- Microsoft Windows chief decries standards grandstanding
- The 5 best, and 5 worst, features of Google Chrome OS
- Federal government using PS3 to crack pedophile passwords
- 10G Ethernet cheat sheet
- Top 10 free Windows tools for IT pros, at a glance
Network access control has been a hot, fun topic for the past couple of years.
Epic standards battles pitted Cisco against Microsoft, each having its own terminology and approaches. And who could forget the Trusted Computing Group, which, with its own architecture, acted as a wild card?
Then there was the horde of third-party vendors offering to handle a company's NAC needs if it didn't want to wait for Cisco and Microsoft to deliver on their promises.
Last year was a turning point for NAC, however. The standards battles appear to have been resolved, and everything looks like it's falling into place. Customers apparently decided to wait for Microsoft to deliver its NAC products - and that left many third-party vendors out in the cold. A lot of them went under, including Caymas Systems and Lockdown Networks.
And because Network Access Protection (NAP, Microsoft's version of NAC) comes with Vista and Windows Server 2008, deciding to go with Microsoft has become a no-brainer for many customers. NAP represents a clear choice, rather than a technology that requires extensive research, RFPs, product tests and evaluations, and so forth.
NAP even proved itself in a recent product evaluation Forrester Research performed to determine which NAC tools would solve real-world deployment problems. Microsoft came in first, followed by Cisco and Juniper Networks.
This year the questions for customers will be where do we deploy NAC, and how many NAC features do we turn on? Most customers today are using NAC just to control guest access. That's important, but the technology can do more. On the pre-admission side, it can scan user devices, determine whether they are clear of viruses, check to see if patches have been updated and quarantine the device if security conditions aren't met. On the post-admission side, it can make sure that a clean machine remains that way, and that users access only those parts of the network to which they have authorization.
These important functions are ones that every IT exec should be implementing.
< Previous technology:Green IT | Next technology: 10 Gigabit Ethernet >
Rss FeedRss Feed
The Leader in Network Knowledge
Comments (3)
Written by Microsoft's marketing dept?By Anonymous on January 5, 2009, 2:35 pmReally, could this get any more biased?
Reply | Read entire comment
Can someone point me towards any large or medium size customer wBy Anonymous on January 6, 2009, 3:38 pmCan someone point me towards any large or medium size customer who has deployed it? And I don't mean just hit the "enable" button or something like that, but who...
Reply | Read entire comment
I work for a university thatBy Anon on January 12, 2009, 1:13 pmI work for a university that had a large scale roll out of Cisco NAC, but we're replacing it because it is basically crap. I've talked with a few McAfee customers...
Reply | Read entire comment
View all comments