate. > > Thanks. > > ------------------------------ > *From:* John Aldrich [mailto:[email protected]] > *Sent:* Thursday, February 11, 2010 11:31 AM > > *To:* NT System Admin Issues > *Subject:* RE: Wireless NAC > > There are controls built into a lot of the 3rd-party firmware for > wireless access points to allow you to have a “hotspot” mode. I’m sure that > could be modified to require authentication against the network, etc. > > > > [image: John-Aldrich][image: Tile-Tools] > > > > *From:* Chyka, Robert [mailto:[email protected]] > *Sent:* Thursday, February 11, 2010 10:41 AM > *To:* NT System Admin Issues > *Subject:* Wireless NAC > > > > We currently have a homegrown system for our dorm students on campus for > our wired network. It resembles Cisco clean access, but it is agent-less. > It basically puts all ports on an isolated subnet that can only get to our > "ResNet" clean access system > > > > Our system makes sure that they remove their current and install our > Corporate managed Antivirus Product, it makes them run Microsoft Update to > patch their system, run a qucik spyware scan with an embedded scanner on the > webpage, then it makes them authenticate against our user database serverss > and then it "flips" their network port over to the non isolated network > segment (vlan). > > > > We do not have wireless in the dorms, and we need to get it there soon. > The reason why we don't have wireless in the dorms is so they don't bypass > our "clean access" system when they bring their machines from home filled > with junk. > > > > Does anyone know a good package to look at for wireless nac? Agentless > would be best, We evaluated Clean Access 2 years ago and it really wasn't > worth the money. Had alot of issues and maybe just wasn't mature then? > > > > Thanks for any suggestions. > > > > Bob > > > > > > > > > > > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
<<image002.jpg>>
<<image001.jpg>>
