Thanks for responding. We are running Windows Server (not 2008 just yet)
with about 10% of all our machines being Mac OS. With Leopard they are
connecting well to Active Directory. We definitely need to include the
boarders (closer to 25% Mac OS and a few Linux) into the NAC functionality -
we understand this means they will most likely have to install and agent on
their machines. We do run a VLAN enviornment. One of the issues we have
had with the different things we have tried is the way that the software
checked the VLANS. We burned through a managed switch checking all the
VLANs and we weren't even running at 100% yet. Other things we tried
brought our network to its knees performance-wise. I suspect the technology
is there, we just need to find someone who has put it in a configuration
that works for our network.
I am curious to hear what you are doing/thinking.
-Ann
On Wed, Jun 10, 2009 at 11:20 AM, Kory Mohr <wispdir@gmail.com> wrote:
> Hi, Ann. What OS are you operating, i.e. Windows, Mac, both? Are you
> looking to include the boarder's personal computers for NAC
> functionality? In addition to subnetting, are you running a VLAN
> environment which ideally isolates various networks, i.e. you could
> have a boarders' network, administration, academic, etc.?
>
> Regards,
> Kory
>
> On Tue, Jun 9, 2009 at 5:39 PM, Ann Hamel<ann.hamel@gmail.com> wrote:
> > We have looked at, read about, and tried a couple of different NAC
> devices
> > and nothing seems to work for our (small) 350 user, boarding school
> > environment. Can someone recommend a solution that will:
> > 1. Identify all devices on the network - school owned, student, owned and
> > rogue.
> > 2. Establish that each computer is running CURRENT virus protection (in
> any
> > language as many of our OS come in non-English flavors)
> > 3. Each computer is current on security updates and patches.
> > added bonuses would be:
> > 1. where is the computer physically located (we use subnets, so they
> should
> > help)
> > 2. user names
> >
> > Our first priority in this case is the security of the network. We use
> > other means to address security of the students, although we realize that
> a
> > solution might provide us with both. I look forward to your responses.
> > Thanks,
> > Ann Hamel
> > Fountain Valley School of Colorado
> >
> > [ For info on ISED-L see http://www.gds.org/ISED-L ]
> > Submissions to ISED-L are released under a creative commons, attribution,
> non-commercial, share-alike license.
> > RSS Feed, http://listserv.syr.edu/scripts/wa.exe?RSS&L=ISED-L
> >
>
> [ For info on ISED-L see http://www.gds.org/ISED-L ]
> Submissions to ISED-L are released under a creative commons, attribution,
> non-commercial, share-alike license.
> RSS Feed, http://listserv.syr.edu/scripts/wa.exe?RSS&L=ISED-L
>
[ For info on ISED-L see http://www.gds.org/ISED-L ]
Submissions to ISED-L are released under a creative commons, attribution, non-commercial, share-alike license.
RSS Feed, http://listserv.syr.edu/scripts/wa.exe?RSS&L=ISED-L
