Skip Links

Network World

  • Social Web 
  • Email 
  • Close

University flunks NAC endpoint checks

At Columbia University Medical Center more than half the machines using the network flunked endpoint checks
Security: Network Access Control Alert By Tim Greene , Network World , 01/03/2008
Tim Greene
Sign up for this newsletter now!

Senior Editor Tim Greene clarifies issues surrounding the evolving NAC security architecture.

Use of NAC at Columbia University Medical Center in New York City revealed that slightly more than half the machines using the network flunked endpoint checks.

As part of the school’s pilot of Bradford Networks’ NAC gear, machines were scanned as they tried to gain network access during the 2007 summer session, according to a recent presentation by the company at Network World’s IT Roadmap event in Washington, D.C.

The equipment found that 53% of the machines either lacked operating system patches or virus updates that were required for any machine joining the network.

This finding points out the importance of running trials before turning on NAC devices. Many network executives have endpoint configuration policies in place, and may even use automated update platforms to keep them in compliance, but compliance may be dismal nevertheless.

Some early adopters have reported that they turned NAC on without first running it in monitoring mode and had a horrible surprise. And so did their end users. Machines out of compliance were rejected, so many that the company help desk was swamped with complaints from users denied network access.

Running NAC in monitoring mode, identifying the scope of the problem and remediating it before initially turning on the devices in enforcement mode can save these headaches, particularly if the NAC gear doesn’t automatically direct users to remediation.

To view presentations from the Network World IT Roadmap event, go here, you’ll have to create an account with a user name and password. There’s no questionnaire, so it’s pretty fast. Then choose Washington, D.C. from the dropdown menu.

Partner Content

Brilliantly simple security and control solutions for email, web and endpoint

www.sophos.com

Stopping data leakage

Learn how to exploit your current security investment to control the information that flows into, through and out of your network.

Download the white paper.

Why detection rates aren't enough

Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask to prospective vendors to get the right endpoint solution.

Download the white paper.

Unauthorized applications: Taking back control

Employees installing and using unauthorized applications like IM, VoIP, games and peer-to-peer file-sharing applications cause many businesses serious concern. How do you control these applications?

Download the white paper.

Comment
Login
Forgot your account info?
Add comment
Anonymous comments subject to approval. Register here for member benefits.
Have a NetworkWorld account? Log in here. Register now for a free account.

Videos

rssRss Feed
Get instant email notification when white papers, webcasts, executive guides are added to our library. Stay informed and up-to-date with the latest on IT Technologies with Network World's Resource Alerts.

Whitepapers

Advancing the Economics of Networking

Aging network systems and old habits have dictated how businesses spend their IT budgets. As a...

Implementing HA at the Enterprise Data Center Edge to Connect to a Large Number of Branch Offices

This paper reviews the problem of creating a network where the dynamic availability of services is...

Enterprise Data Center Network Reference Architecture

Using a High Performance Network Backbone to Meet the Requirements of the Modern Enterprise Data...

Webcasts

PoE Plus: Impact on the PoE Market

The standard for Power over Ethernet (PoE), IEEE Std. 802.3af(tm)-2003, advanced networking,...

Harnessing the power of communications to increase workplace performance

Due to the convergence of IT and telecommunications technologies, the business workplace has been...

Stay out of the headlines: Detecting and preventing network intrusions

How do YOU stay out of the headlines? There is no denying that risk exists in our computer-driven...

Special Reports

The Evolution of Network Security

We have so many holes punched in our firewalls today that many industry insiders question the value...

IP address management in 2008 - six things to know

Read this Network World Special Brief to learn how Enterprise IT managers must update their...

The self-managed network

We aren't there yet, but advances in network and systems management tools are making it possible to...