I've implemented Microsoft's Network Access Protection with VPN and Terminal Server Gateway. I don't have much experience with it at this point but it seems to work well. I'm considering also using it on my LAN. You can use DHCP, IPSec or 802.1x enforcement. See
http://blogs.technet.com/nap/archive/2007/04/26/updated-nap-step-by-step -guides-for-longhorn-beta-3.aspx for links to the step-by-step guides. Curt Finley From: Burgess, Jeffrey [mailto:jburg...@liberty-bank.com] Sent: Tuesday, April 28, 2009 8:13 AM To: NT System Admin Issues Subject: NAC - Network Access Control Anyone here using a NAC solution? What are you using and how do you like it? I'm looking at a few but would like to see what others are using and how they like it. Specifically in how useful it is for out of band devices (Devices not owned by your company, I.E. Vendor laptops etc...) I like ForeScout so far and I'm also looking at Cisco and Symantec. What do you have? Jeffrey T. Burgess Sr. Systems Engineer Liberty Bank 315 Main St. Middletown CT, 06457 (860) 704-2196 jburg...@liberty-bank.com "Ambition is the last refuge of failure." - Oscar Wilde ********************************************************************** Unless you have received this email through the Liberty Bank secure email system, before you respond, please consider that any unencrypted e-mail that is sent to us is not secure. If you send regular e-mail to Liberty Bank, please do not include any private or confidential information such as social security numbers, unlisted telephone numbers, bank account numbers, personal income information, user names, passwords, etc. If you need to provide us with such information, please telephone us at (888)570-0773 during business hours or write to us at 315 Main St. Middletown, CT 06457. The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. If you are not the intended recipient of this message you are hereby notified that any use, review, retransmission, dissemination, distribution, reproduction or any action taken in reliance upon this message is prohibited and may be unlawful. If you received this in error, please contact the sender and delete the material from any computer without disclosing it. Any views expressed in this message are those of the individual sender and may not necessarily reflect the views of the Bank. Thank you. ********************************************************************** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
