Networking

04:45 PM
Connect Directly
LinkedIn
RSS
E-Mail
50%
50%

Rolling Review: Microsoft NAP

Can Microsoft's Network Access Protection challenge Cisco's network access control dominance? Yes--and not just because it's free.

Nearly 80% of respondents to our third annual InformationWeek Analytics NAC poll are evaluating or deploying network access control technology, but IT still has a big beef with its lack of interoperability. So it's to Microsoft's credit that early on the company moved away from trying to develop a proprietary system. Instead, it built a framework; developed a set of APIs for third-party integration; and, most important, aligned itself with the most widely accepted standards body in the NAC space, the Trusted Computing Group.

Of course, the fact that Microsoft is offering its Network Access Protection technology free with a Windows Server 2008 license can only help drive adoption. In fact, according to our poll, NAP already is pulling equal with Cisco Network Admission Control in terms of framework familiarity.

InformationWeek Reports

Near term, the fruit of Microsoft's collaboration with the Trusted Computing Group is a new interoperability standard based on Microsoft's NAP and TCG's Trusted Network Connect. The spec defines a NAC industry-standard protocol, dubbed Statement of Health, or SoH, for reporting on the security profile of a given endpoint. SoH is a win-win for IT and vendors alike because it ensures that third-party clients can report and enforce system health with a Microsoft Network Policy Server (NPS). Conversely, the Microsoft NAP client built into Vista and Windows XP SP3 will, theoretically, seamlessly interoperate with third-party enforcement points.

DIG DEEPER
2008 NAC SURVEY
Find out what peers and vendors think about the future of the NAC market.
We didn't test NAP head-to-head with Cisco NAC because it's just not an apples-to-apples comparison ... not yet, at least. If you're considering Cisco NAC vs. Microsoft NAP now, be aware of the functions that NAP does less well, if at all; these include enabling robust guest access enforcement, captive portals, and support for Mac OS. Additionally, the Cisco NAC agent provides the administrator with the ability to scan for specific registry keys or other system values, and make policy decisions based on those values. The NAP agent does not.

Still, for the price, Network Access Protection is sure to take a bite out of Cisco's bottom line.

Previous
1 of 3
Next
Comment  | 
Print  | 
More Insights
Slideshows
Cartoon
Audio Interviews
Archived Audio Interviews
Jeremy Schulman, founder of Schprockits, a network automation startup operating in stealth mode, joins us to explore whether networking professionals all need to learn programming in order to remain employed.
White Papers
Register for Network Computing Newsletters
Current Issue
2014 Private Cloud Survey
2014 Private Cloud Survey
Respondents are on a roll: 53% brought their private clouds from concept to production in less than one year, and 60% ­extend their clouds across multiple datacenters. But expertise is scarce, with 51% saying acquiring skilled employees is a roadblock.
Video
Twitter Feed