- Nokia's new N97 vs. the iPhone
- 10 Microsoft research projects
- Hard to get justice in MySpace case
- Smartphone smackdown: Storm vs. iPhone
- Apple removes antivirus support page
Senior Editor Tim Greene clarifies issues surrounding the evolving NAC security architecture.
A recent story in Network World outlines how a college dropped Cisco’s NAC gear for equipment made by ConSentry.
The interesting thing about the swap is that Fayetteville State University in North Carolina went for an entirely different NAC architecture.
It already had Cisco’s NAC appliance, but reported having trouble getting the NAC agent to download to student laptops, and the box kept going down.
The school could have gone with another appliance from a different vendor including ConSentry, but decided instead to buy ConSentry access switches that have NAC integrated.
The upside of the switch-based NAC is that it can enforce NAC policies directly from each device. The downside is that it requires buying as many devices as the network has access switches.
The school had money budgeted for a network upgrade and decided to spend $500,000 of it on the ConSentry gear.
The school gives up whatever management benefits it reaped from having an all Cisco network in exchange for better NAC. But the school’s IT director thinks that is a good tradeoff.
“When you get down to it, a switch is pretty much a switch. So you’re shopping for bells and whistles at that point.” Joseph Vittorelli, director of systems and infrastructure at Fayetteville State.
That says a lot about the state of switching when access switches are considered a commodity. But Vittorelli’s comment says more about NAC. If it can be considered a bell or a whistle that is added to a no-worries access switch, it becomes a less scary prospect.
Tim Greene is senior editor at Network World.
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comments (1)
RE: Cisco NAC out, ConSentry switch-based NAC inBy Joe on October 12, 2007, 2:53 amFor less sophisticated campus setups switches may be commodities, but it is not wise business practices to consider all switches equal, let alone commodity items. ...
Reply | Read entire comment
View all comments