Skip Links

Network World

  • Social Web 
  • Email 
  • Close

Microsoft’s SCCM upgrade tackles NAC integration

Next version of Microsoft's system management software will work with the NAP Policy Server in Windows Server 2008
By John Fontana , Network World , 11/01/2007

Microsoft will ship on Nov. 12 its revamped Systems Management Server, now called System Center Configuration Manager 2007, and with it will ship the first piece of the company’s integration between its management platform and its network-access-control technology, Network Access Protection, which verifies that a client desktop is secure before it's let onto a network The software will be unveiled at Microsoft’s TechEd IT Forum in Barcelona.

SCCM 2007 also will include support for modeling technology that will eventually incorporate the management tool into Microsoft’s service-oriented-architecture (SOA)-based Oslo initiative announced last Tuesday.

NAP’s client technology is included in Windows Vista and back-ported to Windows XP, but the server component won’t ship until Windows Server 2008 in released early next year. The NAP server technology originally was supposed to ship for Windows 2003 R2, but those plans were scrapped last year.

SCCM 2007, which will integrate with the NAP Policy Server in Windows Server 2008, includes policies that let administrators enforce the installation of software patches via SCCM’s software installation.

NAP technology checks patch levels and virus signatures as a way of assessing a desktop's "health." The client’s health is validated against a set of policies, and those clients that don't pass can be put into an isolation area where they stay until being updated.

The Trusted Computing Group, Cisco and Microsoft represent the three main NAC architectures, and all need software that gathers data about the security posture of devices seeking network access.

The combination of SCCM 2007 and NAP gives administrators two enforcement policies to ensure that PCs comply with their NAP configurations. The first taps a NAP policy in SCCM 2007 to set a date to force the installation of patches on PCs that have failed to install them via usual avenues. The second NAP policy in SCCM 2007 lets administrators expedite patch installation by forcing machines to load the patches "as soon as possible." The second policy is designed to help users rally defenses against zero-day exploits.

SCCM 2007 is also represents the third piece of software to support Microsoft’s modeling language called the System Definition Model (SDM).

Partner Content
CA logo

CA Network & Voice Resource Center

Comprehensive Network & Voice Management Visit CA Network & Voice Management Resource Center and get insights into industry best practices, information that helps you to address your challenges.

CA Network & Voice Management Resource Center

whitepaper

Managing Voice Over IP for Successful Convergence

Voice over IP (VoIP) has much to offer in cost savings but some customers have concerns about VoIP call quality compared to the quality of traditional voice services. This white paper will help you learn how to take the right steps so that voice quality is assured.

Managing VoIP for Successful Convergence

whitepaper

The Changing Face of Network Management

Managing your network is serious business. This paper discusses the benefits of integrating configuration change-awareness into your network fault management solution

Download Whitepaper

Comments (2)
Login
Forgot your account info?

More on System Center, SCCM, and NAP integrationBy Kerrie Meyler on November 1, 2007, 7:30 pmYou may also want to check out the entry I wrote 10/30 regarding the current System Center lineup, including SCCM and NAP integration with Vista and the forthcoming...

Reply | Read entire comment

RE: Microsoft's SCCM upgrade tackles NAC integrationBy Microsoft Subnet on November 1, 2007, 6:28 pmIf you haven't done so already, might want to check out this most excellent transcript of a live chat with Joel Snyder on the Truth about NAC. He discusses what...

Reply | Read entire comment

View all comments

Add comment
Anonymous comments subject to approval. Register here for member benefits.
Have a NetworkWorld account? Log in here. Register now for a free account.

Videos

rssRss Feed
Get instant email notification when white papers, webcasts, executive guides are added to our library. Stay informed and up-to-date with the latest on IT Technologies with Network World's Resource Alerts.