Careers & Certifications

10:09 PM
Connect Directly

NAC Ideas Worth Hearing

So many vendors were shouting about Network Admission Control (NAC) at this year???s Interop that they nearly drowned out the ???ding-ding??? of the slot machines. That means enterprises investigating NAC first have to tune out high levels of marketing B.S.,...

By deploying an SSL VPN proxy on the LAN in front of critical applications, you can now run a health check on every device that accesses the applications and provide an additional level of policy-based access. The traffic between the proxy and the end point will also be encrypted, which may be a plus if your users work with sensitive information.

The key drawback here is scalability. Because the SSL VPN is a proxy it may have a hard time scaling to support a large numbers of users and/or a high volume of transactions. This solution may also require a significant effort to ???Webify??? the applications you want to protect.

As you can see, neither of these options are perfect. However, both may serve as NAC starter kits, allowing you to run trials and track end point compliance to corporate policies without breaking the bank or requiring major overhauls to your existing architecture. If you???re sounding out a NAC architecture, these two ideas are worth hearing.

Drew is formerly editor of Network Computing and currently director of content and community for Interop. View Full Bio
2 of 2
Comment  | 
Print  | 
More Insights
White Papers
Register for Network Computing Newsletters
Current Issue
Twitter Feed